Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
File: MGwIZtwlII5sB9SiHX2AULUI1qI.mft (raw, json)
Hash identifier: JEB3ISTaqJ+GW9P6RlHbW8lunkheKlyvfJLydXBi0sQ=
Subject key identifier: 45:11:00:1A:F3:7B:CA:2A:81:BF:E8:45:63:24:56:88:28:56:68:7B
Authority key identifier: 30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
Certificate issuer: /CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Certificate serial: 0198D5BBE72DB986BD90B42591037377BBEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
Manifest number: 14C0
Signing time: Sat 23 Aug 2025 07:01:58 +0000
Manifest this update: Sat 23 Aug 2025 07:01:58 +0000
Manifest next update: Sun 24 Aug 2025 07:01:58 +0000
Files and hashes: 1: 6ijDtJkuoccCgLkguN9W1JJhdPo.roa (hash: Sp0vA+9FLAdG8kzazXtCjmipaXXNSCP/zgC375qVZ5o=)
2: DhdGK18Qr8BfEi425qb4XqU3Df0.roa (hash: zUZN1xRmcwh2/G+LSnUGvmnpV/nEFzaIhdcZknHnKqM=)
3: HdR6Ah0Qe32r7472JEBtQ7R-uic.roa (hash: 9q8qH00PICKWGR7GNHvqSbuGck7QEOPOmn1zpnijT28=)
4: MGwIZtwlII5sB9SiHX2AULUI1qI.crl (hash: oDqS7N3VyZGpvnob6bvetsk63pisRDHOlkFiC/vluRI=)
5: wEwtO0NZ6TXQX8gg0IJb0VzbQ-Q.roa (hash: FcEEWrJiS8yPWJa3yj7NmskgZezjJ7BeD2/PrD66/Oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:e7:2d:b9:86:bd:90:b4:25:91:03:73:77:bb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Validity
Not Before: Aug 23 07:01:58 2025 GMT
Not After : Aug 24 07:01:58 2025 GMT
Subject: CN=4511001af37bca2a81bfe845632456882856687b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e3:ea:ec:2c:00:6f:d6:34:38:be:7c:39:84:
4a:27:52:98:fa:12:c8:11:ca:58:17:7e:65:00:fa:
c9:d1:c8:28:df:08:9b:a3:b6:65:02:60:d0:4b:9a:
67:b3:42:ec:19:42:f5:b5:86:83:93:cd:13:31:92:
5f:d3:c9:35:27:06:16:7c:e6:67:4c:1f:29:11:dc:
ae:bb:4c:b4:c2:4b:a7:16:2e:38:e4:a7:d4:30:f3:
64:87:59:40:5f:f0:b8:21:99:c0:b2:2f:ee:1e:3b:
99:1a:a9:f8:17:7c:27:c5:17:56:81:e7:56:af:d3:
f9:40:f7:69:72:1f:e4:81:8e:17:fd:b6:44:43:2e:
0f:14:80:76:2a:df:c1:e7:07:61:ab:38:e3:23:4a:
a5:6c:7c:c3:64:e5:07:a4:e0:b9:70:8f:7c:46:c7:
87:82:6d:0d:a5:45:04:98:5b:cd:b1:a8:c7:a8:77:
9c:f4:6c:d7:7e:a9:c0:1c:75:f6:8c:7a:7e:2d:db:
6b:cc:82:6e:41:4d:9f:f3:05:52:a0:d7:a5:c8:d9:
6e:d6:82:22:e7:de:3c:16:6b:73:98:21:7e:6a:30:
46:14:65:77:80:9d:26:35:00:56:b2:8d:81:f9:03:
d7:c5:2e:98:00:e0:d1:07:fb:1d:b6:bf:30:e7:71:
d7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:11:00:1A:F3:7B:CA:2A:81:BF:E8:45:63:24:56:88:28:56:68:7B
X509v3 Authority Key Identifier:
