Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
File: Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft (raw, json)
Hash identifier: d8+pl6e/Fo7cnjOMmqw0Zbf5Vg9nONtsxOys2Ph98xY=
Subject key identifier: 11:2D:15:48:15:62:03:7C:B5:E0:5C:0B:F1:A6:1A:7E:6A:7F:50:5F
Authority key identifier: 32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
Certificate issuer: /CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Certificate serial: 0199FDD8F2ACE9F6D94D885D8EA3D351AF0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
Manifest number: 03C3
Signing time: Sun 19 Oct 2025 19:01:17 +0000
Manifest this update: Sun 19 Oct 2025 19:01:17 +0000
Manifest next update: Mon 20 Oct 2025 19:01:17 +0000
Files and hashes: 1: Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl (hash: jsSbFXY4qjk4qiHgpkaQQ5zjM9ahundBJIZgyrH+UuU=)
2: ZyPIESuaSWPIuQmq_le4sKOKISE.roa (hash: ZskQdIcp36rlr+2ORbgrG1PrwisAu9ueRcvHTkIY4YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:f2:ac:e9:f6:d9:4d:88:5d:8e:a3:d3:51:af:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Validity
Not Before: Oct 19 19:01:17 2025 GMT
Not After : Oct 20 19:01:17 2025 GMT
Subject: CN=112d15481562037cb5e05c0bf1a61a7e6a7f505f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:18:20:11:ad:0a:a2:42:5e:c6:b8:88:1b:14:
17:01:f1:5b:09:19:59:41:ff:dc:88:ce:08:14:35:
9e:f4:d6:5a:8c:75:ec:d1:30:e2:9b:9b:f0:58:1e:
e9:8b:08:32:1d:e1:9f:8b:ae:48:c1:b5:c5:12:82:
d5:8c:88:35:63:42:c7:4b:d7:5f:c6:b2:46:a4:3e:
77:a9:52:d3:05:e3:41:d7:2b:0d:7a:78:10:0b:4b:
9d:c7:e6:b3:0c:55:3d:b7:ae:c0:00:5c:e7:95:38:
e8:34:bd:3c:b2:46:41:12:27:9f:1f:70:5f:a0:d5:
12:89:75:60:39:5e:df:ae:21:07:3d:93:20:5f:ec:
31:13:80:ff:75:b3:dd:1a:06:62:48:91:51:1d:da:
6c:42:e2:39:d4:3f:10:f5:38:31:43:03:92:df:96:
99:5f:58:89:b0:1b:01:5c:d1:21:7f:9c:7b:4e:3c:
bb:b8:78:99:e2:40:36:7f:7f:a9:a9:8d:db:10:69:
7b:61:31:14:82:7a:5f:2e:5f:f1:03:3b:f3:09:1b:
bd:2f:a5:6f:5d:97:4f:9e:55:da:0c:cd:c4:2e:27:
0f:46:be:e3:4e:d0:12:66:88:f5:5a:a9:5c:08:49:
13:e5:65:b5:cf:0a:27:4a:58:c9:bc:d3:75:c4:bf:
0e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:2D:15:48:15:62:03:7C:B5:E0:5C:0B:F1:A6:1A:7E:6A:7F:50:5F
X509v3 Authority Key Identifier:
keyid:32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:e1:2f:94:6f:48:4f:fe:e3:78:5c:61:68:c7:d9:3b:ed:18:
79:aa:06:65:21:8d:05:7e:41:d3:c3:16:ea:f5:4f:f1:f5:03:
f5:e3:0f:9c:ad:e8:c9:28:ef:5a:e2:4b:02:ca:92:3a:bd:42:
9f:af:9f:e0:d8:ec:1d:cf:80:24:f5:15:66:69:7e:f4:06:16:
fe:f6:bd:69:28:cf:42:a5:3d:d9:bb:a8:e1:95:2e:fd:f4:87:
1d:d0:12:4a:67:a3:78:bb:5a:eb:d6:95:8d:c6:b9:4e:da:67:
13:2d:78:f2:9c:05:53:dc:8a:c2:2a:38:71:8f:2c:2b:4e:63:
81:7d:f6:b8:86:60:46:b1:f7:31:ba:39:6a:47:49:07:73:4f:
0f:14:83:2f:ab:8e:8f:25:35:3d:29:7d:d6:1c:64:7a:bf:b8:
bd:13:7a:9d:82:e4:82:6b:77:f9:4c:e3:10:51:5b:ab:0a:d5:
9f:fa:f3:79:f9:9f:58:9a:eb:a4:0b:6a:ef:f5:62:6e:bb:7f:
3b:4e:58:42:97:0e:d3:cf:61:d5:c9:ae:90:12:9f:e1:d6:7a:
44:ba:95:cd:49:b7:4b:04:d6:48:da:61:ac:22:60:fa:8b:f5:
2a:69:9a:61:04:85:f5:18:bf:b3:ee:06:07:a0:b3:32:ef:00:
9e:45:77:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:55:14 2025 by rpki-client