Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
File: MHFOgRmzE03MBg_lkAp82Gj8WXM.mft (raw, json)
Hash identifier: AUhBt5ZhEFCSvyPtWlMjx9BR85RidsVAVqe+Hy5StDE=
Subject key identifier: 71:39:68:EE:8F:62:26:2B:1C:0F:DC:BF:2A:85:FA:95:9F:EE:E9:8A
Authority key identifier: 30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
Certificate issuer: /CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Certificate serial: 0198744FA98602663FA9C0D90DDDF4630095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
Manifest number: 01BC
Signing time: Mon 04 Aug 2025 09:00:34 +0000
Manifest this update: Mon 04 Aug 2025 09:00:34 +0000
Manifest next update: Tue 05 Aug 2025 09:00:34 +0000
Files and hashes: 1: MHFOgRmzE03MBg_lkAp82Gj8WXM.crl (hash: OW5/KH3+uSL3XfbA2nSq85yQulzHhFixNKIOQsG+kpA=)
2: n-uGHXU9mK8VqWn_-PLqMRGS8Ts.roa (hash: ygEEJ097SaCUzOmNUISceDFVrT5Qf+Tcg4RtFktgRHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:4f:a9:86:02:66:3f:a9:c0:d9:0d:dd:f4:63:00:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Validity
Not Before: Aug 4 09:00:34 2025 GMT
Not After : Aug 5 09:00:34 2025 GMT
Subject: CN=713968ee8f62262b1c0fdcbf2a85fa959feee98a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c6:1a:b3:ef:8e:93:49:9f:ee:e2:f3:93:ff:
ff:98:f2:2b:42:c8:1c:ea:a5:15:05:bf:5a:4a:e7:
4d:72:21:97:69:ed:80:67:32:0c:94:2b:94:39:c3:
6d:10:9e:24:6b:6f:c0:16:84:69:29:10:04:3b:68:
ee:ae:96:d2:77:a6:8a:2c:61:f3:87:bc:f9:92:d0:
91:e3:e5:e1:ce:8b:0c:51:c4:46:a7:25:87:07:20:
bf:b8:f8:af:dc:35:9b:cc:4f:85:5b:0d:da:69:06:
4a:34:00:68:06:7b:9b:b0:6a:35:09:45:08:ed:c4:
4d:21:80:e1:55:b4:91:d8:f1:36:14:53:f6:e9:95:
43:82:33:ee:dd:7b:e7:9a:e0:b3:e9:d9:4b:f0:89:
4f:66:68:76:65:31:1b:8b:c5:fc:06:7b:08:e8:94:
99:d1:20:28:e7:c4:6c:7f:d8:b2:5d:2c:01:ee:b8:
b8:a3:51:c7:c5:4c:08:14:2c:71:48:60:48:2f:b1:
24:a0:2d:08:17:f2:81:ee:84:86:5b:28:3e:45:73:
de:7d:28:55:7f:20:9b:66:3f:7e:65:4b:5b:3c:7c:
2a:33:f1:b3:57:fe:3e:f0:a9:ad:f8:81:ce:4c:ff:
39:30:9d:10:36:6b:f0:a7:fc:82:ee:8e:dc:b9:e1:
5a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:39:68:EE:8F:62:26:2B:1C:0F:DC:BF:2A:85:FA:95:9F:EE:E9:8A
X509v3 Authority Key Identifier:
keyid:30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:17:0f:36:94:0f:59:fc:1b:61:03:93:0e:09:fb:35:fa:09:
b6:1b:a3:c7:aa:52:f6:6a:b2:b3:bd:78:02:89:f9:02:a4:1b:
