Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: Ut8leRoc/kgP+8SRLmlYBUluZVLwqKm0gn/V+2pdS6o=
Subject key identifier: BC:3D:31:0A:69:28:21:E6:4B:6B:60:C0:87:F0:3D:04:8E:36:CF:A7
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 0196C6BA6419DE7324FF806981F590790669
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0A4D
Signing time: Mon 12 May 2025 23:00:26 +0000
Manifest this update: Mon 12 May 2025 23:00:26 +0000
Manifest next update: Tue 13 May 2025 23:00:26 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: +4U0gWqzpaOlwtCDVib2H9Kd6orcSMoNTAu0WMM/4zs=)
2: TnUa9Ik5MIEZFyAPb51t3lEzTlw.roa (hash: VAA3uHujk9bmdBTaro78iFRxhf25M26lepAeKhwVT4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:ba:64:19:de:73:24:ff:80:69:81:f5:90:79:06:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: May 12 23:00:26 2025 GMT
Not After : May 13 23:00:26 2025 GMT
Subject: CN=bc3d310a692821e64b6b60c087f03d048e36cfa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d3:7d:4e:92:45:4f:7f:d6:d4:60:9d:70:d1:
86:a8:7e:f6:31:e8:53:cd:09:79:80:f7:1f:ab:41:
ea:55:f8:36:22:36:b4:ae:59:8a:3f:d5:c2:a2:e3:
bf:43:54:36:bd:9e:8e:3d:17:bf:89:d2:57:c3:bb:
23:b5:62:36:1f:89:55:f5:0c:77:be:dc:68:ee:ec:
c5:97:5a:50:06:70:36:1c:49:ac:d5:41:9c:34:ba:
aa:4c:9e:ab:a0:d0:51:4d:6f:e8:51:5f:3c:b0:41:
1b:32:53:9f:81:a1:cf:98:ab:b5:7f:ea:14:ea:c7:
e8:ba:fc:35:b5:79:c4:95:0e:76:64:ae:e9:b7:0f:
0b:29:64:af:c2:f5:8a:7c:8c:45:03:ff:6d:37:4a:
fc:17:a5:22:86:65:e6:09:62:c4:d2:c4:32:3f:5b:
55:c0:fa:4b:92:71:7d:37:b6:dd:ec:8e:1f:db:3d:
bb:c8:94:f9:ba:51:be:36:b7:e2:ad:f1:2e:18:ce:
65:10:0c:32:8a:fe:cb:7a:f5:3a:9b:75:b0:e3:55:
38:4e:51:e1:38:ad:0c:fc:9a:21:8c:b9:0c:d4:0f:
ad:fe:2f:5c:96:b0:cf:94:9d:ea:af:27:e7:d0:9d:
a4:74:71:b4:8a:c9:dd:57:4d:e6:60:7e:38:02:24:
46:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:3D:31:0A:69:28:21:E6:4B:6B:60:C0:87:F0:3D:04:8E:36:CF:A7
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:cb:68:48:d9:3b:c5:03:8e:f7:ac:5c:46:11:9d:d2:b4:1d:
ca:d8:bf:f3:9c:4a:bd:e2:37:52:a1:1c:50:5f:0f:e8:78:43:
24:dc:04:4a:6b:f3:e3:08:85:30:33:f6:e9:23:59:ba:4e:19:
15:d9:11:e8:35:9b:09:63:a5:ca:c8:1c:15:7d:b5:7d:7b:fc:
2e:94:54:d7:57:92:87:0a:5b:7c:45:d3:44:da:b2:22:6b:3e:
06:77:9c:b1:16:31:a6:04:fa:f4:02:62:6e:52:24:41:8a:f6:
42:c6:2a:da:19:db:d8:f1:6d:44:6f:bd:e8:82:63:fd:be:7f:
ba:0e:f0:98:74:18:85:be:76:29:15:c2:58:96:e2:47:f3:58:
31:6f:65:2b:fc:e2:61:9a:ba:c7:95:ea:d1:db:67:2e:ad:65:
34:5d:64:f5:61:80:a6:05:f7:c2:10:86:ec:4e:a5:6d:2c:4d:
3d:af:bc:f1:f6:f5:a8:fd:b2:1a:63:f3:cb:b9:0d:5b:7b:d9:
2b:bd:03:34:71:b0:e3:42:e0:87:6a:99:6c:09:98:8a:59:31:
0c:74:8c:da:9a:55:00:91:6f:7b:56:98:14:56:90:96:bb:3c:
33:42:c4:0f:c2:96:72:20:e0:dd:40:6b:38:3c:bc:0f:3f:dd:
a0:cd:62:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 03:12:18 2025 by rpki-client