Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: vFG/hzSwcIUbCTUtYH/CluzU39/dw4mTV7FCSWxNDso=
Subject key identifier: 5A:E7:79:5D:27:76:25:37:65:09:6F:66:85:64:CE:CE:EC:7B:71:69
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 0199375C7E80A3D98890307483C7E0FAC183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 0ADB
Signing time: Thu 11 Sep 2025 06:00:32 +0000
Manifest this update: Thu 11 Sep 2025 06:00:32 +0000
Manifest next update: Fri 12 Sep 2025 06:00:32 +0000
Files and hashes: 1: Ly1MWymIvXOCybb36lr4yOkjsU8.roa (hash: VpBFbk8tqcALSJaD09pM7y3kJlzVLbs+HEbBlDB9T94=)
2: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: I3yeCtSgrx/wGRz4GTTT/gioEPiA89E2pj327S6HbLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:37:5c:7e:80:a3:d9:88:90:30:74:83:c7:e0:fa:c1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: Sep 11 06:00:32 2025 GMT
Not After : Sep 12 06:00:32 2025 GMT
Subject: CN=5ae7795d2776253765096f668564ceceec7b7169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b9:10:8a:35:c1:a7:54:66:2d:bc:02:92:83:
ea:0d:83:ec:0c:06:73:ee:7e:a0:66:57:ab:6a:01:
c0:7e:01:b2:f7:77:5d:61:d1:5c:a9:4d:3b:e2:dd:
ca:6e:3f:6f:6d:dc:12:13:ec:d1:aa:54:ec:9e:4f:
39:09:79:1e:a7:ac:37:c3:df:74:28:48:85:52:5b:
5b:ef:4d:c8:56:71:69:d9:f7:e1:67:ed:53:ec:19:
a0:74:73:8d:99:cc:ef:e9:21:6e:ca:9b:b7:57:33:
2b:e9:d4:aa:e3:4b:de:e4:c8:18:80:9d:21:07:2c:
bc:83:4f:76:97:f6:18:21:82:ec:b1:d1:b7:d2:38:
01:42:65:26:c7:4c:6c:8c:01:c8:d6:a1:58:56:2b:
98:11:d0:da:c9:53:45:d3:bf:d3:c0:43:3b:7e:25:
ab:47:34:a5:8d:4e:b4:6f:b4:8b:4a:65:08:c9:6a:
47:5c:44:90:90:dd:79:5b:24:ea:11:b7:be:7d:df:
fe:9c:55:49:a0:59:d6:87:18:e0:11:01:95:f4:83:
7f:07:31:db:8b:ea:b6:69:ec:71:56:78:dd:e7:b2:
1a:af:b1:fa:f5:01:bf:01:b7:fb:5d:09:62:f5:a9:
1d:64:7c:e7:14:8c:90:b5:f7:ba:da:df:df:51:54:
37:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E7:79:5D:27:76:25:37:65:09:6F:66:85:64:CE:CE:EC:7B:71:69
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:90:d6:58:20:3f:e7:0a:ef:07:0a:c1:51:cf:57:d0:3b:72:
71:40:6e:6f:67:39:42:be:64:0d:4c:ab:e5:e3:a0:55:89:84:
11:df:83:25:28:49:fb:2c:b6:af:cb:16:8d:62:04:93:e0:d0:
70:11:22:fd:c9:06:61:7a:af:6c:8d:c7:4c:fd:dc:1e:d6:db:
24:b1:cc:97:1a:b2:88:29:bb:44:78:a0:7f:98:7e:2b:4a:2d:
81:e4:91:0d:33:10:c7:92:04:9b:41:47:12:b4:82:89:d1:3a:
7d:72:cc:e7:4f:7e:ea:7a:64:d6:91:ab:27:d2:73:34:97:4c:
8d:88:2e:e5:b5:de:c7:0b:d7:01:a3:f4:1c:14:d7:b5:95:ea:
4b:65:9c:7f:4a:a4:68:94:d2:71:9d:d6:94:2c:71:ca:49:21:
07:4a:25:b6:a1:56:c6:fe:8a:a8:e0:7b:89:8a:1b:cd:93:8d:
3b:cc:03:a6:41:d9:d9:61:31:4a:e4:66:85:a2:9f:83:ba:15:
51:28:df:64:88:7b:fc:e0:7f:82:72:f3:e2:27:10:5c:b3:2c:
59:1a:39:06:b5:6d:9d:5b:cb:50:03:5f:24:0c:65:01:10:ea:
19:d1:94:cd:ea:96:c1:47:27:a9:9a:74:43:48:90:81:21:cf:
fa:2a:41:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk3XH6Ao9mIkDB0g8fg+sGDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2EwMzk1MDJkNDZhNmI5OTA5MTEwY2UyYWIxMzk2ODc3
YmQwOGUwHhcNMjUwOTExMDYwMDMyWhcNMjUwOTEyMDYwMDMyWjAzMTEwLwYDVQQD
Eyg1YWU3Nzk1ZDI3NzYyNTM3NjUwOTZmNjY4NTY0Y2VjZWVjN2I3MTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7kQijXBp1RmLbwCkoPqDYPsDAZz
7n6gZleragHAfgGy93ddYdFcqU074t3Kbj9vbdwSE+zRqlTsnk85CXkep6w3w990
KEiFUltb703IVnFp2ffhZ+1T7BmgdHONmczv6SFuypu3VzMr6dSq40ve5MgYgJ0h
Byy8g092l/YYIYLssdG30jgBQmUmx0xsjAHI1qFYViuYEdDayVNF07/TwEM7fiWr
RzSljU60b7SLSmUIyWpHXESQkN15WyTqEbe+fd/+nFVJoFnWhxjgEQGV9IN/BzHb
i+q2aexxVnjd57Iar7H69QG/Abf7XQli9akdZHznFIyQtfe62t/fUVQ3aQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFrneV0ndiU3ZQlvZoVkzs7se3FpMB8GA1UdIwQY
MBaAFDB6A5UC1GprmQkRDOKrE5aHe9COMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAt
Y2UyYTQ5NmZlZTg2LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAtY2UyYTQ5NmZlZTg2
LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIZDWWCA/
5wrvBwrBUc9X0DtycUBub2c5Qr5kDUyr5eOgVYmEEd+DJShJ+yy2r8sWjWIEk+DQ
cBEi/ckGYXqvbI3HTP3cHtbbJLHMlxqyiCm7RHigf5h+K0otgeSRDTMQx5IEm0FH
ErSCidE6fXLM509+6npk1pGrJ9JzNJdMjYgu5bXexwvXAaP0HBTXtZXqS2Wcf0qk
aJTScZ3WlCxxykkhB0oltqFWxv6KqOB7iYobzZONO8wDpkHZ2WExSuRmhaKfg7oV
USjfZIh7/OB/gnLz4icQXLMsWRo5BrVtnVvLUANfJAxlARDqGdGUzeqWwUcnqZp0
Q0iQgSHP+ipBUQ==
-----END CERTIFICATE-----
Generated at Thu Sep 11 10:17:21 2025 by rpki-client