keyid:30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:c1:cb:4a:d8:bc:62:7a:19:9f:29:ad:25:07:36:4a:9b:ce:
46:42:d3:6c:3e:26:a4:d5:84:bf:85:5b:75:28:15:24:2b:59:
a0:72:58:25:06:11:64:99:31:7a:0a:ff:a3:a0:58:f6:c3:a2:
26:e5:83:4e:cd:86:73:80:17:df:52:2e:dd:27:93:66:21:30:
9e:a1:10:ee:db:26:bc:40:78:34:b1:1b:a0:98:86:3e:76:4e:
69:f2:d5:8f:5f:d5:0a:34:1a:70:19:75:11:a6:ca:19:42:46:
d7:55:86:84:23:b7:e9:c4:f0:34:76:de:ae:66:2e:db:2a:22:
cd:70:8e:d4:94:7e:f2:05:4e:10:52:8b:6d:b4:fe:8c:d3:e2:
87:1b:a1:83:74:1d:79:8b:ca:fd:04:e8:58:42:8c:90:38:cb:
a0:c7:d5:60:b1:e2:b8:08:ed:99:08:31:09:a0:c2:cf:c0:3f:
15:41:ba:e5:91:bc:83:43:98:f3:1b:e4:2b:2f:36:cb:ce:76:
65:74:da:ca:92:42:c3:ce:7f:7b:e4:7c:0a:69:f7:00:8a:11:
da:6c:9c:5f:f0:0e:41:e4:09:92:fb:e0:5f:6f:74:9d:a4:f7:
93:97:a1:c8:17:44:35:94:98:a4:26:0f:48:fb:66:5f:35:df:
a3:fa:50:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu+ctuYa9kLQlkQNzd7vvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwNmMwODY2ZGMyNTIwOGU2YzA3ZDRhMjFkN2Q4MDUwYjUw
OGQ2YTIwHhcNMjUwODIzMDcwMTU4WhcNMjUwODI0MDcwMTU4WjAzMTEwLwYDVQQD
Eyg0NTExMDAxYWYzN2JjYTJhODFiZmU4NDU2MzI0NTY4ODI4NTY2ODdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuPq7CwAb9Y0OL58OYRKJ1KY+hLI
EcpYF35lAPrJ0cgo3wibo7ZlAmDQS5pns0LsGUL1tYaDk80TMZJf08k1JwYWfOZn
TB8pEdyuu0y0wkunFi445KfUMPNkh1lAX/C4IZnAsi/uHjuZGqn4F3wnxRdWgedW
r9P5QPdpch/kgY4X/bZEQy4PFIB2Kt/B5wdhqzjjI0qlbHzDZOUHpOC5cI98RseH
gm0NpUUEmFvNsajHqHec9GzXfqnAHHX2jHp+LdtrzIJuQU2f8wVSoNelyNlu1oIi
5948FmtzmCF+ajBGFGV3gJ0mNQBWso2B+QPXxS6YAODRB/sdtr8w53HXXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEURABrze8oqgb/oRWMkVogoVmh7MB8GA1UdIwQY
MBaAFDBsCGbcJSCObAfUoh19gFC1CNaiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUd3SVp0d2xJSTVzQjlTaUhYMkFVTFVJMXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9iYWRlZGYtZDBlOS00NWE5LWFmNzUt
MTBlZGI1NDFlNmZmLzEvTUd3SVp0d2xJSTVzQjlTaUhYMkFVTFVJMXFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9iYWRlZGYtZDBlOS00NWE5LWFmNzUtMTBlZGI1NDFlNmZm
LzEvTUd3SVp0d2xJSTVzQjlTaUhYMkFVTFVJMXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPsHLSti8
YnoZnymtJQc2SpvORkLTbD4mpNWEv4VbdSgVJCtZoHJYJQYRZJkxegr/o6BY9sOi
JuWDTs2Gc4AX31Iu3SeTZiEwnqEQ7tsmvEB4NLEboJiGPnZOafLVj1/VCjQacBl1
EabKGUJG11WGhCO36cTwNHbermYu2yoizXCO1JR+8gVOEFKLbbT+jNPihxuhg3Qd
eYvK/QToWEKMkDjLoMfVYLHiuAjtmQgxCaDCz8A/FUG65ZG8g0OY8xvkKy82y852
ZXTaypJCw85/e+R8Cmn3AIoR2mycX/AOQeQJkvvgX290naT3k5ehyBdENZSYpCYP
SPtmXzXfo/pQ0g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:38:03 2025 by rpki-client