Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: yRrvYzBsVsMAfXMeC2VsAnL3SKk7gPlF64rwXAp0Ewk=
Subject key identifier: C3:13:3A:04:62:9F:E0:3F:75:56:87:5A:E0:77:EA:5C:47:1E:A7:7D
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 0197B820FF5615C6236C43E6217860F48E3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0ACA
Signing time: Sat 28 Jun 2025 20:00:59 +0000
Manifest this update: Sat 28 Jun 2025 20:00:59 +0000
Manifest next update: Sun 29 Jun 2025 20:00:59 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: cXIAMbtbOPbfwxcqVV2jNqkgE+wK8QNFmYyfILBUDJY=)
2: TnUa9Ik5MIEZFyAPb51t3lEzTlw.roa (hash: VAA3uHujk9bmdBTaro78iFRxhf25M26lepAeKhwVT4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:ff:56:15:c6:23:6c:43:e6:21:78:60:f4:8e:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: Jun 28 20:00:59 2025 GMT
Not After : Jun 29 20:00:59 2025 GMT
Subject: CN=c3133a04629fe03f7556875ae077ea5c471ea77d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f9:28:2b:29:84:5a:20:22:32:62:1e:f1:00:
26:64:8d:f7:5c:36:67:dc:4d:19:b1:83:dd:45:96:
d7:fc:8f:83:63:cf:97:11:42:54:52:0e:bd:69:93:
45:58:17:cc:9d:d2:b2:48:dd:bb:89:cf:e1:96:e0:
31:c7:1c:d0:03:17:4b:f5:69:3a:de:28:0e:d1:32:
91:8e:70:5e:3d:50:b3:d8:f7:6e:5b:42:6e:e4:40:
9c:a9:5b:14:be:39:36:71:30:52:de:94:70:d3:6e:
04:e7:f3:91:2b:5f:57:33:12:46:2f:7d:c8:71:36:
2d:e7:2c:1d:3a:42:c3:86:2a:9e:c8:07:d5:01:fa:
9c:9c:b5:ec:11:a0:5c:09:94:e4:54:6c:f6:2b:da:
a3:e7:9a:ee:1f:f5:3e:85:12:59:03:79:74:14:a4:
05:95:ef:16:25:9b:0e:dc:22:e8:da:7f:22:ea:4d:
39:61:21:88:f8:84:eb:6b:52:7f:d6:78:93:1c:a5:
26:f9:b1:16:0d:4c:88:13:af:eb:5b:29:96:3b:9d:
58:23:2a:84:9e:fd:70:8b:45:b0:a5:cf:a9:86:b4:
8a:88:69:43:e4:03:71:f7:74:63:b8:16:99:0c:49:
7e:b4:6c:f1:36:c0:ad:7c:e2:c9:4c:2c:7f:e1:27:
88:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:13:3A:04:62:9F:E0:3F:75:56:87:5A:E0:77:EA:5C:47:1E:A7:7D
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:14:cc:a2:75:90:0b:3d:1a:21:dd:4c:b6:c2:9f:26:ed:dc:
6f:fc:16:87:39:14:72:42:ff:4a:2e:73:85:d7:7a:12:30:54:
cf:a1:de:1a:ca:20:24:0d:d1:98:f8:56:12:a6:29:f6:b7:62:
91:71:7a:15:d3:6b:d7:2d:8a:de:58:67:f9:fc:38:ae:ce:f0:
7b:ea:28:66:3d:fb:22:63:8e:22:cd:21:61:9c:d2:12:dc:8a:
0f:70:48:e6:50:1f:b7:5d:12:19:e7:a2:54:9c:87:58:c3:35:
00:69:bd:38:da:be:43:52:1c:b2:6d:71:ac:00:75:ff:ca:09:
87:29:bc:8b:b0:9c:e2:fe:08:05:c7:f3:03:94:29:23:84:2c:
57:c3:71:ce:3e:ee:a3:dd:f4:d8:18:a0:db:2b:fd:b0:49:9a:
d0:7b:08:05:86:62:c8:1c:03:e6:55:06:75:bc:ad:16:f3:20:
5f:f5:1f:75:58:62:ea:66:54:6a:56:a8:0f:50:b6:1d:a0:fd:
36:5b:c9:09:b0:13:d0:16:67:96:9d:01:3e:78:e8:b7:05:02:
07:c4:ce:09:43:73:7d:d3:c9:9b:c1:c6:f3:bb:1c:7c:99:38:
7c:70:6e:ae:f4:70:6b:0c:dd:ae:ab:c0:4f:98:06:3f:eb:7b:
a1:7f:d8:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:59 2025 by rpki-client