Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.mft
File: MxpRr9TLZoLCMN7WQGWMETxWL9I.mft (raw, json)
Hash identifier: ib0peq66fsrXbaqZzAywSXhmObgcB8lrAB09cxH6aFE=
Subject key identifier: 58:9E:99:B5:FF:7E:B2:41:5E:87:C4:21:CB:4B:E1:A3:13:3D:C9:86
Authority key identifier: 33:1A:51:AF:D4:CB:66:82:C2:30:DE:D6:40:65:8C:11:3C:56:2F:D2
Certificate issuer: /CN=331a51afd4cb6682c230ded640658c113c562fd2
Certificate serial: 0199FC21BADBBB1B02D2F2C3743658BDAA67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxpRr9TLZoLCMN7WQGWMETxWL9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.mft
Manifest number: 0930
Signing time: Sun 19 Oct 2025 11:01:32 +0000
Manifest this update: Sun 19 Oct 2025 11:01:32 +0000
Manifest next update: Mon 20 Oct 2025 11:01:32 +0000
Files and hashes: 1: MxpRr9TLZoLCMN7WQGWMETxWL9I.crl (hash: Fbm0iywHz/TE1WYs2nCxKpCvC1O3mQaJ4e87WZjn5mU=)
2: TS9TQNQnmKCUyfNW3iHSrKN4kHU.roa (hash: FKmub+udVUMJc6SCu1H3/G3fAnw8GwGXkDsFmXaZ8+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.mft
rsync://rpki.ripe.net/repository/DEFAULT/MxpRr9TLZoLCMN7WQGWMETxWL9I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:ba:db:bb:1b:02:d2:f2:c3:74:36:58:bd:aa:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331a51afd4cb6682c230ded640658c113c562fd2
Validity
Not Before: Oct 19 11:01:32 2025 GMT
Not After : Oct 20 11:01:32 2025 GMT
Subject: CN=589e99b5ff7eb2415e87c421cb4be1a3133dc986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8e:f3:32:64:cd:74:e5:fc:71:d4:15:ce:ee:
1a:be:31:7a:e5:52:61:59:a7:8f:ef:21:34:13:1e:
01:fd:21:37:a9:3d:1d:9f:72:d1:57:1c:3b:22:6c:
a1:c0:a1:cd:d4:ea:52:2d:4b:04:6c:be:04:dd:f7:
f6:32:ab:88:5d:56:97:c2:e8:3f:c0:dd:15:02:60:
2e:02:a1:8a:53:e6:99:29:be:1a:2c:cd:cb:cc:e3:
14:14:e2:3b:3d:66:b7:68:3b:fe:da:c8:fa:7b:8a:
7e:6f:96:d1:bc:ce:c0:5f:c6:2b:95:da:fc:2d:29:
0f:f8:34:02:0e:78:7b:94:f5:ad:d0:13:ed:1b:bb:
fc:f3:07:d6:52:0d:ea:93:48:bb:78:15:4c:ce:04:
c6:19:12:12:ea:ee:c8:87:d1:f7:6e:b5:6c:aa:74:
e8:9f:a7:dd:87:b7:bc:af:12:37:e2:05:f8:d0:94:
25:4e:d2:72:4c:8f:6e:fe:66:67:6a:b4:0d:e0:6c:
63:eb:6e:39:3f:59:17:d2:fb:6e:18:ad:cf:40:0e:
7d:fd:3e:63:c2:6f:49:5f:90:4d:0d:21:1f:f2:84:
de:74:6c:0d:76:4f:ec:68:63:e0:bd:a3:ad:f8:a2:
ab:67:81:fc:23:8b:e2:1f:88:8a:07:a8:6a:44:14:
06:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:9E:99:B5:FF:7E:B2:41:5E:87:C4:21:CB:4B:E1:A3:13:3D:C9:86
X509v3 Authority Key Identifier:
