
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
File: MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft (raw, json)
Hash identifier: MB08+yirFrRR/oBnOqXDOH/sM7IqFLb3xeqSyZwa7Iw=
Subject key identifier: 6C:EC:87:6E:BD:C9:B7:7B:D1:13:A2:81:B0:7A:9A:73:49:60:FF:DC
Authority key identifier: 31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
Certificate issuer: /CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Certificate serial: 0199FB7CBD34D4DA6C383324BC65082FF3CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
Manifest number: 0EE1
Signing time: Sun 19 Oct 2025 08:01:19 +0000
Manifest this update: Sun 19 Oct 2025 08:01:19 +0000
Manifest next update: Mon 20 Oct 2025 08:01:19 +0000
Files and hashes: 1: MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl (hash: f2JOkmg9U8DBGgntxkh+OZAVneHxlIhV1OKyIx+xDG8=)
2: QXjAwQSpvYGLG9EKG43DcrvrWjg.roa (hash: /g3NGPvML9niLWrxGUEsCrw0JcuhbxCMPrgB31IKq7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:bd:34:d4:da:6c:38:33:24:bc:65:08:2f:f3:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Validity
Not Before: Oct 19 08:01:19 2025 GMT
Not After : Oct 20 08:01:19 2025 GMT
Subject: CN=6cec876ebdc9b77bd113a281b07a9a734960ffdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:cc:f3:86:49:a9:23:e8:c2:b8:40:84:a6:a4:
d6:04:87:dc:c6:5d:1e:c7:3a:af:5c:f6:59:8f:83:
7b:d4:57:87:28:8c:ee:71:01:ea:26:a2:15:89:f7:
37:3b:2c:ee:70:33:74:27:03:31:3b:41:66:49:98:
91:8c:36:a4:bc:96:a0:a9:c2:60:d7:8c:e2:98:41:
7a:1e:06:f6:ff:63:59:fe:f8:17:7d:7c:d3:98:5d:
37:7e:07:7f:6d:64:5e:24:7c:65:0d:04:e9:e8:21:
93:41:8a:ea:81:8e:e6:5a:3e:82:35:41:22:82:5f:
69:e0:3b:da:0e:24:5b:97:fa:ec:00:31:f8:2b:05:
be:49:b8:45:db:54:ce:ad:5c:d1:1b:fd:50:4f:01:
8f:f3:aa:5c:82:98:e7:84:f8:dc:f0:5a:19:57:a2:
08:a0:0a:21:43:0c:da:1c:07:3a:85:32:a7:0a:ae:
bf:07:31:82:a1:72:c7:91:7d:8f:32:77:0c:0d:48:
f5:ad:15:eb:26:05:7c:5f:f9:a5:e4:fa:f5:9a:03:
c3:af:19:b7:f6:5c:10:b3:41:e3:03:11:0f:bb:a0:
90:75:fe:2c:a5:56:95:7c:3a:5b:b6:fd:c3:6a:1d:
06:ea:40:1f:2a:7e:1a:6d:df:ec:2d:b9:b0:13:a5:
2e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:EC:87:6E:BD:C9:B7:7B:D1:13:A2:81:B0:7A:9A:73:49:60:FF:DC
X509v3 Authority Key Identifier:
keyid:31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:6c:b5:b2:16:df:90:4d:fe:26:0b:68:d2:16:04:0d:e0:13:
c5:da:71:58:89:34:2a:2b:7f:64:40:c4:3c:65:60:c5:9d:fd:
