Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
File: mlCFOiSox2IjTokTpKWymFwzHa0.mft (raw, json)
Hash identifier: JCLUz90TAXZdKVl5U56H2jeXgbhGwv8sIW+DpJmDFN8=
Subject key identifier: E5:AF:A2:16:2E:45:66:1F:2D:BC:42:D5:6D:2C:34:62:20:02:D8:C9
Authority key identifier: 9A:50:85:3A:24:A8:C7:62:23:4E:89:13:A4:A5:B2:98:5C:33:1D:AD
Certificate issuer: /CN=9a50853a24a8c762234e8913a4a5b2985c331dad
Certificate serial: 0199239FDC3EC4CE5A4F9642211305CEDBF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
Manifest number: 1432
Signing time: Sun 07 Sep 2025 10:01:42 +0000
Manifest this update: Sun 07 Sep 2025 10:01:42 +0000
Manifest next update: Mon 08 Sep 2025 10:01:42 +0000
Files and hashes: 1: mlCFOiSox2IjTokTpKWymFwzHa0.crl (hash: OsqdoUsW5aVEK277WRwB6ZP0sVrZ5v+rQ78jgqf6Qxo=)
2: wrVdtsFJg-xxcwL89uUP6qnVtLk.roa (hash: Y5fuW3nl7fba2JKNfboUC/pVBV59jurhYdqhnS+frGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:dc:3e:c4:ce:5a:4f:96:42:21:13:05:ce:db:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a50853a24a8c762234e8913a4a5b2985c331dad
Validity
Not Before: Sep 7 10:01:42 2025 GMT
Not After : Sep 8 10:01:42 2025 GMT
Subject: CN=e5afa2162e45661f2dbc42d56d2c34622002d8c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0f:2f:4b:d5:fc:35:f0:ec:1e:d2:85:8a:35:
65:b0:de:a1:49:e5:b3:d5:89:c1:66:59:04:93:c7:
bd:a3:9f:fd:50:ed:87:90:c7:48:d0:fe:b8:4d:81:
46:41:78:f4:c3:b6:a2:b7:3b:b2:aa:5f:d3:73:84:
76:b0:0b:19:71:87:ae:b5:a2:c0:97:d7:38:e5:f1:
b1:0c:03:b6:b2:0b:d3:a5:79:95:b0:5e:89:39:dc:
5c:ef:1e:0d:ce:77:9c:5d:fb:19:6d:ef:38:eb:f0:
80:de:7d:41:dd:8b:35:1d:81:ae:ee:e7:7f:81:df:
d1:6d:62:0e:17:e7:dd:ef:f2:df:f7:db:3f:cf:e5:
4c:78:14:59:d6:9b:ac:81:a6:b9:2d:6c:65:f0:1e:
2d:29:31:7b:f8:4b:0b:6d:a2:83:64:ac:7e:a5:4a:
4c:2c:e9:2e:aa:8f:f4:53:2e:1d:b5:d1:53:fd:35:
f6:da:c0:11:de:eb:59:ce:bb:e8:2b:1c:6a:8a:ea:
ca:43:8b:a0:7c:82:82:a5:11:d8:1f:22:e3:be:c9:
4d:9b:90:25:55:1e:6c:d4:74:49:17:39:1d:b6:5f:
67:f8:22:8a:3f:b0:21:2c:d0:28:cd:81:ea:8a:91:
22:bc:de:03:76:a5:b0:22:4d:a5:a3:ca:b3:a2:4e:
a8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:AF:A2:16:2E:45:66:1F:2D:BC:42:D5:6D:2C:34:62:20:02:D8:C9
X509v3 Authority Key Identifier:
keyid:9A:50:85:3A:24:A8:C7:62:23:4E:89:13:A4:A5:B2:98:5C:33:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:0c:0c:6c:2d:a1:37:f3:e9:91:d0:cc:bb:32:d3:5b:eb:42:
ef:d7:f3:9a:f0:e6:f4:ae:94:ad:35:95:b8:a6:10:87:f1:75:
db:42:df:57:17:94:11:f5:26:e2:fc:84:a4:7f:36:34:3b:c0:
f1:16:05:5b:08:6a:34:2a:5f:f4:26:dd:1a:8f:3f:c5:04:11:
13:33:66:46:1b:34:c2:60:f5:57:57:3a:a1:a6:49:7f:61:46:
b5:f9:9f:d5:5a:15:31:fd:17:da:83:9d:86:ff:0f:10:21:da:
ed:af:73:64:dd:a9:39:8a:c3:90:8c:49:1a:af:3c:d7:3e:ca:
03:ab:ef:74:28:63:d4:6d:79:47:0a:05:86:e2:ea:a2:44:bf:
41:84:f7:de:1d:49:2f:13:6e:f5:6e:77:d7:cf:13:de:34:6a:
78:b8:83:0f:97:40:35:71:1e:4f:58:c6:20:31:7a:39:2b:5b:
da:52:41:7b:e6:c4:9f:cf:2d:ad:dc:0e:78:ab:64:f0:ea:41:
cc:bb:0b:67:c7:e6:11:32:18:1f:e7:70:48:30:4e:7c:26:87:
8c:65:29:70:ad:e6:68:ea:3f:46:59:1a:4d:29:1e:68:38:01:
d3:83:96:26:92:b1:14:68:a6:f6:e9:cc:ae:68:5e:18:a2:69:
d3:9c:79:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:33:42 2025 by rpki-client