keyid:33:1A:51:AF:D4:CB:66:82:C2:30:DE:D6:40:65:8C:11:3C:56:2F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxpRr9TLZoLCMN7WQGWMETxWL9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:21:cb:36:50:61:94:96:e7:c6:30:c7:48:6f:72:e8:b5:64:
e9:6b:82:af:cc:49:c1:78:cd:59:31:89:73:a2:0b:b8:6c:5b:
ed:e4:dc:63:72:4b:37:42:44:a5:56:cb:76:80:4b:71:2c:73:
7b:5c:c9:fb:c0:f0:17:ab:d9:44:34:67:aa:bc:f2:e6:ad:c9:
c6:fe:0a:05:87:52:43:70:96:eb:17:25:f4:e2:b0:8b:ac:7e:
53:6a:95:79:e2:de:e1:19:85:72:3c:c5:bf:b0:2a:f3:b3:9a:
c0:55:7a:77:f3:7e:b3:86:09:d4:25:6f:c4:4e:32:8c:0f:b6:
3c:66:b1:67:2c:b4:86:ad:24:a5:8c:e2:11:f0:8a:8a:fb:20:
77:f3:3e:8b:cd:d9:f4:f5:e9:3d:1f:90:af:ac:12:dc:19:6d:
14:38:46:b3:fd:0c:58:73:39:a3:98:61:94:97:81:c3:21:38:
dc:cf:8a:bb:e7:a4:05:41:4a:26:50:36:21:76:cb:cb:e4:07:
41:82:53:9b:69:8e:4d:bc:6c:56:58:1e:85:dd:20:36:21:73:
6b:e5:aa:17:9f:18:ff:35:1f:ca:a3:21:61:b2:14:35:23:22:
30:16:15:aa:4d:bb:14:54:88:44:1b:66:62:3b:53:ed:59:02:
de:09:74:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IbrbuxsC0vLDdDZYvapnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzMWE1MWFmZDRjYjY2ODJjMjMwZGVkNjQwNjU4YzExM2M1
NjJmZDIwHhcNMjUxMDE5MTEwMTMyWhcNMjUxMDIwMTEwMTMyWjAzMTEwLwYDVQQD
Eyg1ODllOTliNWZmN2ViMjQxNWU4N2M0MjFjYjRiZTFhMzEzM2RjOTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqY7zMmTNdOX8cdQVzu4avjF65VJh
WaeP7yE0Ex4B/SE3qT0dn3LRVxw7ImyhwKHN1OpSLUsEbL4E3ff2MquIXVaXwug/
wN0VAmAuAqGKU+aZKb4aLM3LzOMUFOI7PWa3aDv+2sj6e4p+b5bRvM7AX8Yrldr8
LSkP+DQCDnh7lPWt0BPtG7v88wfWUg3qk0i7eBVMzgTGGRIS6u7Ih9H3brVsqnTo
n6fdh7e8rxI34gX40JQlTtJyTI9u/mZnarQN4Gxj6245P1kX0vtuGK3PQA59/T5j
wm9JX5BNDSEf8oTedGwNdk/saGPgvaOt+KKrZ4H8I4viH4iKB6hqRBQGFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFiembX/frJBXofEIctL4aMTPcmGMB8GA1UdIwQY
MBaAFDMaUa/Uy2aCwjDe1kBljBE8Vi/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXhwUnI5VExab0xDTU43V1FHV01FVHhXTDlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8xY2RiYjEtZTI2NS00NGM1LWI5ODAt
NGE1NjZhZGQ1NGIyLzEvTXhwUnI5VExab0xDTU43V1FHV01FVHhXTDlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8xY2RiYjEtZTI2NS00NGM1LWI5ODAtNGE1NjZhZGQ1NGIy
LzEvTXhwUnI5VExab0xDTU43V1FHV01FVHhXTDlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARyHLNlBh
lJbnxjDHSG9y6LVk6WuCr8xJwXjNWTGJc6ILuGxb7eTcY3JLN0JEpVbLdoBLcSxz
e1zJ+8DwF6vZRDRnqrzy5q3Jxv4KBYdSQ3CW6xcl9OKwi6x+U2qVeeLe4RmFcjzF
v7Aq87OawFV6d/N+s4YJ1CVvxE4yjA+2PGaxZyy0hq0kpYziEfCKivsgd/M+i83Z
9PXpPR+Qr6wS3BltFDhGs/0MWHM5o5hhlJeBwyE43M+Ku+ekBUFKJlA2IXbLy+QH
QYJTm2mOTbxsVlgehd0gNiFza+WqF58Y/zUfyqMhYbIUNSMiMBYVqk27FFSIRBtm
YjtT7VkC3gl0UA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:19 2025 by rpki-client