Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: TzOSRoJB26EIgZc541UANtngTj5ErQKOJ+bq14jtiW0=
Subject key identifier: 3D:D2:D3:72:E0:6E:68:88:6A:C5:AA:5E:69:6A:73:EB:26:B9:5A:3C
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 019D389BDB97C90489021A2A404B03225C4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0DA4
Signing time: Sun 29 Mar 2026 08:00:31 +0000
Manifest this update: Sun 29 Mar 2026 08:00:31 +0000
Manifest next update: Mon 30 Mar 2026 08:00:31 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: mBCzAbvojT8BJ58u78iz1LEMOHpdv3vipUXl4d9+xl8=)
2: fYsmeN-jCqvumQk1ANzN0bj9fD0.roa (hash: HXWJlZSBJsNOWJXHSVdFO/BZWcCQBKxp4a6Uo9maQhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:db:97:c9:04:89:02:1a:2a:40:4b:03:22:5c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: Mar 29 08:00:31 2026 GMT
Not After : Mar 30 08:00:31 2026 GMT
Subject: CN=3dd2d372e06e68886ac5aa5e696a73eb26b95a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:85:e8:83:92:eb:5e:b5:1e:23:b4:9d:60:12:
3d:76:86:ac:20:85:60:0c:ec:6e:d0:5d:b9:c7:73:
db:52:e2:6a:20:a2:b6:50:f8:63:e4:27:de:ec:ae:
9b:29:db:3c:65:a7:0f:96:37:2c:6e:1a:8f:e7:f5:
1c:6e:98:85:fb:0c:23:79:8c:fe:7d:a3:cd:2b:c3:
5e:03:e4:4c:fd:2f:b5:a8:b7:24:46:83:e9:bc:df:
b1:16:e7:63:be:01:be:f1:07:21:a4:c6:83:57:7e:
a3:a7:7f:0f:20:ca:b2:40:4b:e1:8b:70:1f:35:8b:
ee:b3:68:86:0a:18:33:d7:f8:b1:8a:d0:47:cd:df:
ab:96:b7:ea:4f:eb:74:4f:06:2a:d9:b5:38:4b:67:
2e:4a:07:90:04:29:a0:8a:2f:3f:11:3a:1f:e4:57:
32:6d:ac:f1:85:e6:31:2b:17:b0:6c:97:3d:53:31:
ca:a9:19:5e:3a:99:d5:f9:6c:db:e1:e8:ce:41:81:
45:79:ce:78:37:2a:31:b0:32:53:93:31:5b:5a:33:
06:94:6f:fc:f5:ca:06:e8:be:bf:b1:3b:39:04:43:
ec:2d:f2:a4:c1:4c:b7:25:18:5e:28:b8:e2:52:28:
1d:01:43:3f:62:f9:65:ce:88:4e:09:a7:04:3c:ec:
99:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D2:D3:72:E0:6E:68:88:6A:C5:AA:5E:69:6A:73:EB:26:B9:5A:3C
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:d2:da:cb:ee:37:c8:75:40:d5:aa:0a:e1:2e:92:7f:17:c6:
11:29:b6:5d:4b:af:96:d1:53:bd:4a:29:15:76:25:09:51:6a:
b2:94:57:84:c9:b2:6d:bd:23:7f:3b:61:7c:51:b1:ba:8a:e0:
ad:b8:57:50:b5:76:60:35:48:80:a7:1d:f1:f2:61:dd:53:1a:
85:29:1d:d4:79:88:9d:df:ca:cb:7f:d7:7b:f9:83:76:36:a0:
52:5a:cc:d3:b6:0e:0f:73:c6:ef:19:9e:8e:54:3e:b3:93:f5:
30:11:d9:f6:47:ac:a2:98:03:c5:b0:0f:68:2c:e4:64:8e:00:
fd:a4:b9:a9:6a:87:08:84:88:ce:08:8b:8e:c6:66:6f:7b:83:
b7:b7:85:08:7c:25:d4:2a:38:bb:58:1d:cc:6d:7a:27:47:56:
27:93:1b:61:ef:94:bf:23:a1:7a:79:5c:89:63:83:c5:ab:6c:
a4:2e:8d:b6:12:f6:d8:a2:f5:f1:3f:f3:83:98:a1:b6:6a:50:
e6:e5:ce:b3:0e:d3:46:51:19:55:82:d2:2c:e6:1f:4d:77:07:
d7:06:f2:53:10:bb:51:42:9c:92:8d:e4:7d:89:a2:b6:e3:d5:
24:70:0e:41:a2:e7:8d:9e:5d:43:0f:db:fc:ff:5d:33:6f:ca:
ef:39:78:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:51 2026 by rpki-client