Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
File: MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft (raw, json)
Hash identifier: KTx7+apGtExe6NE5hNBPEpnn0xd9iYFp5NZqqfeU5Sc=
Subject key identifier: 82:E0:74:5B:E5:02:01:49:E3:A4:AC:FD:B8:5D:A9:39:18:04:C5:7E
Authority key identifier: 30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B
Certificate issuer: /CN=3075d87c197a0fa04da8f225358d3faf786f7d0b
Certificate serial: 0199FF2272F5A7CE16F7E1416A9428B78C62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
Manifest number: 04CE
Signing time: Mon 20 Oct 2025 01:01:11 +0000
Manifest this update: Mon 20 Oct 2025 01:01:11 +0000
Manifest next update: Tue 21 Oct 2025 01:01:11 +0000
Files and hashes: 1: MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl (hash: Fa7oPVURuK0CQy2zOliOstlLs3nUHN9X+e/h8c3RhkQ=)
2: _Op4bSAp0gWDx4UfTJUc97va5qw.roa (hash: tJEKSC7Hrru5HEiTFvhI8vLaAa+FAs4tPlo2cnkUBAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:72:f5:a7:ce:16:f7:e1:41:6a:94:28:b7:8c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3075d87c197a0fa04da8f225358d3faf786f7d0b
Validity
Not Before: Oct 20 01:01:11 2025 GMT
Not After : Oct 21 01:01:11 2025 GMT
Subject: CN=82e0745be5020149e3a4acfdb85da9391804c57e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:05:82:5c:17:61:ce:ed:8c:d3:9d:72:66:85:
1f:5e:94:98:1e:10:b1:bd:af:35:85:df:83:51:44:
76:17:41:42:0a:f1:89:2e:44:c8:36:44:3d:e7:d2:
5d:eb:4b:ff:ce:89:85:12:c8:04:c8:eb:20:56:75:
8f:aa:cc:c8:61:4e:19:a9:64:ef:42:1c:87:45:3d:
37:82:89:9b:09:9a:29:0e:e8:50:4f:ab:8c:67:6d:
b1:32:46:42:74:1f:a8:f9:a0:97:f2:b4:09:47:4d:
77:dd:b1:53:7a:75:9b:90:82:c0:1e:56:3d:6a:ce:
b1:80:d9:4a:60:59:d4:0e:71:07:13:6a:1f:f7:2b:
31:87:ae:40:46:2e:f7:c6:f8:57:4d:a5:d7:5f:07:
2e:2e:f3:65:6c:01:92:66:d1:80:8b:5f:17:e5:31:
fd:44:ac:67:0a:00:4c:cd:d5:3f:b9:ba:ab:08:5c:
90:30:59:b3:c3:1c:c4:d3:0b:73:39:5f:13:10:fa:
a5:37:6a:0a:3a:a6:ff:e7:91:9e:8c:a4:aa:b5:ad:
bc:aa:9a:42:31:49:f6:cc:76:ce:c9:5e:a1:14:2d:
94:19:a0:cc:c8:15:90:04:bb:ac:04:0a:ac:e0:9e:
4b:bd:89:59:6d:10:a0:35:1c:a1:f6:2e:bf:d7:c5:
da:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E0:74:5B:E5:02:01:49:E3:A4:AC:FD:B8:5D:A9:39:18:04:C5:7E
X509v3 Authority Key Identifier:
keyid:30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:d4:7e:c7:e8:e8:d9:1f:ac:67:51:e6:5c:9d:36:f3:6c:5a:
54:6b:6e:0b:54:a6:90:b4:bb:3b:ff:d2:b7:b4:8e:03:f6:23:
ef:d1:4b:c2:dd:14:1f:4e:7a:70:d9:fc:f6:2a:89:5a:d3:9a:
26:89:69:c0:00:22:b1:cd:8f:82:1d:97:8f:4d:48:26:98:26:
c6:43:a8:5d:42:c9:dd:b9:c3:8f:64:e6:10:02:e5:36:8c:a9:
9b:7d:c4:93:e3:90:5b:c7:be:38:95:b1:9a:e6:e6:40:73:0d:
16:92:02:6b:64:da:f7:73:e1:5c:5d:9e:67:7a:f1:c9:c5:74:
0d:78:3d:79:a1:11:84:f3:c4:be:e9:ef:7d:db:67:1f:60:d4:
1d:f3:9a:04:5a:ee:cc:44:0b:d4:6d:42:c2:89:27:b3:8b:6a:
06:99:ac:5e:ff:1b:2e:01:f3:f5:03:09:34:df:fc:b3:a8:3c:
12:8b:5c:a0:cb:78:36:99:91:6a:05:66:01:1c:95:94:1b:21:
8b:35:ac:71:97:a5:a2:a3:13:33:aa:55:70:8e:45:f5:e8:1d:
8e:b7:15:11:3b:87:aa:44:bd:15:b0:01:c9:af:bc:8b:83:bc:
48:b9:b3:a9:af:cf:1f:ea:b6:da:a8:36:5a:00:56:bd:67:b9:
13:51:61:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/InL1p84W9+FBapQot4xiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwNzVkODdjMTk3YTBmYTA0ZGE4ZjIyNTM1OGQzZmFmNzg2
ZjdkMGIwHhcNMjUxMDIwMDEwMTExWhcNMjUxMDIxMDEwMTExWjAzMTEwLwYDVQQD
Eyg4MmUwNzQ1YmU1MDIwMTQ5ZTNhNGFjZmRiODVkYTkzOTE4MDRjNTdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgWCXBdhzu2M051yZoUfXpSYHhCx
va81hd+DUUR2F0FCCvGJLkTINkQ959Jd60v/zomFEsgEyOsgVnWPqszIYU4ZqWTv
QhyHRT03gombCZopDuhQT6uMZ22xMkZCdB+o+aCX8rQJR0133bFTenWbkILAHlY9
as6xgNlKYFnUDnEHE2of9ysxh65ARi73xvhXTaXXXwcuLvNlbAGSZtGAi18X5TH9
RKxnCgBMzdU/ubqrCFyQMFmzwxzE0wtzOV8TEPqlN2oKOqb/55GejKSqta28qppC
MUn2zHbOyV6hFC2UGaDMyBWQBLusBAqs4J5LvYlZbRCgNRyh9i6/18XaUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFILgdFvlAgFJ46Ss/bhdqTkYBMV+MB8GA1UdIwQY
MBaAFDB12HwZeg+gTajyJTWNP694b30LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUhYWWZCbDZENkJOcVBJbE5ZMF9yM2h2ZlFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hNDAwYjItYmFiNC00MTE5LWEzZDEt
ODk5ODFjOGY5ZTdiLzEvTUhYWWZCbDZENkJOcVBJbE5ZMF9yM2h2ZlFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9hNDAwYjItYmFiNC00MTE5LWEzZDEtODk5ODFjOGY5ZTdi
LzEvTUhYWWZCbDZENkJOcVBJbE5ZMF9yM2h2ZlFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf9R+x+jo
2R+sZ1HmXJ0282xaVGtuC1SmkLS7O//St7SOA/Yj79FLwt0UH056cNn89iqJWtOa
JolpwAAisc2Pgh2Xj01IJpgmxkOoXULJ3bnDj2TmEALlNoypm33Ek+OQW8e+OJWx
mubmQHMNFpICa2Ta93PhXF2eZ3rxycV0DXg9eaERhPPEvunvfdtnH2DUHfOaBFru
zEQL1G1Cwokns4tqBpmsXv8bLgHz9QMJNN/8s6g8EotcoMt4NpmRagVmARyVlBsh
izWscZeloqMTM6pVcI5F9egdjrcVETuHqkS9FbABya+8i4O8SLmzqa/PH+q22qg2
WgBWvWe5E1Fh0w==
-----END CERTIFICATE-----
Generated at Mon Oct 20 05:58:43 2025 by rpki-client