Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
File: MHTWUd_sSw03HgJQWx-Gk-0djgI.mft (raw, json)
Hash identifier: +vhin10TGen69OsJKyuKuTl0Mthhr2uXnWSyHaYL50U=
Subject key identifier: DA:1B:47:97:6A:27:CD:FD:05:19:22:BC:CB:E4:5B:9A:62:14:CB:5C
Authority key identifier: 30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
Certificate issuer: /CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Certificate serial: 019A4E86A762BBD23E290EACD7E82786395A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 11:00:38 +0000
Manifest this update: Tue 04 Nov 2025 11:00:38 +0000
Manifest next update: Wed 05 Nov 2025 11:00:38 +0000
Files and hashes: 1: 1-eAJE_ZPw_LJuNlElXg0BRaL11g.roa (hash: YakZb3LMYAiCfML5t2kxegtBvI+8ocrvx+dTJt+Il2M=)
2: MHTWUd_sSw03HgJQWx-Gk-0djgI.crl (hash: z4loZ5fYg1FKk/6QCEPjkyMnPCh4h9OaaM7upedLqDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:a7:62:bb:d2:3e:29:0e:ac:d7:e8:27:86:39:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Validity
Not Before: Nov 4 11:00:38 2025 GMT
Not After : Nov 5 11:00:38 2025 GMT
Subject: CN=da1b47976a27cdfd051922bccbe45b9a6214cb5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:df:a7:e6:5d:dc:34:c7:6b:c6:86:8b:90:d7:
4a:59:59:60:aa:47:1f:d7:d2:88:45:12:e1:84:e1:
a8:24:3b:5d:de:66:21:3f:36:0b:ae:af:ac:c5:31:
62:29:d1:58:6f:c1:9d:f7:25:8d:1d:6e:91:4d:d4:
a0:78:ed:a6:9b:56:25:80:e7:11:b7:4c:a7:07:5f:
65:ad:d1:42:e0:24:cb:82:85:2b:20:68:8d:e1:e7:
1f:72:ef:4e:0f:95:3e:90:b6:67:23:37:0a:91:d9:
6a:49:41:e3:91:08:bf:81:82:b1:4b:d8:7d:ce:73:
a4:82:d3:62:f1:a5:6f:95:79:40:76:91:2e:b3:38:
0a:09:f3:eb:3c:5c:3a:29:46:e0:f7:80:01:69:04:
13:e5:71:3c:c6:77:0b:e8:57:5d:05:f4:f7:57:1c:
5e:a7:91:5f:bd:de:92:ff:55:34:26:31:2e:fb:71:
48:33:de:44:94:5a:e6:bd:48:0b:c9:d5:a6:b3:e7:
6f:b1:20:c7:1c:3a:42:93:8c:6d:e0:3d:5c:e0:80:
0a:bb:67:19:30:09:c5:ae:eb:88:3f:49:d6:07:93:
87:d7:89:27:36:4e:2a:9f:13:2d:9c:c6:85:6a:00:
bb:e3:aa:a4:d1:8b:6a:80:3d:cb:9f:99:c0:b1:5f:
88:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:1B:47:97:6A:27:CD:FD:05:19:22:BC:CB:E4:5B:9A:62:14:CB:5C
X509v3 Authority Key Identifier:
keyid:30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:04:3c:ed:79:21:48:b1:3f:e0:9b:89:5b:82:10:97:2e:62:
2a:e2:d0:87:36:a6:e4:88:fa:f8:bd:20:74:9a:4a:66:1c:78:
82:da:1f:e3:6c:c4:b6:dc:a9:00:8c:1e:b2:93:14:2a:0b:ca:
28:b8:cf:2a:e5:0c:72:52:d0:f9:ef:de:60:20:0d:49:97:0e:
7b:bf:50:95:be:a7:84:7c:5f:7b:8f:ba:41:3b:cc:7e:a4:c0:
ab:6b:14:76:8a:78:82:c1:3d:dc:a6:3b:85:07:8b:da:95:f4:
f2:dc:e9:c1:a2:f7:f9:1c:2e:fa:75:54:62:34:d2:96:70:ef:
f6:b1:23:4d:bb:cc:c9:36:41:47:f6:54:62:ff:f2:8e:43:36:
6d:af:3e:7a:4d:bf:ea:38:e9:7d:1c:3a:30:b8:a2:89:4b:97:
ee:d5:c0:c1:e9:83:ce:ca:ae:fa:86:4b:be:a2:15:10:1d:f8:
07:d5:01:f5:fd:87:2f:b2:1d:86:da:4c:e5:ef:53:a8:e7:e5:
e0:9a:b5:71:f2:6f:08:70:b5:b3:c9:b1:c0:78:c5:6f:a5:c1:
58:09:ac:4a:50:92:06:54:c1:33:34:ca:98:85:f8:8f:19:dd:
4f:e0:55:5d:05:86:68:6f:1e:1a:47:aa:4c:db:ff:3a:46:b0:
2d:6e:3e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:58:17 2025 by rpki-client