Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
File: MGwIZtwlII5sB9SiHX2AULUI1qI.mft (raw, json)
Hash identifier: ZT/kNm9h+bSHClG8PywiGQl4s2dTglcmC7RPmtFrQ+Y=
Subject key identifier: F5:20:DC:53:1F:65:E8:1B:D9:DA:59:24:8A:E8:64:48:3F:98:0B:1A
Authority key identifier: 30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
Certificate issuer: /CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Certificate serial: 0199FF593571A33D47287E1DEFC3AF33D797
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
Manifest number: 155C
Signing time: Mon 20 Oct 2025 02:01:00 +0000
Manifest this update: Mon 20 Oct 2025 02:01:00 +0000
Manifest next update: Tue 21 Oct 2025 02:01:00 +0000
Files and hashes: 1: DhdGK18Qr8BfEi425qb4XqU3Df0.roa (hash: zUZN1xRmcwh2/G+LSnUGvmnpV/nEFzaIhdcZknHnKqM=)
2: HdR6Ah0Qe32r7472JEBtQ7R-uic.roa (hash: 9q8qH00PICKWGR7GNHvqSbuGck7QEOPOmn1zpnijT28=)
3: MGwIZtwlII5sB9SiHX2AULUI1qI.crl (hash: fpDLZY5wWR+8/kS91PsKQaRcAi6iXcObxnzRDxhuZF8=)
4: fijUe6qDGFgvjf20rKDx3KsLKhg.roa (hash: foZAP48xDa0sL73147a0de2CyfWzFAaIZ8oA6qYD28M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:35:71:a3:3d:47:28:7e:1d:ef:c3:af:33:d7:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Validity
Not Before: Oct 20 02:01:00 2025 GMT
Not After : Oct 21 02:01:00 2025 GMT
Subject: CN=f520dc531f65e81bd9da59248ae864483f980b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5e:37:63:ac:2a:08:fe:87:f6:f4:cb:a6:dd:
97:e1:ce:bb:0c:a8:2b:2e:f2:78:76:6d:4f:40:ad:
58:84:5e:f5:82:53:27:30:e3:c0:ca:58:56:49:a0:
af:90:aa:31:fd:71:ab:bb:78:fa:f7:62:43:e3:15:
f5:3b:6b:7d:6a:62:d4:a6:ba:31:b9:2d:90:51:b0:
82:69:1a:e6:f2:b2:28:5b:4f:29:d6:39:fe:80:4f:
09:65:ea:b1:72:40:4f:8b:4b:b1:3c:4b:ea:77:1b:
91:6b:ed:bf:ab:29:5f:36:34:80:cf:d1:c3:49:9c:
19:4f:08:b4:86:b7:49:47:1d:d1:fb:47:b2:df:91:
2e:53:9e:d0:5d:b4:e3:86:a1:93:05:9f:ff:da:64:
d7:4d:a0:2d:79:46:72:0e:1c:55:84:2f:59:19:cf:
6a:c2:0c:26:d7:f5:53:68:be:db:db:60:ce:e1:17:
a9:9e:a0:fb:51:5f:a1:74:76:10:fe:44:58:b1:21:
37:be:ed:d8:53:2c:f8:cc:2c:dc:65:7d:1c:62:f0:
ed:1f:a7:ec:71:5a:c5:99:97:df:d7:04:b5:ed:a5:
97:77:56:a8:af:4f:62:30:cd:62:ba:90:2e:fd:ed:
26:5c:3c:40:c7:23:bc:5b:09:f5:e0:d9:54:64:b4:
f6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:20:DC:53:1F:65:E8:1B:D9:DA:59:24:8A:E8:64:48:3F:98:0B:1A
X509v3 Authority Key Identifier:
keyid:30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:b5:db:0a:4f:62:55:96:c7:64:2f:72:bb:8a:0e:22:06:cc:
d1:eb:ac:b0:04:65:c6:7b:16:d8:53:97:46:70:14:84:29:77:
da:05:c4:43:b7:c6:e5:37:14:9c:4b:3f:63:c7:c8:a3:42:28:
18:54:97:53:e4:4c:66:0e:d3:72:77:f2:ec:da:e5:99:e8:8d:
08:af:9c:de:68:1c:36:02:47:8c:44:61:e8:f7:81:c6:46:a4:
98:73:c0:7b:9b:0b:c5:9f:45:63:d2:c6:5b:44:b2:6e:e8:37:
fc:a9:48:43:1f:ac:c0:70:41:66:18:e3:54:74:71:dd:6a:29:
96:3b:e2:73:ab:8f:f5:a7:60:dd:88:0a:5c:20:a8:dd:94:06:
3d:53:9d:13:ea:3d:c1:65:cc:d1:28:82:63:e7:6b:2f:20:31:
e1:59:70:24:fc:61:42:ce:71:eb:fc:ec:14:e1:00:cd:b5:a9:
01:8d:3f:ef:e2:21:c9:24:71:4a:42:fd:0f:e1:aa:55:cb:ad:
5a:e4:2f:b0:ec:64:f6:01:4f:36:07:92:09:f0:e5:4e:82:c9:
21:49:6d:76:f6:88:07:20:72:d7:46:6c:5a:76:74:bd:65:59:
1b:58:1c:da:a1:d7:d6:35:a2:ad:c3:1b:c1:70:c6:4a:77:ef:
43:f6:f7:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:07:38 2025 by rpki-client