Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
File: MHTWUd_sSw03HgJQWx-Gk-0djgI.mft (raw, json)
Hash identifier: uVmYstXVPLD8C+DoK7vDZCiilBpPFMbJ0Z3h8naGn0E=
Subject key identifier: 9E:BA:54:F8:D5:DE:8E:50:BC:86:70:0E:72:F1:68:E6:F3:BA:96:67
Authority key identifier: 30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
Certificate issuer: /CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Certificate serial: 019A7149E0C7F512224BC7E3A789DCBF1E89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 05:00:58 +0000
Manifest this update: Tue 11 Nov 2025 05:00:58 +0000
Manifest next update: Wed 12 Nov 2025 05:00:58 +0000
Files and hashes: 1: 1-eAJE_ZPw_LJuNlElXg0BRaL11g.roa (hash: YakZb3LMYAiCfML5t2kxegtBvI+8ocrvx+dTJt+Il2M=)
2: MHTWUd_sSw03HgJQWx-Gk-0djgI.crl (hash: /kaY1JDNtvb+BwQufYDjnD52flfsR6rGeN0mLDCzQbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:e0:c7:f5:12:22:4b:c7:e3:a7:89:dc:bf:1e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Validity
Not Before: Nov 11 05:00:58 2025 GMT
Not After : Nov 12 05:00:58 2025 GMT
Subject: CN=9eba54f8d5de8e50bc86700e72f168e6f3ba9667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4a:b3:c4:e0:03:c1:99:37:7b:73:11:c9:86:
93:28:74:83:ea:59:71:c1:90:94:6a:fe:37:22:26:
5d:ad:27:c5:e9:55:19:f8:31:8a:ed:a4:64:c6:aa:
98:cb:36:97:bf:cc:a3:77:1e:90:6a:85:90:d9:4e:
3f:89:bf:fc:0a:41:e8:fa:99:cb:bc:c2:1c:a1:a0:
af:8d:36:a1:77:14:a4:8b:b0:7e:ad:8d:b9:9f:c2:
79:d3:27:15:eb:21:47:c4:04:33:59:4c:5e:6d:e7:
3a:60:bf:fa:e9:cb:72:b3:8a:9f:3c:3b:82:28:82:
9a:38:62:16:27:33:1c:d1:99:54:a8:61:bf:79:c9:
8c:05:d0:c8:5d:26:10:b4:ef:74:f3:a2:67:a1:3e:
98:65:6d:1e:f9:6e:60:b7:c2:cf:3f:e8:e8:dd:23:
da:04:a6:92:03:aa:99:d8:be:fd:ff:03:83:25:03:
4a:0e:22:64:32:b0:f6:91:32:dc:df:f9:49:70:b3:
4e:7f:2e:81:32:83:00:c6:2e:fa:65:93:cd:51:c0:
3f:14:9a:cb:f6:70:cf:16:87:d1:41:84:d3:2f:66:
2a:7d:e7:dc:c5:3e:d5:9d:5e:08:d3:88:98:6e:f0:
fe:11:83:c2:ce:1f:b3:99:8b:16:ea:67:d7:47:33:
4e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:BA:54:F8:D5:DE:8E:50:BC:86:70:0E:72:F1:68:E6:F3:BA:96:67
X509v3 Authority Key Identifier:
keyid:30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:27:6b:b4:74:7c:11:55:a5:bc:b9:38:9c:ac:7b:bb:76:69:
6e:34:f0:a6:90:24:f4:01:9e:18:5a:86:49:08:82:bc:c5:9f:
cf:58:fe:3e:52:91:fc:9b:f5:e5:f4:5e:2f:03:5f:e4:4c:4f:
06:a0:a4:ed:44:20:75:31:11:75:d1:1f:bf:4d:fc:c9:55:84:
a3:60:56:d5:45:78:a1:47:b9:7b:dd:3e:19:f2:61:32:1c:1c:
96:32:58:0b:51:c9:78:64:d4:e0:1f:be:8b:e6:dd:14:8e:69:
2c:99:20:b7:ba:e0:d3:53:db:72:4b:ee:c7:a2:ff:49:b1:78:
b4:4e:ca:a9:3d:61:36:c2:5d:b2:e4:eb:70:38:81:ee:66:25:
e3:79:a4:46:24:23:ac:fb:14:09:60:0f:39:5a:8c:93:fa:46:
57:68:88:1c:62:44:2e:fd:56:1e:8e:e6:51:0c:28:64:dd:07:
3b:ba:68:5a:30:1a:ef:0b:a3:de:f5:bb:0f:d3:33:4b:04:a9:
53:2d:19:0b:0a:a2:2d:da:38:8c:4e:96:3d:25:c6:2b:ee:00:
1b:65:00:ba:09:a0:ea:35:21:07:96:9d:ef:32:3e:cc:ef:0d:
f4:98:6c:9c:39:4e:43:a5:a3:a9:b1:43:8e:62:53:b3:54:5c:
17:ec:c9:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:27:01 2025 by rpki-client