Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
File: MHFOgRmzE03MBg_lkAp82Gj8WXM.mft (raw, json)
Hash identifier: 9Xu3z4l6m5FJPUKL6WCY8y3wP9fWfiNeW5tkpVCCOE4=
Subject key identifier: D4:A2:97:3F:56:64:FE:4B:F3:CB:F2:CE:F8:7B:F5:9E:7F:93:40:3B
Authority key identifier: 30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
Certificate issuer: /CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Certificate serial: 019A533FB23A547EEF46458B31BD1F47B639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
Manifest number: 02B4
Signing time: Wed 05 Nov 2025 09:01:14 +0000
Manifest this update: Wed 05 Nov 2025 09:01:14 +0000
Manifest next update: Thu 06 Nov 2025 09:01:14 +0000
Files and hashes: 1: MHFOgRmzE03MBg_lkAp82Gj8WXM.crl (hash: VbqgF3+NkmmYdMNFp5MfGAKelH5CAL/a9Y2TdAbrReg=)
2: n-uGHXU9mK8VqWn_-PLqMRGS8Ts.roa (hash: ygEEJ097SaCUzOmNUISceDFVrT5Qf+Tcg4RtFktgRHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 09:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:3f:b2:3a:54:7e:ef:46:45:8b:31:bd:1f:47:b6:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Validity
Not Before: Nov 5 09:01:14 2025 GMT
Not After : Nov 6 09:01:14 2025 GMT
Subject: CN=d4a2973f5664fe4bf3cbf2cef87bf59e7f93403b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:58:cb:cd:dc:b8:3d:e7:ca:04:57:f1:71:3e:
d6:64:b6:08:d4:68:5d:54:24:99:6d:ea:fd:42:05:
24:aa:7f:87:e8:90:89:81:5f:90:da:42:ad:b8:f5:
a2:11:73:d8:c4:1c:33:9b:30:8a:34:d9:8e:ea:ec:
c7:4d:19:9e:4c:04:bb:49:46:99:84:77:40:05:81:
8f:5e:b2:f4:3f:47:f1:f5:d4:8e:26:bb:f6:95:15:
f0:84:5e:71:1a:b6:e9:f1:08:b0:e7:cb:2c:dd:11:
21:e8:40:55:e0:3e:8f:53:e5:c3:32:52:a1:32:b3:
42:69:c0:b6:f4:4c:6f:44:e8:6f:37:cf:14:47:3b:
fc:dc:84:7f:96:06:37:e0:1b:f8:ed:cc:82:3a:c2:
ec:15:bc:cd:bf:1c:23:03:35:1a:4d:b0:9a:06:69:
5b:72:d9:53:5a:ac:36:23:6f:49:a1:cc:7b:04:80:
4a:3a:3b:2e:69:c4:fb:93:c8:78:f4:d7:24:ed:68:
d5:9d:38:48:ea:10:91:cf:41:c4:09:89:02:59:21:
d7:af:48:20:af:08:6f:39:3e:18:f9:ac:94:ba:5e:
f9:9c:47:0b:fe:7b:69:2d:31:e4:ff:47:d6:54:c5:
26:12:8b:a2:59:95:ef:6b:fb:67:26:cf:80:81:5c:
a9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A2:97:3F:56:64:FE:4B:F3:CB:F2:CE:F8:7B:F5:9E:7F:93:40:3B
X509v3 Authority Key Identifier:
keyid:30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:b8:68:76:bb:8e:41:91:09:78:9d:0e:6e:df:f4:7f:84:01:
0e:f6:2f:30:48:6c:e2:3a:32:30:78:60:da:e8:ef:1e:fa:fe:
c8:3f:5d:92:8a:d8:0d:76:68:b8:c4:b5:23:fb:42:ab:39:44:
92:47:17:09:06:7f:f1:fe:01:c7:62:34:78:a0:52:1b:ea:99:
9c:dc:59:10:ce:5a:1e:c3:3e:33:b5:7d:55:f0:37:fb:7d:cc:
93:02:f9:5e:fa:5a:5a:a4:e0:8a:36:f2:66:0e:ff:d0:96:ca:
8a:e9:ae:88:f8:fb:ce:45:c5:34:69:80:4c:4e:a2:33:09:0c:
dd:97:f8:a7:18:7a:19:87:89:32:43:a4:fc:5c:ea:fa:4f:83:
5f:e2:83:36:74:a1:a3:87:be:84:fc:d2:42:6e:9e:87:bb:20:
e3:d1:a0:9e:56:b5:d3:85:cb:dc:03:19:58:fe:03:d9:72:f6:
f8:81:fc:88:1e:fa:58:19:35:f6:30:df:12:7c:9e:9b:2b:f9:
4c:56:27:c2:7b:82:24:19:82:ae:bf:8c:2b:a3:04:59:7d:a9:
b4:6c:41:b8:16:3a:3a:25:c2:15:ab:dc:63:00:31:27:72:67:
40:8e:20:64:85:d6:4c:b1:20:c6:82:ed:43:23:d2:6f:6c:f4:
b6:1d:f1:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 17:00:42 2025 by rpki-client