
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: phil0kCgplxl/DMSLhhjfir2Se1c8IllZ7giARdBxkU=
Subject key identifier: 23:01:B4:E0:57:C4:D9:77:8A:C9:EC:B4:F5:76:EE:6A:56:E7:84:2B
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 0199FB0EE618911A0524252CBD77C29E6047
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 039D
Signing time: Sun 19 Oct 2025 06:01:21 +0000
Manifest this update: Sun 19 Oct 2025 06:01:21 +0000
Manifest next update: Mon 20 Oct 2025 06:01:21 +0000
Files and hashes: 1: MYDLO2vvDKfPNW5B_jde2eQkJYg.roa (hash: wV9kbvDo8W5gfhdwsvfFoAGi3mrp4nPR/cUxhX5vacM=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: m/eC6sfeqjUJRTIBEnXc8fnqOW1zlHGHJz08u3XQ4Dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:e6:18:91:1a:05:24:25:2c:bd:77:c2:9e:60:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: Oct 19 06:01:21 2025 GMT
Not After : Oct 20 06:01:21 2025 GMT
Subject: CN=2301b4e057c4d9778ac9ecb4f576ee6a56e7842b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:60:0b:11:e5:59:7c:d0:5e:55:f9:0e:fb:c4:
a1:60:be:4c:b0:f7:2c:0b:13:2f:3c:87:f8:3c:a7:
3c:17:0c:98:f5:c2:c5:62:0a:9d:84:f8:62:f7:c9:
0d:51:5a:37:e9:31:73:71:20:ff:6c:ff:14:a4:ae:
5d:1d:76:90:42:07:2a:29:ef:0b:57:26:bf:56:11:
e0:cb:53:32:0a:6c:0c:68:b0:43:82:b0:09:82:7a:
18:36:cb:6d:1c:23:27:20:d0:f6:a8:b8:7a:a4:76:
00:6d:2b:30:ee:87:f1:fa:d0:b3:1f:ca:2a:50:f2:
a3:cd:67:c3:34:fb:e2:89:1a:a8:56:5b:b4:42:b5:
b3:fb:3d:2d:67:c4:95:31:94:81:f8:c5:e9:6c:a6:
53:e6:c7:87:0a:10:62:26:ae:c3:d7:1c:96:e6:7d:
8f:ce:16:09:57:72:92:e0:78:d6:67:75:03:5b:f0:
9c:c5:2b:36:15:4a:d1:ff:52:2e:70:e9:ad:ac:46:
3d:f9:46:7e:9e:76:60:e3:6a:4f:16:7b:d5:67:b1:
6c:82:0d:da:dc:ca:15:e7:2b:34:27:3f:40:6d:7d:
0a:39:e8:a9:06:fb:0f:cd:cf:8d:c0:3b:db:ac:b3:
84:5b:1e:0b:b0:48:e7:e8:90:fe:c1:c0:bf:b2:3c:
b8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:01:B4:E0:57:C4:D9:77:8A:C9:EC:B4:F5:76:EE:6A:56:E7:84:2B
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:3d:a6:50:0f:2f:c1:7a:71:64:8a:45:38:a6:6c:9f:63:35:
84:54:b2:cd:01:9a:97:a0:a2:04:f9:1c:77:6f:aa:ef:4d:db:
f1:32:87:95:5d:bb:e0:33:d9:6d:e6:cb:15:35:c3:8d:e9:64:
18:38:3c:a4:69:3a:3d:08:27:01:6d:cc:5c:55:d7:c6:d7:2d:
e4:ea:67:3c:a5:ca:cc:4e:33:d2:0d:b9:5f:32:78:72:78:ef:
8c:fb:ca:41:b5:dd:cf:ce:fb:42:80:64:d9:b2:e6:ee:67:d9:
33:7f:92:7b:7a:41:0a:6a:28:05:c9:01:93:c7:fb:d4:74:78:
7b:4b:52:51:74:a5:01:36:3a:72:df:20:ab:17:1d:68:bc:0e:
d1:7f:ea:fe:66:f4:67:d5:c1:fc:e2:ad:32:af:2c:c4:50:d3:
fa:90:31:74:40:3a:a1:51:76:0d:dc:6e:c9:8e:4e:ef:30:e5:
7d:42:3e:d1:f8:be:5f:6d:7b:d4:8b:b0:9d:df:18:b6:0d:62:
ed:a5:24:be:5e:8c:9a:9d:8a:28:1c:b0:38:76:cb:c1:40:ca:
2b:d2:85:c9:7e:15:ce:c7:c3:1a:fd:ac:31:ec:a8:9e:c3:c0:
70:bb:2f:3d:60:1d:bf:26:91:8c:1f:52:7f:4b:df:2a:db:3a:
00:fc:26:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:15:24 2025 by rpki-client