Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft
File: mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft (raw, json)
Hash identifier: TXickO1l3CqgDV+9oQLOsTqoIuErMGn0b7msie060vw=
Subject key identifier: 41:D1:7E:19:61:6D:4B:9C:9C:C5:E9:DE:EA:4A:13:C1:4A:32:A8:9E
Authority key identifier: 98:75:2D:18:66:7D:BF:F8:42:2F:97:E1:E3:89:0E:99:38:1D:09:D4
Certificate issuer: /CN=98752d18667dbff8422f97e1e3890e99381d09d4
Certificate serial: 019A70A4F9043068C1164D39048B9BD9C7DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft
Manifest number: 07B4
Signing time: Tue 11 Nov 2025 02:00:50 +0000
Manifest this update: Tue 11 Nov 2025 02:00:50 +0000
Manifest next update: Wed 12 Nov 2025 02:00:50 +0000
Files and hashes: 1: eEuL986vzdl5Ue42JMTwEjrhHL8.roa (hash: sD06A9ioFyTX7xWQwS5R0iqBwd3oxcUKyjznK7FeoF8=)
2: mHUtGGZ9v_hCL5fh44kOmTgdCdQ.crl (hash: GXpD7L+jjukKrdltRLvNig9OMtNGmWbRJaWYuHj09x8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a4:f9:04:30:68:c1:16:4d:39:04:8b:9b:d9:c7:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98752d18667dbff8422f97e1e3890e99381d09d4
Validity
Not Before: Nov 11 02:00:50 2025 GMT
Not After : Nov 12 02:00:50 2025 GMT
Subject: CN=41d17e19616d4b9c9cc5e9deea4a13c14a32a89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d9:fb:b2:03:79:24:56:11:d9:6c:d1:47:a9:
90:f4:55:4c:1e:8d:6b:7a:c3:85:3a:23:fb:49:52:
e4:cc:e7:60:b7:bc:5e:95:16:1a:60:d9:59:a3:f4:
ea:be:42:8d:ff:40:bf:e3:f3:3a:0b:6a:0e:80:2f:
c2:7e:fa:58:23:99:2d:9f:d8:3c:96:5e:36:00:5b:
e9:48:95:fa:66:6a:19:7d:be:c3:f4:1b:42:6f:f1:
2d:25:2f:ba:1d:4f:3a:c8:0b:c7:87:a2:ee:13:00:
71:b5:2e:a9:ea:8c:d1:fa:a6:7c:2a:20:b1:9a:53:
e8:61:0f:5c:19:0e:86:30:97:fb:9a:d5:56:be:f8:
c0:97:f7:00:d3:79:34:d4:e5:b8:49:e4:1e:b0:c1:
ed:5e:bf:bf:00:e5:0f:d7:ae:0b:a9:41:53:1b:fe:
3b:7a:ad:93:d2:75:4c:cb:a5:66:f2:b5:94:21:96:
5d:e5:aa:92:29:3a:18:b6:eb:96:00:f2:86:2c:1b:
cb:1a:c4:10:ac:89:65:fb:18:4b:d1:ec:c7:bf:26:
84:3c:ec:bb:32:ba:03:64:54:0e:aa:57:2a:e6:9e:
54:43:58:ab:e2:5b:72:dd:bf:31:4b:89:54:c0:f5:
e0:96:79:f5:86:5a:5b:40:e4:c7:29:40:84:38:a7:
1d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D1:7E:19:61:6D:4B:9C:9C:C5:E9:DE:EA:4A:13:C1:4A:32:A8:9E
X509v3 Authority Key Identifier:
keyid:98:75:2D:18:66:7D:BF:F8:42:2F:97:E1:E3:89:0E:99:38:1D:09:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:7c:46:7c:62:d1:06:ef:7e:cc:2d:94:f8:c8:3c:81:7f:e6:
1d:ef:e6:39:16:19:73:1d:89:6e:b8:66:7f:28:ef:b4:93:32:
9f:3a:91:71:cc:e5:f0:4a:68:4e:53:2a:8e:53:73:a0:41:16:
da:34:5c:99:f4:18:81:cd:8b:51:ef:de:54:92:dd:23:9a:58:
39:ce:61:c5:a5:9b:55:28:3f:7c:4f:4a:d0:e7:ed:0b:ef:9a:
8a:1a:96:2b:72:88:f7:dc:2a:45:fa:16:91:14:8a:d7:8e:c6:
33:76:e7:cc:33:29:33:0c:84:b9:15:34:53:dd:42:c3:8f:f7:
53:d3:7c:d1:6b:32:9b:31:54:c2:00:cb:e1:f1:a0:ba:9f:be:
51:53:3b:ba:d9:f6:4f:01:c5:e9:14:e0:3b:c8:a5:58:e1:52:
94:13:bf:ed:a4:82:28:ed:ce:df:fc:b6:06:ff:96:ad:9c:04:
6c:1c:86:74:51:b3:02:4e:b8:c3:3c:0a:a8:b4:46:24:fc:ab:
b1:00:54:14:f4:bc:bc:2c:0f:1f:6e:1b:12:ba:23:62:9c:7c:
ed:f1:6a:50:c2:6a:a6:12:d9:47:e8:92:90:fd:78:7d:15:09:
49:6c:2b:55:a1:31:3b:25:5b:19:14:24:be:b3:3b:cf:8b:0d:
c8:45:b0:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:39 2025 by rpki-client