Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
File: MGwIZtwlII5sB9SiHX2AULUI1qI.mft (raw, json)
Hash identifier: aGP0rg1aOT2KBTYxfxJZfM2atfF5Q3JR5QIUfxykc5w=
Subject key identifier: D8:F2:25:89:9D:51:C4:88:54:96:93:EB:11:15:BC:9E:B2:C9:6B:69
Authority key identifier: 30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
Certificate issuer: /CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Certificate serial: 019D389BDE0819439ADC6E622247EB147C79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
Manifest number: 170B
Signing time: Sun 29 Mar 2026 08:00:32 +0000
Manifest this update: Sun 29 Mar 2026 08:00:32 +0000
Manifest next update: Mon 30 Mar 2026 08:00:32 +0000
Files and hashes: 1: MGwIZtwlII5sB9SiHX2AULUI1qI.crl (hash: k6iuEI/FE7WB2l/uwfDY+iqqugbrJNGaXFYRffDJ4Bc=)
2: b07UfMEb7bgqS9YVKg3FeyWplBY.roa (hash: 5La9pjg5nSt4KkLswON450P9sRutO7xwpRh6hKJ6x+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:de:08:19:43:9a:dc:6e:62:22:47:eb:14:7c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Validity
Not Before: Mar 29 08:00:32 2026 GMT
Not After : Mar 30 08:00:32 2026 GMT
Subject: CN=d8f225899d51c488549693eb1115bc9eb2c96b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b7:48:56:f3:b7:0b:2e:3e:6b:8a:5e:ca:c6:
13:19:54:9f:76:42:ae:1d:1b:80:64:af:5e:f2:15:
10:21:20:99:36:e1:51:b8:26:cd:02:34:59:70:8c:
00:f8:52:84:03:bf:da:61:4b:9a:20:93:c4:01:57:
cd:da:81:af:57:e8:72:e9:01:48:19:f8:f7:a5:8b:
51:0a:bf:15:41:3b:ad:ff:2c:72:5b:89:30:59:79:
81:03:ae:8f:ce:b0:73:2b:03:1d:55:de:86:94:86:
c5:fd:71:cb:be:88:3a:ed:3c:9c:b9:b0:25:f2:4b:
77:64:56:41:39:c9:1f:47:a4:da:3a:19:7c:55:68:
92:8b:87:9a:52:3b:95:f3:ac:a0:ae:16:37:ca:06:
e2:ed:2c:d9:5d:a8:ac:3e:39:f2:34:35:f5:82:93:
fd:16:6a:1a:0a:1e:56:27:82:b3:dd:eb:25:29:ed:
f2:4d:5b:20:a1:85:a7:9c:52:3d:10:5b:01:3c:c7:
0d:e5:f6:0e:94:35:7b:2d:00:c7:61:be:9f:0e:85:
d2:3f:63:7d:55:55:6d:86:c5:ee:92:62:ac:43:72:
17:40:4f:00:de:8b:a5:09:7c:99:62:1b:e5:1b:b3:
68:b9:11:71:29:4f:76:25:c7:69:0b:f2:5f:33:9a:
c0:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F2:25:89:9D:51:C4:88:54:96:93:EB:11:15:BC:9E:B2:C9:6B:69
X509v3 Authority Key Identifier:
keyid:30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:d1:87:41:fc:11:db:07:23:d7:67:9d:bb:59:13:a6:d8:70:
9b:20:e3:f7:df:66:ca:a6:0f:74:54:a9:96:4f:3c:b7:70:19:
4e:71:13:5f:99:76:5c:78:2c:1c:0b:9d:87:c1:8d:82:0f:46:
f9:e3:93:66:ca:70:71:64:01:f9:ba:68:c8:75:7c:c8:54:70:
b7:9d:4a:4c:1b:8a:41:2f:4a:c4:95:ba:76:07:db:17:fb:14:
9d:d3:ae:be:e5:e0:5f:52:c2:ec:32:70:61:d5:5f:53:37:2a:
4c:24:5d:27:9c:4c:89:99:b9:72:1c:27:3d:39:de:ef:36:37:
d5:15:d9:92:51:d4:86:ca:6d:50:5f:ce:d4:cb:48:e7:c1:a1:
a6:a0:c5:f9:a7:66:26:7a:bb:a2:c0:70:d0:44:a3:fa:c5:3b:
88:79:9b:70:71:33:5d:fb:0c:68:55:74:20:54:b4:a2:de:2a:
68:7a:f2:06:bd:9d:a1:82:f7:23:f8:38:01:4d:77:70:42:05:
56:ef:0d:b2:c7:4d:60:31:bf:bc:ef:92:f9:9e:fc:97:68:88:
50:3d:da:58:38:a3:10:be:bc:27:04:3b:36:e2:8e:30:ab:44:
6f:14:5e:ff:84:f4:4c:cc:95:b7:72:3d:84:41:c0:25:27:d9:
2a:92:d7:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:28 2026 by rpki-client