Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
File: MHTWUd_sSw03HgJQWx-Gk-0djgI.mft (raw, json)
Hash identifier: a+Ml8Wbp7ehJXBjHyxO5Id1Sgi4CX0xUw8U2AaRObR8=
Subject key identifier: 7C:A0:4F:74:91:63:E0:61:54:65:32:FB:DD:B9:15:64:31:79:C0:E6
Authority key identifier: 30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
Certificate issuer: /CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Certificate serial: 01974A0CC47CF5972158ACB2257B8CB04120
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 11:00:39 +0000
Manifest this update: Sat 07 Jun 2025 11:00:39 +0000
Manifest next update: Sun 08 Jun 2025 11:00:39 +0000
Files and hashes: 1: 1-eAJE_ZPw_LJuNlElXg0BRaL11g.roa (hash: YakZb3LMYAiCfML5t2kxegtBvI+8ocrvx+dTJt+Il2M=)
2: MHTWUd_sSw03HgJQWx-Gk-0djgI.crl (hash: 9TCE0AdL0JKOnP+d+nGLO7es1VnvqXEv32G2raTXh4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:c4:7c:f5:97:21:58:ac:b2:25:7b:8c:b0:41:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Validity
Not Before: Jun 7 11:00:39 2025 GMT
Not After : Jun 8 11:00:39 2025 GMT
Subject: CN=7ca04f749163e061546532fbddb915643179c0e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ed:da:2e:62:ec:c2:22:67:a7:f0:91:7e:36:
5e:06:91:6b:1f:7a:e5:c5:95:bf:a2:a5:a5:fd:65:
d7:cb:6e:4d:da:36:31:56:dd:05:ea:ff:8f:16:36:
65:41:19:01:ec:22:29:5a:ed:31:b2:4d:c7:df:f6:
98:9c:e0:59:8a:d6:a3:4f:2f:9d:20:e7:b6:68:59:
ad:7e:34:49:4f:b9:39:9a:ce:2a:0a:02:cb:73:f9:
02:13:de:6d:9a:60:9b:cc:88:a2:fe:0c:24:74:2e:
65:40:e8:a2:8f:3a:9e:2a:1b:ae:8d:85:05:81:ba:
a3:84:a7:24:f7:6a:97:04:be:35:90:6f:c6:33:19:
70:88:cb:c6:8c:9f:58:b9:6a:bf:10:47:9a:a5:a0:
54:f6:1b:01:09:05:e2:50:38:f2:e0:2c:2e:25:ad:
0d:ab:49:6d:d8:c4:4f:78:94:4a:84:78:bc:4b:88:
12:d1:5f:ab:5c:52:c9:bd:b0:a3:52:c1:78:ba:04:
81:36:3f:22:db:b9:57:b0:42:b8:b6:c0:32:5c:48:
a9:72:e7:53:2e:b0:63:2b:36:10:7b:8a:ce:96:c4:
92:1a:75:b8:92:5e:93:b3:28:e7:98:87:f2:46:7f:
3b:f5:a7:f8:34:5a:9f:b1:c8:0c:1e:62:d9:20:5f:
a1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A0:4F:74:91:63:E0:61:54:65:32:FB:DD:B9:15:64:31:79:C0:E6
X509v3 Authority Key Identifier:
keyid:30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:df:b2:f1:5e:b7:a7:73:ff:18:b6:a1:4f:3a:08:26:2d:7d:
5a:8e:af:20:f7:f3:5d:95:69:70:34:33:4f:3d:d9:14:94:9c:
f7:b7:25:7c:b0:28:e2:ba:75:13:d6:81:7b:6c:03:7b:40:10:
16:d1:f8:a2:ff:13:73:88:b4:b3:e2:9d:28:11:18:3c:9b:c9:
87:83:e1:75:6b:b9:93:0a:d0:21:f0:72:cc:42:d3:ee:21:b6:
e8:b1:49:98:18:d5:96:99:19:f5:23:f7:f0:e6:8e:a5:9b:8e:
ce:fb:e6:05:81:dd:54:fe:23:df:a4:ec:a8:b4:0d:59:03:72:
c5:b2:ef:7a:45:73:74:5f:af:b1:28:f4:a0:1c:cd:6c:1a:ca:
d6:b1:48:46:29:52:87:f4:da:53:68:03:79:5a:8a:38:8e:4a:
c7:ae:40:c7:75:e8:86:2b:9f:60:83:43:82:56:74:b0:15:0a:
17:5a:de:73:5c:45:01:04:8d:08:d6:4f:16:06:37:f4:77:ac:
53:cf:69:94:19:13:a8:4f:e6:f7:fb:4a:9f:18:b2:d6:78:60:
5a:35:fd:fb:04:35:61:36:3f:81:24:4e:7c:77:c6:17:62:69:
f9:99:77:1d:3d:60:fb:42:65:ab:5c:68:1b:9c:04:62:aa:32:
32:f0:ae:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:47:01 2025 by rpki-client