Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
File: MMOt1700croWgExJC2ahCXZZvTE.mft (raw, json)
Hash identifier: K1VzNaSbphTlABGXehZsqqBEqtyBMN8IqKjQN2zU214=
Subject key identifier: 51:72:CB:BE:5F:0E:AD:67:B3:13:AD:C8:E5:BB:62:D4:4C:B1:06:8A
Authority key identifier: 30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
Certificate issuer: /CN=30c3add7bd3472ba16804c490b66a1097659bd31
Certificate serial: 0198D54DC4D22892793D4C0A72B08E48D01D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
Manifest number: 0BFC
Signing time: Sat 23 Aug 2025 05:01:40 +0000
Manifest this update: Sat 23 Aug 2025 05:01:40 +0000
Manifest next update: Sun 24 Aug 2025 05:01:40 +0000
Files and hashes: 1: MMOt1700croWgExJC2ahCXZZvTE.crl (hash: Zc2IJGMiY38Bw6z7qvzxkak+egsBrLNDonKOJI6pfTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:c4:d2:28:92:79:3d:4c:0a:72:b0:8e:48:d0:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c3add7bd3472ba16804c490b66a1097659bd31
Validity
Not Before: Aug 23 05:01:40 2025 GMT
Not After : Aug 24 05:01:40 2025 GMT
Subject: CN=5172cbbe5f0ead67b313adc8e5bb62d44cb1068a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3b:e9:45:53:26:57:5b:e6:05:d8:92:aa:f6:
f3:65:17:3d:47:15:a1:7c:86:ed:25:03:40:61:eb:
9e:e3:de:c7:fd:03:15:a8:65:31:02:b7:1e:a9:7f:
56:f5:95:3a:58:09:d8:79:3c:8e:44:44:b4:18:3f:
57:f8:6b:9b:ad:48:a0:40:59:01:df:a4:a9:56:09:
37:89:bd:1f:3f:44:2b:d2:c7:68:67:95:d5:a3:a5:
9c:21:56:c3:6f:75:d9:0a:9c:72:01:cc:0b:24:81:
42:0e:bc:76:5a:ca:31:01:26:cc:78:1f:09:f1:f5:
0b:8a:9c:8a:71:75:e5:84:04:df:12:87:90:4c:6f:
21:9d:2b:50:a9:6c:92:4d:27:57:35:07:5f:66:21:
29:73:3f:85:16:d7:3f:30:5c:f9:7e:37:54:d9:d3:
7a:2f:c6:33:88:80:2b:aa:96:1d:e3:26:25:a3:40:
0a:20:8d:46:a2:cd:7d:90:fc:4c:27:4c:c4:42:09:
06:99:a6:b5:7f:f6:2b:05:65:0b:65:0b:07:69:41:
7a:eb:8a:b8:8e:ea:6f:b9:9b:cc:a3:cd:16:0c:ce:
c3:7c:7a:ef:ed:51:bf:25:9b:77:08:56:d3:fa:e2:
73:12:6a:d9:19:df:13:5b:e8:af:7e:05:78:3f:1f:
3d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:72:CB:BE:5F:0E:AD:67:B3:13:AD:C8:E5:BB:62:D4:4C:B1:06:8A
X509v3 Authority Key Identifier:
keyid:30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:96:0e:79:0a:37:a7:bf:f4:76:cf:1a:a0:72:4c:63:b0:fa:
a0:66:df:2a:6f:fe:51:85:f1:cd:d6:81:5c:a4:8f:25:3e:81:
ec:1f:95:e6:06:56:d2:5d:08:b6:0e:24:1c:57:40:4f:6e:ab:
55:3d:20:38:02:10:87:1c:f8:57:c7:c9:32:de:3f:75:4f:89:
b4:98:80:e3:d5:32:9f:95:9a:1c:d3:77:7e:5a:bf:13:11:89:
20:0a:c1:7b:80:f8:a7:1f:c1:59:bc:b2:ec:0b:e0:95:65:bb:
9b:c2:e8:53:fe:d4:56:d4:67:a9:22:42:b0:a7:37:e7:50:fa:
df:7c:c6:48:c5:3b:81:24:f8:35:16:b0:95:3b:18:d1:21:48:
a9:0d:f4:bf:f5:1f:de:ee:53:52:ea:a1:ae:8c:1b:74:69:28:
dc:52:4f:3c:03:89:fe:0e:a5:1b:71:98:59:8d:04:2e:45:24:
6f:6f:cc:d4:bb:92:2b:ac:de:c2:10:7c:a3:1d:c7:56:b3:02:
a6:cb:3b:c2:e2:df:f0:63:35:62:c6:47:5e:44:44:e2:28:75:
46:8d:98:f2:27:4b:c5:86:07:20:09:3d:c7:dd:42:1f:ec:6c:
32:9c:cf:31:2b:d5:cd:e3:38:a1:f3:f5:da:dc:fc:3f:13:8a:
a2:77:d4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:38 2025 by rpki-client