Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: cgz7BW0g/j9h12TnKpZxxC+ijWM5kUmeaMvGcGRNuBk=
Subject key identifier: C7:DF:89:C2:EB:F5:A0:45:93:7A:FD:59:C9:46:04:AD:16:96:39:B3
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 0199FD6B6136BC9BA083AB28C9C50D3C0080
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0BF7
Signing time: Sun 19 Oct 2025 17:01:36 +0000
Manifest this update: Sun 19 Oct 2025 17:01:36 +0000
Manifest next update: Mon 20 Oct 2025 17:01:36 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: wT+tdQa73laBafMI6fRE2ZlUy0k8HjdXimZHVzyUhJE=)
2: TnUa9Ik5MIEZFyAPb51t3lEzTlw.roa (hash: VAA3uHujk9bmdBTaro78iFRxhf25M26lepAeKhwVT4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 17:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:61:36:bc:9b:a0:83:ab:28:c9:c5:0d:3c:00:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: Oct 19 17:01:36 2025 GMT
Not After : Oct 20 17:01:36 2025 GMT
Subject: CN=c7df89c2ebf5a045937afd59c94604ad169639b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:17:d5:d3:98:64:9b:e2:17:ff:d7:47:ec:b9:
82:74:b3:81:94:ad:af:d9:e6:8f:2a:a9:cd:7c:96:
bd:42:9d:22:db:a9:d0:15:03:41:84:15:9a:98:4f:
2b:c8:b2:2b:12:3f:1a:b0:50:5a:07:b1:d6:66:de:
5a:31:74:68:26:3b:d3:b4:59:58:f7:5e:7c:dd:67:
bc:ce:fa:c2:73:c3:f2:03:ed:17:41:b7:24:71:3a:
0a:3e:ce:e5:48:82:b8:de:e6:da:e9:f5:57:bd:8e:
32:a1:45:58:d4:0f:63:e7:7f:9c:7a:fb:4a:e6:1e:
99:a3:90:7f:15:c0:fe:bc:3b:27:38:11:87:24:0d:
1d:22:3d:5b:c6:0c:fe:fc:ea:c7:44:30:87:55:fe:
f5:fd:fe:47:6a:c6:2c:05:4a:a6:29:6c:d4:32:50:
e3:57:53:ae:e8:dd:9e:a4:e6:da:54:a5:dd:ed:f6:
00:7f:7b:97:1f:70:66:a1:c6:71:d3:17:1a:e8:6e:
28:23:5a:00:b4:6a:8d:11:11:fb:31:c8:06:de:97:
4d:3f:36:5f:05:d9:b0:df:ec:92:38:40:ab:a6:96:
ce:55:d0:d5:85:e2:ab:8f:50:ad:0a:14:0d:47:81:
7c:e3:5d:99:35:3b:57:42:91:06:af:0b:91:7c:27:
1e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:DF:89:C2:EB:F5:A0:45:93:7A:FD:59:C9:46:04:AD:16:96:39:B3
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:3d:2e:28:ea:73:c8:e1:00:70:c0:2f:b5:4f:71:58:ab:d7:
a7:bb:0d:e9:35:8c:65:01:0d:3e:76:96:d1:70:db:d5:7a:35:
61:ed:53:30:35:6c:c1:6e:d3:85:2b:ad:82:c5:3e:db:d6:f9:
87:87:aa:e8:a6:76:01:ca:6c:97:c3:a2:d2:a1:1b:b5:98:98:
fb:51:d7:e6:b4:6b:44:1d:e9:c7:fd:0b:da:57:21:9a:0b:fe:
a3:ba:ee:ba:28:33:91:13:88:d7:43:22:5e:f8:9d:ec:47:51:
3b:76:dc:69:7b:e6:0d:51:6d:7c:4c:db:c5:74:de:12:06:d1:
a4:c2:92:85:4f:e5:f9:cd:5e:e5:25:07:d3:d1:5f:e5:0c:79:
d8:2e:d7:e3:6d:04:e4:9f:fa:58:19:45:a3:9c:74:be:0a:74:
20:5c:eb:c1:dc:33:0f:81:36:a5:9a:35:f0:78:df:fb:72:f4:
ce:3e:9d:40:6c:b9:fc:d5:cf:04:6c:8e:96:3f:25:9c:53:a4:
3c:4e:e3:3a:66:c5:69:e0:5d:57:24:86:a0:86:29:7e:bf:5e:
0e:9f:f7:8f:e5:73:f6:49:8f:82:0b:72:b0:e2:cc:01:f1:8c:
5b:e1:35:5a:ae:2c:72:6b:89:27:59:62:1a:5c:0b:3e:d4:eb:
2d:e0:da:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:12:20 2025 by rpki-client