Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
File: MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft (raw, json)
Hash identifier: ynfDqk7NZdyp5MaV1awmLVBhCVa8ZkVqXzEBkbyg/W8=
Subject key identifier: D4:61:A3:E5:B2:40:F0:6E:AE:97:14:7E:E1:50:31:25:06:45:66:3F
Authority key identifier: 30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B
Certificate issuer: /CN=3075d87c197a0fa04da8f225358d3faf786f7d0b
Certificate serial: 0198D7A943D1407078F1ED920072E3EF3B16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
Manifest number: 0435
Signing time: Sat 23 Aug 2025 16:00:51 +0000
Manifest this update: Sat 23 Aug 2025 16:00:51 +0000
Manifest next update: Sun 24 Aug 2025 16:00:51 +0000
Files and hashes: 1: MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl (hash: r4+ZSr8nmf0ijso4fuQHeJrliAPHR9uoVFAG3d+ynK0=)
2: _Op4bSAp0gWDx4UfTJUc97va5qw.roa (hash: tJEKSC7Hrru5HEiTFvhI8vLaAa+FAs4tPlo2cnkUBAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:43:d1:40:70:78:f1:ed:92:00:72:e3:ef:3b:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3075d87c197a0fa04da8f225358d3faf786f7d0b
Validity
Not Before: Aug 23 16:00:51 2025 GMT
Not After : Aug 24 16:00:51 2025 GMT
Subject: CN=d461a3e5b240f06eae97147ee15031250645663f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:53:14:24:eb:9d:4f:c5:b2:9c:a4:3e:fb:f6:
08:0e:65:30:65:c3:c3:bf:e6:cd:d2:b7:84:4f:0d:
0f:0a:26:36:a8:54:1a:52:be:77:ce:ae:ff:41:d5:
3f:cc:60:8d:d2:7f:9c:93:ad:50:81:5d:4c:6b:8c:
ae:d8:02:b7:43:52:12:9e:a7:5b:0a:08:62:77:c0:
dc:e4:24:7d:7e:87:5f:b0:16:85:a0:d4:ce:7e:ee:
03:47:f8:04:d3:37:90:a5:6b:00:01:e7:be:9f:f2:
d5:d5:f4:79:66:44:63:b2:12:a8:4a:e4:54:84:a1:
9c:fa:2d:58:21:10:04:9f:70:da:79:2a:6a:08:fc:
1e:81:64:55:8e:63:90:f1:9d:5f:6b:82:12:fd:32:
09:9f:75:d3:a0:37:26:4c:e6:6d:ce:73:39:12:90:
b8:7b:05:c9:e6:d0:5a:be:a1:5f:73:ec:38:08:cd:
05:78:51:47:52:0a:31:2c:ea:37:b2:8d:b6:7e:63:
92:41:a3:59:1a:81:45:9e:3c:e1:4e:66:81:8f:c0:
ab:4b:eb:51:e2:54:02:df:66:56:23:30:42:59:6e:
84:03:dc:e4:f0:14:46:6b:f6:6d:61:44:bc:5c:81:
55:75:c4:87:83:9a:ac:0e:46:b1:fa:9d:57:88:23:
af:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:61:A3:E5:B2:40:F0:6E:AE:97:14:7E:E1:50:31:25:06:45:66:3F
X509v3 Authority Key Identifier:
keyid:30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:7b:07:00:12:05:d3:d5:03:e8:0f:6b:dd:d9:08:c4:88:52:
ee:e9:f6:b1:50:da:61:55:b8:9e:79:d2:70:f6:03:f6:39:41:
37:da:9e:7d:f7:be:a1:9c:73:92:df:46:89:ce:22:b1:4b:88:
57:15:64:59:dc:fc:13:5f:fe:76:ec:8a:c4:fd:7b:ac:0a:e8:
7e:ee:3a:ee:7c:a7:20:98:86:b5:07:32:df:79:05:9c:43:03:
6f:b0:6a:25:07:6e:04:ab:d1:b9:76:a8:6a:84:ab:0f:bb:02:
b1:44:87:5b:7b:cb:66:0c:72:62:33:aa:60:ef:76:c8:14:0d:
29:c8:56:32:b6:17:65:e4:bb:e6:cd:74:31:34:48:16:68:97:
24:39:69:3c:f6:15:ca:c5:44:b3:80:72:68:39:93:71:a4:34:
78:b1:e0:d1:bc:75:db:58:ba:0c:55:54:07:43:8f:50:ff:5b:
43:c7:30:74:6f:89:9a:5a:20:32:91:ca:71:b9:9c:96:b4:d2:
f4:5d:db:25:75:e8:8d:45:81:de:a8:1e:6d:5b:66:c1:12:34:
98:46:de:9f:17:34:0f:f4:fe:00:ea:5f:ce:74:b9:a8:24:a6:
3a:24:00:8e:fe:4e:d5:d1:82:c4:f9:a8:c5:d0:58:3f:06:1e:
63:d7:87:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:31:42 2025 by rpki-client