Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
File: MXvyYLzaMCviwgdijPsWRHhhT-U.mft (raw, json)
Hash identifier: y70h+/Aunwx2OF9rLNvDhoBPPJrjYcG40mtRuj51854=
Subject key identifier: 1F:D8:3B:87:D6:C5:9C:64:A0:79:2D:2D:F1:EA:23:D6:4B:21:87:2F
Authority key identifier: 31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
Certificate issuer: /CN=317bf260bcda302be2c207628cfb164478614fe5
Certificate serial: 0199FC5854DA7BBF588ECAA102D89ACAD917
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
Manifest number: 0E56
Signing time: Sun 19 Oct 2025 12:01:11 +0000
Manifest this update: Sun 19 Oct 2025 12:01:11 +0000
Manifest next update: Mon 20 Oct 2025 12:01:11 +0000
Files and hashes: 1: MXvyYLzaMCviwgdijPsWRHhhT-U.crl (hash: 65jXB8pxhA4Gj6Tt07R/6YStDYoX5F2XkK5+Rrs518I=)
2: penXvalgbMBLZqcx96rUayqK3NQ.roa (hash: vb/Iw29Kb6TCjGenAwHcr/Ra62ZOMD3/iU+HDEP/27c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:54:da:7b:bf:58:8e:ca:a1:02:d8:9a:ca:d9:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317bf260bcda302be2c207628cfb164478614fe5
Validity
Not Before: Oct 19 12:01:11 2025 GMT
Not After : Oct 20 12:01:11 2025 GMT
Subject: CN=1fd83b87d6c59c64a0792d2df1ea23d64b21872f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:53:0e:b3:df:82:5b:cf:23:38:bc:01:73:32:
e4:92:d0:79:31:d5:dd:37:b1:80:e3:45:91:7c:5c:
3a:f2:50:2f:78:35:21:23:a9:4d:c8:23:95:fb:80:
56:59:6d:85:74:8a:83:85:35:50:9e:e2:65:f4:8f:
1c:a0:d2:b1:39:dc:ee:e8:dc:24:c5:5a:4f:bc:36:
c6:4f:e7:54:7e:83:80:2b:cd:15:d7:4e:14:b9:10:
47:c5:0c:64:3c:07:80:70:eb:75:84:e6:00:fe:fb:
30:c7:9b:da:45:c2:f8:4e:5f:86:6d:ba:df:47:74:
c7:c6:f9:65:3e:29:cd:e1:f0:59:01:6d:76:b2:e2:
ad:b6:85:6a:8f:ac:f5:cc:04:76:81:5c:ce:69:61:
09:1e:2a:d7:6a:7c:c3:96:91:08:fe:ef:8d:37:5f:
1e:5f:4b:31:db:9e:a9:38:74:f5:ce:28:eb:c1:78:
e0:06:a6:5c:7a:e5:40:00:25:ff:0c:16:0b:db:f4:
c8:b5:54:8f:f7:90:a3:c5:02:40:57:fb:6b:88:6e:
d4:3f:1f:e2:4b:88:ba:1a:82:2c:11:f4:ca:60:11:
28:93:57:52:1d:79:f0:c8:78:fd:51:99:99:79:57:
e4:4b:3d:b1:2f:ba:3a:03:76:67:96:9f:6a:b9:f6:
c6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D8:3B:87:D6:C5:9C:64:A0:79:2D:2D:F1:EA:23:D6:4B:21:87:2F
X509v3 Authority Key Identifier:
keyid:31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:1d:ae:f1:49:9b:63:38:6a:8e:d6:05:34:9a:26:eb:dc:4b:
62:d0:3e:4f:06:24:66:c8:21:b3:00:0e:93:c4:df:81:85:ad:
84:85:a2:73:d5:3d:36:00:1c:07:9c:d3:76:7c:e2:d6:04:12:
ae:65:88:61:e4:5f:10:a0:30:16:42:a0:44:f4:28:7e:31:d5:
08:4c:c6:0d:48:9c:92:26:77:0b:8e:45:d4:d8:8d:b3:a4:21:
46:06:20:78:64:c7:61:cb:14:8d:12:3d:22:7e:79:f2:59:c1:
72:8d:d6:1f:1b:86:c9:88:92:5f:f6:f1:9c:4e:be:3e:6a:8f:
f5:e6:89:3e:b3:ec:a5:fb:64:c6:c8:15:59:f9:9e:ea:f8:06:
51:e8:a4:67:03:23:3e:c7:f2:ec:fc:2e:0a:1e:1e:e2:3e:00:
47:fc:9a:1a:6e:38:a0:d1:e2:16:45:79:11:35:d9:44:3b:7b:
21:4b:15:4c:32:49:79:21:7d:31:bd:86:ab:37:99:b3:5d:72:
f0:5b:6a:8f:ea:16:1f:4a:9f:e4:e0:b0:39:e4:a6:c3:ac:cb:
79:0c:a1:da:d2:4f:a4:93:e6:dd:f0:fa:97:e4:0b:24:8f:c9:
c8:d8:1c:00:23:4b:25:fa:44:3b:37:be:04:f9:66:d9:7f:ee:
1b:ec:32:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:38:43 2025 by rpki-client