1a:88:31:47:b9:d5:06:b1:87:fc:59:63:b2:7c:57:f5:01:c7:
29:9f:aa:89:7d:c5:3d:30:e7:c1:19:fd:a4:9d:5e:e6:14:38:
ff:8e:41:d6:3e:28:dd:09:dc:49:a8:f5:46:2c:3d:27:0a:20:
b8:83:39:d2:82:d5:27:66:be:4d:95:20:20:91:89:8c:dc:64:
40:ed:52:4b:bc:8d:f4:80:ef:76:a5:a2:f9:cf:11:5a:92:ab:
8a:1e:00:c7:e5:61:32:12:ad:45:77:a3:f5:5b:ad:46:f7:e8:
46:a1:ea:22:4a:dd:55:8d:21:71:11:25:5b:a3:fc:5f:ea:91:
66:6a:0b:7f:5d:19:48:9d:79:08:65:54:89:0f:af:71:e3:39:
09:3d:0f:d0:f4:cb:28:47:2c:4a:0a:af:4e:d0:f2:42:dd:a7:
31:dc:b4:58:0f:a1:58:a5:ed:f7:cb:63:f5:3c:38:cb:cb:99:
54:f7:6b:96:2f:6a:69:7e:d7:18:46:14:d7:49:86:48:07:27:
84:65:19:6a:fb:de:af:e7:43:54:01:69:2e:ec:77:5f:2e:10:
a6:7c:2b:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0T6mGAmY/qcDZDd30YwCVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwNzE0ZTgxMTliMzEzNGRjYzA2MGZlNTkwMGE3Y2Q4Njhm
YzU5NzMwHhcNMjUwODA0MDkwMDM0WhcNMjUwODA1MDkwMDM0WjAzMTEwLwYDVQQD
Eyg3MTM5NjhlZThmNjIyNjJiMWMwZmRjYmYyYTg1ZmE5NTlmZWVlOThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1MYas++Ok0mf7uLzk///mPIrQsgc
6qUVBb9aSudNciGXae2AZzIMlCuUOcNtEJ4ka2/AFoRpKRAEO2jurpbSd6aKLGHz
h7z5ktCR4+XhzosMUcRGpyWHByC/uPiv3DWbzE+FWw3aaQZKNABoBnubsGo1CUUI
7cRNIYDhVbSR2PE2FFP26ZVDgjPu3XvnmuCz6dlL8IlPZmh2ZTEbi8X8BnsI6JSZ
0SAo58Rsf9iyXSwB7ri4o1HHxUwIFCxxSGBIL7EkoC0IF/KB7oSGWyg+RXPefShV
fyCbZj9+ZUtbPHwqM/GzV/4+8Kmt+IHOTP85MJ0QNmvwp/yC7o7cueFasQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHE5aO6PYiYrHA/cvyqF+pWf7umKMB8GA1UdIwQY
MBaAFDBxToEZsxNNzAYP5ZAKfNho/FlzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUhGT2dSbXpFMDNNQmdfbGtBcDgyR2o4V1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi83NGZhMTMtMmNiMy00MjdhLWE0NWEt
OGYzNDcwZDgyMDU3LzEvTUhGT2dSbXpFMDNNQmdfbGtBcDgyR2o4V1hNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi83NGZhMTMtMmNiMy00MjdhLWE0NWEtOGYzNDcwZDgyMDU3
LzEvTUhGT2dSbXpFMDNNQmdfbGtBcDgyR2o4V1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvBcPNpQP
WfwbYQOTDgn7NfoJthujx6pS9mqys714Aon5AqQbGogxR7nVBrGH/FljsnxX9QHH
KZ+qiX3FPTDnwRn9pJ1e5hQ4/45B1j4o3QncSaj1Riw9JwoguIM50oLVJ2a+TZUg
IJGJjNxkQO1SS7yN9IDvdqWi+c8RWpKrih4Ax+VhMhKtRXej9VutRvfoRqHqIkrd
VY0hcRElW6P8X+qRZmoLf10ZSJ15CGVUiQ+vceM5CT0P0PTLKEcsSgqvTtDyQt2n
Mdy0WA+hWKXt98tj9Tw4y8uZVPdrli9qaX7XGEYU10mGSAcnhGUZavver+dDVAFp
Lux3Xy4Qpnwrtg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:32 2025 by rpki-client