Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
File: MMOt1700croWgExJC2ahCXZZvTE.mft (raw, json)
Hash identifier: DEHrAsoeJVggWFH0/XvawLwhmypzVrJQJGNvUQA8pb8=
Subject key identifier: 29:42:6C:64:28:49:54:6E:75:DE:02:40:5B:A0:B1:99:83:7F:B9:D9
Authority key identifier: 30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
Certificate issuer: /CN=30c3add7bd3472ba16804c490b66a1097659bd31
Certificate serial: 0199FCC695DFAA80E80B3741294C8AC11922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
Manifest number: 0C95
Signing time: Sun 19 Oct 2025 14:01:36 +0000
Manifest this update: Sun 19 Oct 2025 14:01:36 +0000
Manifest next update: Mon 20 Oct 2025 14:01:36 +0000
Files and hashes: 1: MMOt1700croWgExJC2ahCXZZvTE.crl (hash: 2RBoMBvXSR35b5rd5GkpfFcP5gAef/YK0mAWSLrhSB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:95:df:aa:80:e8:0b:37:41:29:4c:8a:c1:19:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c3add7bd3472ba16804c490b66a1097659bd31
Validity
Not Before: Oct 19 14:01:36 2025 GMT
Not After : Oct 20 14:01:36 2025 GMT
Subject: CN=29426c642849546e75de02405ba0b199837fb9d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5b:24:41:15:19:ec:74:b0:08:15:db:7b:a7:
38:3a:ed:1f:b1:92:e5:0e:a1:06:40:39:df:04:48:
cc:ac:fd:b9:74:1e:9f:3d:e0:da:9f:ec:b1:f0:66:
b2:61:ad:ba:bf:c4:0f:e2:d3:17:11:47:ec:a6:ec:
f9:a0:0b:1f:a6:30:b4:e0:77:37:ac:9a:29:05:7f:
46:32:c7:bc:c9:66:16:9e:6c:bb:fb:7a:4a:9c:63:
e9:06:86:30:0e:61:37:05:48:ce:18:fd:01:d0:d4:
9e:df:49:57:da:64:48:06:63:87:95:62:78:57:12:
86:fd:69:94:50:76:70:27:3f:84:a7:fa:8e:7c:d9:
9b:b8:83:52:86:c6:ae:fe:ee:d0:e5:24:e8:7c:79:
05:b7:1a:70:64:e6:a2:ba:4a:d4:71:83:fd:e3:94:
cc:66:41:ad:f0:0d:69:33:10:71:16:1b:f7:97:6b:
31:9b:f9:07:76:8e:bf:8e:71:61:1e:b7:2c:01:23:
17:ea:f2:80:b5:e9:a0:49:69:20:37:f3:db:28:b2:
fd:18:e8:9a:a0:16:96:23:a9:07:a8:42:0a:c9:c4:
1f:dd:68:40:9a:f0:94:44:53:62:7d:2a:74:cb:0e:
35:12:2b:0c:da:34:96:c5:98:e4:80:e9:5a:16:49:
c1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:42:6C:64:28:49:54:6E:75:DE:02:40:5B:A0:B1:99:83:7F:B9:D9
X509v3 Authority Key Identifier:
keyid:30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:63:e5:e8:8e:6c:4c:74:ab:de:12:03:26:f8:27:f7:99:2e:
56:a3:72:67:ef:81:08:e7:69:75:f8:e6:e8:d2:96:32:33:7e:
01:04:53:e2:88:4f:87:9c:e0:6a:a5:3b:ae:5c:28:c4:ec:3d:
23:d8:76:fa:da:bd:4f:b8:7f:5a:dc:4c:fb:f4:65:55:fa:06:
a5:3e:dd:6f:17:10:be:d3:88:6d:5a:bf:4a:ef:c8:e7:70:8a:
74:14:8e:f6:4e:c4:54:cd:0b:c6:5c:39:b4:6c:5c:6e:15:74:
b4:88:f2:cb:f5:fd:a5:18:71:8e:ac:f3:22:39:db:cc:cf:85:
83:50:25:36:77:c9:5e:aa:4a:61:89:3f:1c:17:d0:8c:b9:a9:
74:43:59:49:87:30:d3:f6:18:43:c0:b1:10:45:8c:aa:af:36:
16:37:27:55:0e:98:6b:19:9f:03:5f:08:3b:a5:63:54:a2:9e:
0f:27:6f:81:01:c9:67:4d:9c:63:95:be:b2:b1:e1:f1:29:8f:
62:d0:84:a5:26:de:f1:34:84:5d:28:3d:74:db:ed:99:e4:a7:
ec:b7:0f:d1:39:73:25:7a:61:7b:7d:29:9d:63:c0:45:bb:3a:
82:e1:28:1d:f1:bf:dd:f6:c9:21:ff:b2:7b:e8:35:1b:de:a0:
84:2a:dd:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:31:16 2025 by rpki-client