5c:1e:54:51:de:c2:31:78:1e:1d:94:08:b6:d7:0a:bd:f7:77:
b0:0e:97:89:f0:d3:b2:a1:4b:e5:1b:68:e5:11:d0:6e:36:8b:
09:ea:3d:e6:b5:12:f9:72:c6:eb:b5:27:84:08:08:ad:7c:77:
66:30:53:ed:f8:24:1e:37:21:d0:94:37:ae:0f:1a:c1:d2:a7:
2b:be:05:3a:2e:95:ca:8e:9a:72:f1:d4:82:7a:ea:49:ca:a6:
6d:c4:c7:3f:04:bd:90:69:f9:0f:ce:ba:61:86:fa:a8:21:3d:
bf:53:cb:c8:57:1b:17:d3:b7:ce:d0:29:24:04:e6:43:16:5a:
ba:72:34:91:e5:2e:60:ae:ba:cd:95:7e:50:19:98:b5:f5:29:
39:75:91:78:0b:38:de:e7:be:40:c8:80:d0:63:17:55:42:e4:
ce:af:e1:81:6e:1c:c8:ce:ed:7b:35:ab:36:77:cb:9b:e6:bf:
5b:20:42:ca:3c:76:6d:25:12:d7:7c:62:1a:9e:f8:dc:48:f2:
10:9a:a9:10:bd:c6:64:5a:4e:8a:ad:18:b3:85:eb:b8:75:f2:
5d:90:4f:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fL001NpsODMkvGUIL/PNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxMGUyZTlmYjcwNjY4Yzc5NmFkY2U4NzdiMjFlMDlhOGEx
YWQwMjkwHhcNMjUxMDE5MDgwMTE5WhcNMjUxMDIwMDgwMTE5WjAzMTEwLwYDVQQD
Eyg2Y2VjODc2ZWJkYzliNzdiZDExM2EyODFiMDdhOWE3MzQ5NjBmZmRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjMzzhkmpI+jCuECEpqTWBIfcxl0e
xzqvXPZZj4N71FeHKIzucQHqJqIVifc3OyzucDN0JwMxO0FmSZiRjDakvJagqcJg
14zimEF6Hgb2/2NZ/vgXfXzTmF03fgd/bWReJHxlDQTp6CGTQYrqgY7mWj6CNUEi
gl9p4DvaDiRbl/rsADH4KwW+SbhF21TOrVzRG/1QTwGP86pcgpjnhPjc8FoZV6II
oAohQwzaHAc6hTKnCq6/BzGCoXLHkX2PMncMDUj1rRXrJgV8X/ml5Pr1mgPDrxm3
9lwQs0HjAxEPu6CQdf4spVaVfDpbtv3Dah0G6kAfKn4abd/sLbmwE6Uu5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGzsh269ybd70ROigbB6mnNJYP/cMB8GA1UdIwQY
MBaAFDEOLp+3BmjHlq3Oh3sh4JqKGtApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVE0dW43Y0dhTWVXcmM2SGV5SGdtb29hMENrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9kOWQ4MmQtMWNhNC00ODI0LWE5MmMt
Y2E1NWVmYzc3NTJkLzEvTVE0dW43Y0dhTWVXcmM2SGV5SGdtb29hMENrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9kOWQ4MmQtMWNhNC00ODI0LWE5MmMtY2E1NWVmYzc3NTJk
LzEvTVE0dW43Y0dhTWVXcmM2SGV5SGdtb29hMENrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQWy1shbf
kE3+Jgto0hYEDeATxdpxWIk0Kit/ZEDEPGVgxZ39XB5UUd7CMXgeHZQIttcKvfd3
sA6XifDTsqFL5Rto5RHQbjaLCeo95rUS+XLG67UnhAgIrXx3ZjBT7fgkHjch0JQ3
rg8awdKnK74FOi6Vyo6acvHUgnrqScqmbcTHPwS9kGn5D866YYb6qCE9v1PLyFcb
F9O3ztApJATmQxZaunI0keUuYK66zZV+UBmYtfUpOXWReAs43ue+QMiA0GMXVULk
zq/hgW4cyM7tezWrNnfLm+a/WyBCyjx2bSUS13xiGp743EjyEJqpEL3GZFpOiq0Y
s4XruHXyXZBPyg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:23:05 2025 by rpki-client