Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: 9XmvmvoP8XXrycYobfWYUIll+irhRkEMTMO7N1MvIVE=
Subject key identifier: 2F:41:5D:33:F6:AA:01:A3:37:BC:A5:95:22:33:17:64:B8:DD:BC:F1
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 019A73380F0902980C7128F3777737C63C51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0C34
Signing time: Tue 11 Nov 2025 14:00:44 +0000
Manifest this update: Tue 11 Nov 2025 14:00:44 +0000
Manifest next update: Wed 12 Nov 2025 14:00:44 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: Zi9HO+4Sg79tMtEdkysIixM7g/DSYL8RPpWAPIDwBr4=)
2: TnUa9Ik5MIEZFyAPb51t3lEzTlw.roa (hash: VAA3uHujk9bmdBTaro78iFRxhf25M26lepAeKhwVT4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:38:0f:09:02:98:0c:71:28:f3:77:77:37:c6:3c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: Nov 11 14:00:44 2025 GMT
Not After : Nov 12 14:00:44 2025 GMT
Subject: CN=2f415d33f6aa01a337bca59522331764b8ddbcf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d5:88:3d:28:cb:3a:39:73:57:2e:77:d8:6b:
95:ef:59:db:62:21:a4:55:d0:69:45:cf:a8:24:29:
8a:81:62:f9:c2:93:c4:12:17:e8:fb:8d:53:7d:33:
8a:31:ff:2f:e0:d8:64:43:37:7e:fa:4b:3a:cc:76:
71:9f:83:20:46:cb:e9:88:0f:aa:89:25:c9:3f:8a:
48:44:de:35:8b:be:cb:cf:14:94:48:84:60:41:5c:
87:a6:69:d3:7e:32:d4:55:e7:78:99:b7:28:1e:1c:
07:62:6b:a2:ba:39:c5:d9:f2:f5:1f:ba:2f:94:ed:
55:fa:19:4b:75:a1:c8:77:34:5d:99:e5:95:0a:9f:
b7:d5:f2:db:ad:6b:68:a8:47:38:87:aa:a6:3d:0b:
e0:1c:97:87:e8:a3:76:29:c4:9e:db:35:9e:30:ca:
f4:f8:74:d6:b3:80:57:e0:44:36:2c:6c:3a:16:f6:
05:c4:02:2b:fa:d0:f6:53:81:47:ff:8b:95:07:73:
fe:4c:2e:8d:7a:0c:af:b6:c9:93:d2:b4:ea:3c:20:
57:71:08:15:7f:67:6e:76:18:b8:2a:94:29:60:45:
b1:cd:90:ec:fa:2f:07:dc:ba:f8:81:63:b5:97:76:
81:bb:38:26:bd:9c:43:67:5d:11:4b:46:e9:68:b1:
20:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:41:5D:33:F6:AA:01:A3:37:BC:A5:95:22:33:17:64:B8:DD:BC:F1
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:60:26:e1:fb:1f:7d:c0:c4:94:80:b8:86:03:9e:fa:b5:73:
83:af:8a:7b:2e:e8:27:ed:bc:91:c2:ad:0e:75:54:a4:48:12:
d0:28:26:ec:36:64:8f:43:b2:7f:7f:44:52:8d:88:52:a3:56:
7c:c4:44:fa:9e:7d:2e:d2:28:0a:50:54:f1:bc:0a:92:1e:06:
4a:8e:a2:40:95:f7:18:4b:1a:0d:85:30:9d:62:d5:d1:89:90:
86:8b:bd:e8:71:cd:d5:6c:49:23:73:6c:d7:d6:1a:06:c0:bc:
bd:1c:27:0f:48:43:be:c6:9a:09:6b:9d:f6:44:67:23:3c:97:
38:eb:d9:23:c2:1e:9b:f0:1d:10:c6:e7:c1:97:18:7a:78:54:
83:70:02:3c:26:1d:48:fa:e9:a4:ac:49:49:99:c6:36:86:49:
4e:27:2e:ca:40:8e:24:91:da:16:8a:72:f9:98:18:50:12:78:
41:79:5e:c2:f5:a4:47:c0:c7:1a:0c:7c:b7:0a:e3:e8:00:cf:
32:38:4f:1b:88:c6:a2:5d:8d:ed:ac:26:77:31:7c:a6:54:a8:
bd:da:9d:4c:d8:6a:c2:f6:c8:63:d4:37:7e:41:7a:2e:5f:df:
e3:32:10:46:0a:cd:25:92:0b:1e:98:1e:1d:ff:73:74:73:77:
48:8e:3b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:34:30 2025 by rpki-client