Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: H6j6t3U5lmHglzz9Ha7OtD5R9/JG/ExjAFcxiezL9qY=
Subject key identifier: 81:E9:6F:BD:30:D2:58:A9:FF:3C:55:A2:4F:B1:B5:F5:8A:06:20:D0
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 01964556D00570162C317ADF211F12C49853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0A0A
Signing time: Thu 17 Apr 2025 20:00:39 +0000
Manifest this update: Thu 17 Apr 2025 20:00:39 +0000
Manifest next update: Fri 18 Apr 2025 20:00:39 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: 46u7G6Lu79ubrNlbP+29oXNjM1kNeWv7ttfcfgohc6A=)
2: TnUa9Ik5MIEZFyAPb51t3lEzTlw.roa (hash: VAA3uHujk9bmdBTaro78iFRxhf25M26lepAeKhwVT4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:56:d0:05:70:16:2c:31:7a:df:21:1f:12:c4:98:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: Apr 17 20:00:39 2025 GMT
Not After : Apr 18 20:00:39 2025 GMT
Subject: CN=81e96fbd30d258a9ff3c55a24fb1b5f58a0620d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:46:d2:cb:6f:72:79:08:d4:23:cc:12:b9:3e:
a5:e6:cd:3b:0e:d2:e0:d1:33:10:88:bc:23:c4:bc:
83:33:74:81:0f:47:16:ee:28:a3:47:7e:6e:86:86:
47:4c:e4:8c:3c:6a:9d:59:11:11:c6:56:af:e4:61:
48:3f:be:ac:63:08:7a:aa:ff:d5:89:a7:69:87:0d:
2f:d9:ab:b1:4f:60:df:ca:bf:13:26:c3:14:19:49:
a2:84:fd:93:21:1a:8e:70:1b:e6:1f:1b:f8:ca:90:
ed:b5:2c:16:03:68:aa:85:6a:3f:1c:a7:18:28:10:
c2:8d:cf:5e:85:58:cc:b9:89:8c:ca:e9:75:bc:6e:
22:75:a6:d9:60:34:e2:27:cb:2b:fb:14:3f:4b:fb:
2e:07:5b:d8:60:ca:f5:d8:db:f6:0c:b0:0b:04:f3:
9a:f6:87:1f:1b:75:df:99:47:8a:6f:c8:6b:08:af:
35:52:75:3a:eb:4f:16:19:9d:40:6d:f9:d4:da:d8:
49:ff:02:32:c0:5a:a6:68:f7:73:a8:19:78:53:69:
8b:7c:7e:1b:27:1c:67:5e:89:0b:ff:5d:c6:a7:d5:
25:fa:7b:30:28:07:b7:cd:85:cc:f8:61:5e:2c:a5:
56:d3:5b:ab:98:3b:7e:90:99:d7:bc:de:94:d8:f6:
2e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E9:6F:BD:30:D2:58:A9:FF:3C:55:A2:4F:B1:B5:F5:8A:06:20:D0
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:7c:8a:4b:29:6b:9a:db:db:22:93:01:77:b1:59:f2:a5:d0:
65:a7:a5:47:75:40:8b:c8:b8:ba:4a:1a:1c:3c:44:a4:6d:1f:
83:39:dc:d9:5e:70:8c:2c:76:ce:83:5e:ae:98:a3:24:e8:70:
ab:eb:cf:1c:ee:05:5b:19:24:b4:05:bf:17:56:85:96:bd:ec:
8b:eb:d0:ef:15:c3:03:89:cc:5d:a7:1f:fb:ff:8d:aa:7b:1c:
af:33:da:d5:ca:b6:98:28:4e:2e:db:aa:9b:f5:c3:5a:b9:f0:
c5:6d:ae:ea:09:8c:c1:38:7d:3b:de:54:e2:5f:6f:85:92:99:
a7:8e:9e:a3:d2:c5:36:a5:96:12:d4:4f:8b:61:02:c5:75:54:
65:11:0e:8c:b3:14:8e:a8:6b:75:a2:12:cc:ea:86:bf:93:46:
e7:c9:90:f3:b3:3b:18:4d:f7:d8:f0:d5:62:29:f1:97:2a:1a:
d8:a4:19:b4:2c:c8:d0:f5:10:07:ac:d7:b0:03:81:5b:86:75:
f3:b9:d5:7b:ee:49:a8:7f:7c:56:e8:a2:e1:b0:9b:c9:ec:25:
7b:75:7d:b3:9c:c6:3d:1b:91:84:63:1f:26:8f:f8:fb:b5:95:
dd:95:cb:36:8a:4b:a8:28:e9:bd:ef:fb:a9:ef:61:1d:b5:bc:
66:a9:08:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZFVtAFcBYsMXrfIR8SxJhTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNDk0N2MwYWVjZWZlODdmOWRiOTZlNWI0NWJlYjEwYWVi
OTg3YTYwHhcNMjUwNDE3MjAwMDM5WhcNMjUwNDE4MjAwMDM5WjAzMTEwLwYDVQQD
Eyg4MWU5NmZiZDMwZDI1OGE5ZmYzYzU1YTI0ZmIxYjVmNThhMDYyMGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6UbSy29yeQjUI8wSuT6l5s07DtLg
0TMQiLwjxLyDM3SBD0cW7iijR35uhoZHTOSMPGqdWRERxlav5GFIP76sYwh6qv/V
iadphw0v2auxT2Dfyr8TJsMUGUmihP2TIRqOcBvmHxv4ypDttSwWA2iqhWo/HKcY
KBDCjc9ehVjMuYmMyul1vG4idabZYDTiJ8sr+xQ/S/suB1vYYMr12Nv2DLALBPOa
9ocfG3XfmUeKb8hrCK81UnU6608WGZ1AbfnU2thJ/wIywFqmaPdzqBl4U2mLfH4b
JxxnXokL/13Gp9Ul+nswKAe3zYXM+GFeLKVW01urmDt+kJnXvN6U2PYu7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIHpb70w0lip/zxVok+xtfWKBiDQMB8GA1UdIwQY
MBaAFDJJR8Cuzv6H+duW5bRb6xCuuYemMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWtsSHdLN09fb2Y1MjVibHRGdnJFSzY1aDZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9hOGQzOGItMzE3Ni00Y2M1LWJiNGYt
YzM2MmQyYTllMTIxLzEvTWtsSHdLN09fb2Y1MjVibHRGdnJFSzY1aDZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9hOGQzOGItMzE3Ni00Y2M1LWJiNGYtYzM2MmQyYTllMTIx
LzEvTWtsSHdLN09fb2Y1MjVibHRGdnJFSzY1aDZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuHyKSylr
mtvbIpMBd7FZ8qXQZaelR3VAi8i4ukoaHDxEpG0fgznc2V5wjCx2zoNerpijJOhw
q+vPHO4FWxkktAW/F1aFlr3si+vQ7xXDA4nMXacf+/+NqnscrzPa1cq2mChOLtuq
m/XDWrnwxW2u6gmMwTh9O95U4l9vhZKZp46eo9LFNqWWEtRPi2ECxXVUZREOjLMU
jqhrdaISzOqGv5NG58mQ87M7GE332PDVYinxlyoa2KQZtCzI0PUQB6zXsAOBW4Z1
87nVe+5JqH98Vuii4bCbyewle3V9s5zGPRuRhGMfJo/4+7WV3ZXLNopLqCjpve/7
qe9hHbW8ZqkILw==
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:51:26 2025 by rpki-client