Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: 9vWg34bmWar31dGqoifvkYopDVMMWyFDWuR5NIg9Z0s=
Subject key identifier: 01:A3:E2:07:6E:A6:25:02:F8:36:28:7A:E6:53:AC:3F:A1:12:EC:61
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 0198D5F13FF5CB99EE295092C3E881F24724
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0B5E
Signing time: Sat 23 Aug 2025 08:00:14 +0000
Manifest this update: Sat 23 Aug 2025 08:00:14 +0000
Manifest next update: Sun 24 Aug 2025 08:00:14 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: J3PyS4HUYoJ6fnv0EZiUwmVMvS8WlkIQyPbgG+DVpcM=)
2: TnUa9Ik5MIEZFyAPb51t3lEzTlw.roa (hash: VAA3uHujk9bmdBTaro78iFRxhf25M26lepAeKhwVT4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:3f:f5:cb:99:ee:29:50:92:c3:e8:81:f2:47:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: Aug 23 08:00:14 2025 GMT
Not After : Aug 24 08:00:14 2025 GMT
Subject: CN=01a3e2076ea62502f836287ae653ac3fa112ec61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:94:47:22:44:72:fe:d9:72:f7:2e:6a:c0:b8:
da:29:ec:ea:61:64:8e:be:70:9f:c6:44:65:af:96:
fd:df:5e:a8:61:c5:dd:8f:70:4e:84:73:71:7d:20:
1d:57:60:37:68:96:95:0e:c8:11:51:5b:dc:80:1b:
0f:b7:3c:d3:89:10:2b:40:21:db:5c:fa:f5:bd:e4:
21:54:f7:22:15:a6:26:17:5d:c2:59:84:c4:47:8e:
0d:4f:ab:0e:1e:00:8a:58:d0:8d:03:ae:4c:36:84:
44:af:ed:ce:b5:53:ef:1f:59:29:26:ba:30:01:df:
d2:a4:6e:81:03:cc:c1:da:9a:6c:e5:07:75:94:d0:
b0:c3:00:c9:6c:4d:82:69:bc:0d:de:74:a1:21:fc:
b1:f8:f7:18:9b:dd:ff:21:2d:19:57:26:ff:55:19:
d6:3a:37:4c:e4:11:e9:39:09:4c:86:d2:3a:ab:96:
07:73:3a:c5:f3:32:5c:4b:8a:08:c8:2f:9d:21:b8:
b0:2f:41:e8:8c:3d:38:2a:51:1b:33:2d:57:b6:15:
ce:62:19:e8:c4:cc:a9:ac:6a:b7:f2:f4:9e:93:01:
f1:ba:c4:5e:bd:ec:d1:0d:8e:c5:61:87:a3:6d:98:
04:81:5c:49:0c:90:df:0c:ea:51:bb:12:1a:6c:be:
da:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A3:E2:07:6E:A6:25:02:F8:36:28:7A:E6:53:AC:3F:A1:12:EC:61
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:f5:6e:ed:78:eb:da:ec:37:c0:ea:55:57:0b:6b:00:7f:54:
da:90:d4:e9:b8:80:f9:4a:b5:c3:b1:87:7f:39:24:78:58:d6:
16:4b:4c:ad:ec:41:a5:c0:27:08:06:ce:cc:5e:83:8d:5e:42:
90:fa:b9:37:30:66:8a:cc:01:36:6e:4c:62:67:f3:f8:a0:83:
10:cd:aa:c2:c8:34:e3:1f:85:e0:b3:95:eb:7f:62:4c:76:21:
9c:89:8e:ad:f5:87:dc:1e:bb:a5:df:a0:67:b7:c5:92:ae:5a:
dc:51:8c:2c:96:b8:ec:78:45:5f:df:48:bc:3f:9f:bc:d4:dd:
a6:1e:41:65:74:f2:f5:85:05:58:e0:a4:53:90:f0:1a:1a:26:
10:84:09:1f:d8:3e:c6:72:9a:1b:fc:3b:2f:e5:95:f9:54:a8:
90:f7:30:dd:82:8b:9b:ba:25:ea:76:59:ab:2b:16:dd:58:36:
26:79:b7:f6:d5:89:75:7c:a1:dc:5f:b8:fc:87:bb:7e:ef:fb:
d8:a2:0c:1e:f3:48:45:7f:8d:4f:b8:13:f5:80:27:28:ae:81:
ec:6c:5b:78:1f:14:48:05:24:95:96:dd:d2:40:c5:c5:40:33:
96:22:ae:a3:79:02:36:28:2d:9e:5e:78:f2:1a:d1:ce:30:26:
f2:81:86:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:28:15 2025 by rpki-client