Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
File: MMOt1700croWgExJC2ahCXZZvTE.mft (raw, json)
Hash identifier: WjWxFcd9ZYiJCw/9+Q8DIoOTCYaRLtYeNgZu3gDuWbI=
Subject key identifier: 9A:C9:C2:50:60:8D:A4:83:7A:B9:85:6A:A7:7E:D3:5E:F1:AD:FF:4F
Authority key identifier: 30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
Certificate issuer: /CN=30c3add7bd3472ba16804c490b66a1097659bd31
Certificate serial: 019D2BBC0E3B64074D9437FCECFC5044E73B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
Manifest number: 0E3B
Signing time: Thu 26 Mar 2026 20:00:37 +0000
Manifest this update: Thu 26 Mar 2026 20:00:37 +0000
Manifest next update: Fri 27 Mar 2026 20:00:37 +0000
Files and hashes: 1: MMOt1700croWgExJC2ahCXZZvTE.crl (hash: vSJppAGTcWkgGWoOW7WiFgKJI1bqcEx1pTdcG3IdOWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:bc:0e:3b:64:07:4d:94:37:fc:ec:fc:50:44:e7:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c3add7bd3472ba16804c490b66a1097659bd31
Validity
Not Before: Mar 26 20:00:37 2026 GMT
Not After : Mar 27 20:00:37 2026 GMT
Subject: CN=9ac9c250608da4837ab9856aa77ed35ef1adff4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ee:1b:32:43:f4:77:e5:57:98:d0:eb:6f:65:
02:54:ca:75:b1:d7:87:25:8e:eb:33:c8:50:3c:de:
a4:f2:5f:65:fd:78:5b:ac:03:6e:e1:d8:b7:a5:ed:
52:fa:04:66:17:26:26:fd:9a:c4:21:ab:fd:8a:09:
8e:6a:cb:7e:58:7a:3d:4c:e7:da:25:55:8b:c5:51:
b6:ce:b3:34:69:b8:a9:4b:94:af:eb:f1:02:48:fd:
bc:f6:b1:b8:06:f1:ee:e3:28:13:6f:8c:ff:6f:cd:
ea:a3:32:fa:66:2c:be:db:54:f2:60:47:f2:03:ec:
cd:31:b1:6d:10:e4:3c:73:53:4c:e1:55:38:46:a7:
55:67:3e:66:79:16:9d:85:62:75:7d:75:5f:51:18:
ed:17:48:4e:bb:95:b0:4f:f6:d8:ab:6a:a3:84:f8:
1c:6e:ff:ea:4a:c4:9e:55:68:de:57:e1:79:ab:90:
c9:1c:9f:74:1c:75:1c:95:c3:2b:3f:c8:16:e5:16:
29:98:97:b3:5e:78:da:e6:7f:cf:ff:56:f1:17:de:
82:0d:fe:96:f0:81:8a:18:cf:be:55:f3:d3:7a:ad:
61:d3:e1:98:4b:90:12:a0:8f:a9:91:65:95:a2:67:
23:77:b6:ea:b5:a7:85:98:2f:c9:48:4d:fc:b0:cb:
f8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C9:C2:50:60:8D:A4:83:7A:B9:85:6A:A7:7E:D3:5E:F1:AD:FF:4F
X509v3 Authority Key Identifier:
keyid:30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:ea:2f:e2:72:41:47:91:c3:eb:c2:d5:56:1f:32:65:ab:0c:
dd:17:45:3f:1c:27:b8:e7:9b:2a:7e:8f:f7:86:d7:9b:db:20:
5d:27:20:6c:f6:d6:5a:a6:bd:4e:e2:36:45:76:b4:fa:4b:31:
07:45:b2:a2:ce:47:97:63:c8:1b:20:3e:04:3d:c0:81:45:5b:
70:01:0c:94:1f:45:77:9d:d6:33:45:a0:d0:39:ec:05:d6:2c:
ef:75:5f:d7:fd:2a:61:48:d0:3c:e1:c6:e7:82:d5:a5:7e:20:
cf:88:bc:d9:88:55:04:0c:0d:98:d6:01:67:b4:f5:ce:b4:71:
2b:f5:49:3f:6c:d2:2c:4e:32:0f:93:92:49:d7:3a:29:19:03:
4b:76:9a:1b:6d:c5:0c:9d:ef:bb:92:d3:c8:dd:09:5d:9e:53:
4c:e8:ad:b5:35:c7:4c:0e:47:23:90:10:d7:07:74:0d:6d:17:
f2:51:c9:b4:22:17:27:91:fd:73:bd:0f:f8:33:55:0c:c7:7f:
61:51:76:af:47:ec:77:29:63:75:ae:c0:2a:6c:e8:b4:35:9e:
89:da:ee:a3:37:bd:82:1e:11:5b:08:bc:59:87:14:12:5d:d1:
12:f4:d5:77:89:0a:78:ad:55:b9:55:38:0c:df:9c:03:3b:38:
ef:8b:85:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:34:05 2026 by rpki-client