Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: j2R1Qijk2Ien/wffTll52/JbYrdt5TXYZTGXIY/LwW8=
Subject key identifier: 57:54:BB:CD:21:31:53:71:5E:C1:69:1D:CC:A6:FA:95:51:A5:45:1D
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 019A22F78BAAA74065B3C25A1A143BD0F0F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 0B55
Signing time: Mon 27 Oct 2025 00:00:39 +0000
Manifest this update: Mon 27 Oct 2025 00:00:39 +0000
Manifest next update: Tue 28 Oct 2025 00:00:39 +0000
Files and hashes: 1: Ly1MWymIvXOCybb36lr4yOkjsU8.roa (hash: VpBFbk8tqcALSJaD09pM7y3kJlzVLbs+HEbBlDB9T94=)
2: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: p53/e3x4kGrDN1viGc034/BAFNbYDac5alAdRBPoCyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 00:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:f7:8b:aa:a7:40:65:b3:c2:5a:1a:14:3b:d0:f0:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: Oct 27 00:00:39 2025 GMT
Not After : Oct 28 00:00:39 2025 GMT
Subject: CN=5754bbcd213153715ec1691dcca6fa9551a5451d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:20:50:c2:7c:c4:c5:0d:95:17:c0:7d:e9:ab:
f6:b8:22:e9:d3:7f:68:7b:fa:81:c5:fa:cf:64:d1:
06:0e:83:95:59:75:20:dc:b2:4d:05:b0:84:00:1f:
d2:d8:e0:65:be:f0:f6:e1:84:3c:f6:6a:aa:a7:28:
ae:c7:69:b4:7b:fd:e8:91:cc:5f:48:f3:33:7c:f4:
d0:45:b9:b2:3c:6e:4b:91:8a:fa:33:2c:29:6b:6c:
05:76:92:1d:71:50:c1:0c:72:28:0c:48:a9:5c:ff:
38:8b:3d:f1:ab:71:2a:bc:cb:27:f3:fe:0f:9d:72:
c3:f0:79:5d:d3:64:bb:02:2d:01:27:c8:39:44:46:
ea:6c:28:e7:0b:78:f1:c0:13:08:20:55:e6:e3:d3:
90:ca:a0:28:fe:2e:37:f5:1e:ed:74:78:72:4c:bb:
8c:87:af:65:41:0d:06:89:5a:4e:4e:5c:4a:18:f5:
aa:79:2c:b8:94:ad:d9:e9:7a:e7:e1:1b:3a:88:4c:
de:3b:59:00:de:a9:d5:f0:b8:82:dc:81:78:21:b9:
01:ef:0e:70:9c:3f:b8:d1:b8:7f:8c:9d:e3:11:c5:
e1:14:47:e9:fe:97:d0:c0:e4:53:8e:4e:ad:d6:94:
35:0a:3e:85:98:47:a6:55:cd:f9:d4:70:3f:2d:5a:
a0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:54:BB:CD:21:31:53:71:5E:C1:69:1D:CC:A6:FA:95:51:A5:45:1D
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:a0:fb:9a:0a:f5:df:d0:df:27:3d:9a:6b:97:69:54:cb:32:
f9:72:a6:e7:41:c0:9d:1f:0e:6e:c6:b5:9c:a5:f2:69:05:38:
b0:c5:e4:d4:96:e1:9b:a3:bf:db:8b:cd:2b:cf:c7:c5:37:68:
d2:19:46:a4:0e:43:bc:56:87:2b:fa:9c:c7:b2:ae:e2:f4:fa:
ab:95:de:d5:61:ae:de:72:2f:cc:26:7b:9a:37:f0:2b:ef:33:
6e:de:83:b3:d7:f3:2b:dd:65:6a:2e:34:72:8a:2c:14:a4:83:
ca:ea:64:02:a5:da:f2:54:e6:f7:ce:c5:8e:e2:5f:fe:08:8e:
cc:37:24:3a:6f:d1:26:a8:3e:68:cd:b3:2d:b4:88:6d:a7:e3:
99:ac:b9:e6:73:f8:32:7c:78:09:1c:35:43:fa:c1:c8:cc:70:
f8:3a:f7:23:81:cc:28:9d:1d:ea:e4:15:9f:3a:59:cd:74:dc:
03:c7:46:5e:3a:90:88:8e:f4:72:da:f6:b7:14:a2:82:92:10:
30:a0:95:a1:58:40:b2:35:34:42:c4:99:1a:e4:6c:c6:c5:69:
07:1a:6f:7e:f4:63:c5:73:80:22:38:49:65:91:ce:cd:a5:a1:
56:00:c6:7d:b1:da:ce:8b:b4:97:17:a7:23:24:a8:e1:3f:1d:
db:10:d8:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 09:21:05 2025 by rpki-client