Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
File: mlCFOiSox2IjTokTpKWymFwzHa0.mft (raw, json)
Hash identifier: VJhopyQeq0i8T9j6S83pbNAoRYTWoMkwmfMbfAfHdkI=
Subject key identifier: 1E:E8:04:C9:87:60:A1:6E:51:6C:83:10:3E:CF:E4:86:E3:79:C0:2D
Authority key identifier: 9A:50:85:3A:24:A8:C7:62:23:4E:89:13:A4:A5:B2:98:5C:33:1D:AD
Certificate issuer: /CN=9a50853a24a8c762234e8913a4a5b2985c331dad
Certificate serial: 019A71B91B6925710F19B47B25306CFC6460
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
Manifest number: 14DF
Signing time: Tue 11 Nov 2025 07:02:27 +0000
Manifest this update: Tue 11 Nov 2025 07:02:27 +0000
Manifest next update: Wed 12 Nov 2025 07:02:27 +0000
Files and hashes: 1: mlCFOiSox2IjTokTpKWymFwzHa0.crl (hash: 3xaYfsnXw9+g2nZNXhlwKgIVXgz2M6Pvtc4clSVVs5I=)
2: wrVdtsFJg-xxcwL89uUP6qnVtLk.roa (hash: Y5fuW3nl7fba2JKNfboUC/pVBV59jurhYdqhnS+frGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:1b:69:25:71:0f:19:b4:7b:25:30:6c:fc:64:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a50853a24a8c762234e8913a4a5b2985c331dad
Validity
Not Before: Nov 11 07:02:27 2025 GMT
Not After : Nov 12 07:02:27 2025 GMT
Subject: CN=1ee804c98760a16e516c83103ecfe486e379c02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ea:65:a4:94:86:91:bb:66:f2:41:0c:fa:b7:
16:f9:8a:b0:7d:6f:4b:26:24:04:17:b3:e4:16:6d:
32:35:22:d7:02:c0:bc:7d:17:5e:49:4b:61:aa:25:
1a:d9:c9:bc:5f:59:37:cd:ab:d9:59:37:89:ad:97:
cb:a9:73:ba:79:21:29:4b:7c:db:2d:3f:1b:0f:8e:
0d:ec:9d:2c:26:b8:eb:85:57:98:2b:eb:c4:e3:b0:
0d:a0:bf:95:87:d8:4a:48:21:d2:56:f6:a3:a2:82:
07:6b:26:a9:da:1c:d1:38:ef:eb:59:96:0c:1f:36:
50:d0:bc:a2:4a:95:e9:ec:d2:49:57:48:61:ab:9f:
09:e0:8c:75:ce:2c:aa:55:1d:26:02:7f:1c:c6:4a:
eb:06:38:fe:45:df:b6:12:0c:db:0b:ba:03:85:cf:
7e:ac:8a:c2:fa:af:50:1e:72:b1:cb:df:8e:1d:cc:
d2:70:0d:e5:aa:e0:92:7b:de:e3:5a:12:9a:83:6a:
27:24:bf:31:f5:2b:6a:c9:70:91:d7:da:d8:77:56:
6f:b3:98:91:27:03:94:8a:b3:bf:85:ed:5f:ae:b7:
5b:83:2e:20:13:05:ed:a5:d3:ab:4c:13:3d:cf:80:
dd:52:db:fa:17:d1:e7:38:23:3e:c9:75:55:0a:a1:
5c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E8:04:C9:87:60:A1:6E:51:6C:83:10:3E:CF:E4:86:E3:79:C0:2D
X509v3 Authority Key Identifier:
keyid:9A:50:85:3A:24:A8:C7:62:23:4E:89:13:A4:A5:B2:98:5C:33:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlCFOiSox2IjTokTpKWymFwzHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a429b-a454-428b-bb88-88b58d02b2a1/1/mlCFOiSox2IjTokTpKWymFwzHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f5:6c:78:4a:49:0b:7a:93:23:05:cd:5d:5a:d8:e1:91:85:74:
42:18:02:8f:17:03:eb:f1:55:20:77:98:4e:d2:51:21:c7:d1:
be:20:f7:4f:1e:29:a9:15:f0:76:96:39:84:93:b2:d2:7e:ae:
70:d4:87:98:60:12:95:43:c8:d6:aa:6a:93:ba:86:90:4d:d4:
41:ed:fb:65:7e:a1:da:7d:52:43:f4:d6:3e:de:ad:0b:67:75:
f6:69:62:b5:1c:47:57:40:e4:b5:8f:af:7b:9f:b9:d9:03:f4:
b6:c7:d3:57:2c:70:ae:65:b7:b2:f8:04:04:cf:06:dd:53:5a:
6c:43:01:b4:3b:3f:b2:bb:24:7e:9e:7f:7d:72:3a:ab:42:07:
9e:22:d2:50:f5:f9:d4:69:9f:b3:24:10:5e:c6:3a:bd:a7:c3:
0e:ac:e6:7f:02:2e:36:cc:55:63:75:b0:3b:2a:2f:ac:ae:cf:
9c:b0:ba:54:6c:3b:9b:16:21:b8:df:52:5a:98:9f:71:e7:8c:
59:64:56:c1:a1:c3:5b:5d:85:a5:ad:b8:4a:33:82:23:a0:a3:
35:59:8a:23:a0:86:c4:76:d5:9e:94:98:b3:b6:91:9b:83:6b:
3b:aa:f4:e5:d6:b2:46:f2:3d:90:d1:a1:3f:c3:23:f3:90:da:
5b:2f:43:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:41:42 2025 by rpki-client