Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: sFMD0koc7TwiXg5TGOZ4kZS5NZfcvDmetSgKilfPmgc=
Subject key identifier: 4E:CD:77:1B:DE:2D:18:47:30:7F:49:51:28:F6:38:6C:E8:1E:53:9F
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 019A4E18CEE0AA435C746C0FC272DC2EE5EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 03C8
Signing time: Tue 04 Nov 2025 09:00:39 +0000
Manifest this update: Tue 04 Nov 2025 09:00:39 +0000
Manifest next update: Wed 05 Nov 2025 09:00:39 +0000
Files and hashes: 1: MYDLO2vvDKfPNW5B_jde2eQkJYg.roa (hash: wV9kbvDo8W5gfhdwsvfFoAGi3mrp4nPR/cUxhX5vacM=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: xDVo07DFO3yyZOC+XdrG2kJHBsgWKucnC0tRErCuc9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:ce:e0:aa:43:5c:74:6c:0f:c2:72:dc:2e:e5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: Nov 4 09:00:39 2025 GMT
Not After : Nov 5 09:00:39 2025 GMT
Subject: CN=4ecd771bde2d1847307f495128f6386ce81e539f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:89:a1:f9:6d:1b:a9:f2:f7:20:ce:58:10:b2:
13:93:0d:d3:26:5b:4a:54:bf:dc:e3:f1:39:3c:52:
40:40:9f:46:e5:92:d8:f3:55:e6:e8:f5:2d:c8:05:
e5:43:68:39:35:5c:91:f8:75:8d:af:99:b8:cf:af:
ca:70:00:02:44:6a:8e:7c:71:fc:85:48:a6:88:56:
0c:0e:6c:7e:41:d6:1f:8d:82:06:60:61:35:0f:2a:
eb:4a:62:c1:ed:7f:6d:7b:83:60:e7:33:f2:d2:1c:
31:5f:96:00:10:d4:f9:f6:c3:82:74:a3:5f:9a:3c:
7c:f8:5f:63:eb:a2:60:eb:d8:5c:75:5a:1d:61:2f:
8c:2d:da:fd:7e:76:87:bc:14:7e:e2:d0:ad:d0:e2:
49:55:09:02:31:bd:55:ea:3d:21:d5:d7:96:c5:aa:
b0:2f:1b:df:20:c5:07:6e:66:78:ec:9b:67:44:ef:
a8:ac:7c:38:d2:af:4a:f2:60:0e:34:f6:2b:8f:a5:
c4:ca:ef:02:42:64:8e:ac:e0:f7:bc:fc:2f:f0:bb:
09:1c:f9:62:b0:79:a7:1b:b0:aa:38:ea:f5:59:72:
27:65:f8:a4:0f:17:b6:b0:92:f1:41:27:5f:f3:60:
6a:6a:13:3a:5e:b5:df:ad:a6:0c:ec:24:17:b5:95:
0f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:CD:77:1B:DE:2D:18:47:30:7F:49:51:28:F6:38:6C:E8:1E:53:9F
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:ce:cd:c1:fe:9e:59:b8:98:5a:de:15:d2:fe:01:af:d6:4d:
99:9c:0e:4d:24:63:af:78:9e:97:90:69:bc:93:e1:49:5c:3d:
87:2d:48:bb:51:9d:c6:6a:da:7b:6c:b1:c4:c4:ea:21:a8:d0:
be:f1:a1:c1:b7:06:b6:25:6a:66:90:35:29:23:a6:15:5f:43:
b0:6a:49:43:a4:c6:7e:64:3f:c9:ba:d1:4e:85:85:aa:77:46:
21:e8:ce:73:a7:88:b9:83:1d:25:08:ae:e7:9a:be:dd:8d:bc:
e2:e8:8f:0b:94:3a:06:da:9f:e6:31:65:fd:39:e3:89:b3:54:
4a:66:b8:9f:fb:e2:f9:71:89:71:b8:ad:7b:0f:90:70:d3:16:
4f:56:6b:5d:f8:3f:38:55:6e:ba:04:48:c7:fb:92:a7:c1:ca:
86:1b:42:00:1b:37:d5:0e:b5:1d:51:5d:19:b7:20:98:91:8f:
5d:e7:85:55:c9:40:52:a5:98:41:05:87:2f:07:31:fc:62:a7:
83:d6:83:13:b3:67:87:7d:2f:d1:1e:8e:67:1c:0f:8c:10:c1:
88:45:7a:1d:f3:a7:56:fa:84:78:b7:dd:55:e5:aa:7c:39:80:
9c:8b:7f:08:18:50:e4:4c:45:92:23:9f:10:0d:28:3b:f7:c6:
c2:cc:71:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:01 2025 by rpki-client