Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: zqQFlfvbCsCYjAIFt5TgDrqdSppXipDEVT3IPzSTDOM=
Subject key identifier: 14:B5:FD:31:8E:34:B7:E0:E9:34:C0:76:C1:D4:39:D8:CB:D3:AD:84
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 01992331331B2B798D11D64D67CB055CD69B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0B86
Signing time: Sun 07 Sep 2025 08:00:50 +0000
Manifest this update: Sun 07 Sep 2025 08:00:50 +0000
Manifest next update: Mon 08 Sep 2025 08:00:50 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: 8ZezZdgEd2VdNAzkMR054k/FwiTzoNm3UMkLFsfR7z8=)
2: TnUa9Ik5MIEZFyAPb51t3lEzTlw.roa (hash: VAA3uHujk9bmdBTaro78iFRxhf25M26lepAeKhwVT4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:33:1b:2b:79:8d:11:d6:4d:67:cb:05:5c:d6:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: Sep 7 08:00:50 2025 GMT
Not After : Sep 8 08:00:50 2025 GMT
Subject: CN=14b5fd318e34b7e0e934c076c1d439d8cbd3ad84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:46:38:6b:f5:b8:f4:67:23:b4:4b:57:5b:24:
15:22:0c:72:eb:d3:ba:65:cd:c5:50:5f:59:6a:11:
b9:0c:06:37:bf:f8:db:e7:05:e7:c4:d0:90:b2:7e:
59:a4:3d:7b:cf:e8:b9:c3:66:88:6c:3d:26:7b:57:
0e:5d:28:7c:ed:0e:d7:11:63:e3:78:9d:4b:96:f3:
da:de:47:d8:4f:7b:a3:79:ce:68:3b:ab:f2:2e:7f:
0b:fb:47:4f:6e:06:fc:85:70:ad:95:ed:6a:38:ff:
d8:da:e7:b6:c0:cd:63:77:63:63:29:92:cd:a5:eb:
2c:e7:04:35:08:5d:c7:18:f6:f5:71:01:a4:e8:ef:
a6:36:f1:16:99:f2:ab:fa:b4:31:08:95:5a:ab:f2:
81:03:b1:de:20:22:ed:e0:75:38:38:e6:73:5f:8b:
69:9b:e5:10:e7:1a:fd:97:92:b8:2d:04:04:8e:8f:
45:7b:a3:89:52:5e:84:57:ca:8c:e6:d5:54:99:0b:
49:1b:7d:a0:c2:52:d1:b4:54:78:ad:1f:fb:c3:d6:
7f:5f:57:ab:57:b4:78:b0:62:17:3a:51:95:1b:4f:
ec:a2:67:f9:a8:d3:44:74:e1:ea:2c:45:35:b4:56:
28:a7:64:71:96:6a:23:e9:05:7b:cf:70:23:13:7f:
72:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B5:FD:31:8E:34:B7:E0:E9:34:C0:76:C1:D4:39:D8:CB:D3:AD:84
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:92:a5:24:21:74:e2:dd:2a:cc:17:0c:9a:1a:5b:bd:33:f3:
0e:8a:6e:48:67:66:f8:52:fd:9e:f8:2f:5e:13:b8:c8:6e:70:
14:6e:55:50:d6:ef:ae:5f:7a:50:d2:f8:43:1a:c3:3b:4b:39:
06:19:28:b5:31:ec:19:c5:dd:3c:59:82:a1:c9:30:69:7d:c0:
5e:9a:75:1a:c0:7d:5f:7a:75:4f:01:56:7f:e4:8b:68:0e:56:
bd:94:c9:2e:e4:15:70:40:c0:cd:3c:2c:27:42:a0:98:8a:0b:
35:71:a3:9f:5a:c2:ea:2d:6c:2c:2a:03:a0:ca:83:48:10:e2:
0f:c6:b5:ec:29:3b:c2:ee:f0:29:76:2b:41:a8:27:79:a5:22:
7a:49:df:7c:ee:2e:c2:71:b9:31:ec:b2:d8:d6:b9:b6:44:72:
2a:0a:c0:48:08:2f:be:50:8b:23:84:99:eb:7f:9b:d7:1a:6b:
6c:b2:66:24:c9:44:48:18:eb:4e:44:37:b6:73:eb:7d:da:d4:
26:d3:ac:b3:64:c6:62:e8:19:d0:86:34:d5:95:75:3d:3a:bb:
40:53:d0:af:98:56:88:32:e5:12:71:78:ec:98:d4:43:7d:92:
35:28:9b:bc:57:f9:4d:01:d7:b0:f7:5c:67:1d:61:e4:ac:62:
44:13:7b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:44 2025 by rpki-client