Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: 6Q2LGk1tvT98gUf8RR8L8Lw0QNPgwn/0yq9fVjv7QZc=
Subject key identifier: 6E:FB:B8:F1:9A:C4:DE:81:7F:4E:03:17:44:70:5D:32:97:D5:5B:48
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 01974DE9DD64B64F108766906F0EB8DDC3D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0A93
Signing time: Sun 08 Jun 2025 05:01:01 +0000
Manifest this update: Sun 08 Jun 2025 05:01:01 +0000
Manifest next update: Mon 09 Jun 2025 05:01:01 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: /mo6lmn67ec0aiYs0ODse+6pE6f4ncnJJcuJWhzAoMU=)
2: TnUa9Ik5MIEZFyAPb51t3lEzTlw.roa (hash: VAA3uHujk9bmdBTaro78iFRxhf25M26lepAeKhwVT4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:dd:64:b6:4f:10:87:66:90:6f:0e:b8:dd:c3:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: Jun 8 05:01:01 2025 GMT
Not After : Jun 9 05:01:01 2025 GMT
Subject: CN=6efbb8f19ac4de817f4e031744705d3297d55b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:31:8f:83:ab:dc:0e:07:8e:45:13:35:51:6a:
90:0c:2a:1b:17:71:5a:1a:46:93:c5:55:4c:a0:3c:
b9:14:30:8e:01:c0:ab:4c:b9:37:48:a9:00:5a:97:
ba:9c:81:e4:b2:1a:a7:11:2a:af:d6:f5:61:2a:03:
68:89:6d:94:95:ad:5f:11:20:9e:bf:32:8d:2b:12:
40:e0:fe:1c:61:5b:36:a6:11:0f:67:7c:db:51:e8:
b3:eb:72:02:dc:95:3a:a1:b9:43:07:53:be:c0:fc:
5d:6e:36:5c:07:28:7e:5a:e8:49:5c:16:80:42:39:
f9:47:83:65:cb:18:d4:f8:06:66:8c:29:e1:7e:ad:
dd:ae:1c:36:37:68:f9:d1:33:a1:ac:18:1e:ca:5e:
6d:e9:53:7e:f9:5d:92:f6:fa:d2:53:b2:4d:b7:bc:
1e:7c:41:0b:0c:65:4a:b4:02:2d:2e:ed:7c:5b:9d:
b8:80:95:fa:a4:17:01:f9:f4:22:0a:a1:94:29:d1:
e0:d7:3a:dd:67:2b:0e:40:4b:07:0a:a5:7c:bf:f5:
53:a5:81:62:3a:ae:7d:c8:8a:82:6c:c7:b3:bc:f6:
45:a5:84:98:b6:fe:68:bd:da:c5:12:5e:52:d2:e2:
8e:73:0b:d7:32:af:cc:d8:2b:e9:c3:e5:cf:fb:c8:
26:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:FB:B8:F1:9A:C4:DE:81:7F:4E:03:17:44:70:5D:32:97:D5:5B:48
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:39:d5:86:70:6b:1a:bd:67:05:e8:7f:46:5b:e4:13:92:0b:
c5:9f:bf:55:e1:28:3a:b7:c8:ed:36:59:3a:87:58:cd:47:40:
8f:a2:be:54:5d:99:5c:a7:6c:7f:73:44:ed:8d:3b:ea:65:b8:
1c:9c:2c:67:70:70:9e:3e:e3:ac:a4:26:07:0a:6c:d1:05:92:
ca:7f:32:b1:53:5a:9c:c4:9f:57:28:9d:ef:00:bd:3f:cb:3b:
97:91:07:b2:4a:f9:38:59:ab:2e:65:07:75:78:14:55:3f:9d:
63:aa:5a:08:4b:cf:39:f0:10:a0:5f:e0:55:55:88:43:ee:d7:
88:26:a7:9b:a9:e9:55:35:86:05:b3:35:1b:19:25:91:8f:69:
2b:71:54:0e:a8:7c:8c:50:a9:58:0f:39:f9:24:88:56:c6:3f:
19:6f:a3:1c:a4:6d:12:90:03:6d:97:8c:fd:41:ac:56:00:f8:
69:d6:69:4b:e7:d2:26:c3:d0:20:3b:6a:3e:79:26:50:3b:fc:
fe:af:f1:d6:45:77:8a:76:3a:f9:d9:8a:62:45:5e:93:1d:b6:
7c:4d:a8:c6:d9:be:4d:3d:8d:a1:b3:0f:c7:e8:b3:0b:95:13:
94:50:d7:79:b2:09:5f:82:a7:b7:cc:b6:5c:62:3c:87:0d:7f:
3b:ce:61:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:29:24 2025 by rpki-client