Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json)
Hash identifier: KFemXCqav3s4r3mp4azJA0l+CPD4s7H5fz7mAu21/6A=
Subject key identifier: 66:82:7E:D3:17:50:C4:FE:E5:62:9F:B1:C9:98:16:4B:18:E7:7A:8A
Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Certificate serial: 019D254C3299EB45D4CFCE7D00596F9489CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
Manifest number: 0D9A
Signing time: Wed 25 Mar 2026 14:00:43 +0000
Manifest this update: Wed 25 Mar 2026 14:00:43 +0000
Manifest next update: Thu 26 Mar 2026 14:00:43 +0000
Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: RK9lcphydgFqDg3L9iDRWNMOUdlCITMPHMTTp3pErCs=)
2: fYsmeN-jCqvumQk1ANzN0bj9fD0.roa (hash: HXWJlZSBJsNOWJXHSVdFO/BZWcCQBKxp4a6Uo9maQhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:32:99:eb:45:d4:cf:ce:7d:00:59:6f:94:89:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6
Validity
Not Before: Mar 25 14:00:43 2026 GMT
Not After : Mar 26 14:00:43 2026 GMT
Subject: CN=66827ed31750c4fee5629fb1c998164b18e77a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4f:ce:b8:b3:e8:20:3c:10:bd:52:d8:f5:3f:
73:07:1d:3d:6e:ef:4d:4d:0f:8c:fe:cc:cf:f2:02:
d1:6a:8d:b3:a8:cd:5a:2e:0e:da:26:48:6f:04:ea:
19:38:68:1d:76:94:e1:e6:28:3b:ca:b7:62:d1:71:
bb:c8:14:3a:ff:4e:09:6e:1f:94:9e:53:a4:5c:bb:
23:15:38:f8:bf:38:93:8b:53:5e:30:f4:4a:d4:94:
15:3c:05:9b:87:87:63:31:11:ae:15:4e:f4:09:a4:
f1:6f:7a:07:86:ba:c1:ef:6c:79:46:d7:47:de:04:
e2:58:4d:d8:75:1c:4a:40:5b:06:24:58:28:0c:71:
35:55:e7:3f:51:c0:c9:40:c9:7b:5b:3d:82:d2:a5:
15:11:df:67:3e:97:52:9d:d7:f4:4f:4b:c3:92:6c:
cb:d1:c0:88:4c:e8:4d:e3:57:1f:56:f2:34:f3:fa:
56:10:09:63:60:91:d9:2e:e9:ec:29:5f:47:0b:d1:
f6:9e:99:80:b1:4e:d8:a6:a5:3b:3c:ec:4c:68:49:
e9:f1:ff:79:b4:db:81:b3:5a:1a:c8:97:a3:94:a9:
08:75:7a:40:61:c9:0c:96:dd:87:ca:66:00:2a:43:
f7:45:ea:11:0c:98:6a:a5:49:a8:3d:4a:e4:6f:25:
9a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:82:7E:D3:17:50:C4:FE:E5:62:9F:B1:C9:98:16:4B:18:E7:7A:8A
X509v3 Authority Key Identifier:
keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:1b:a8:0c:47:9e:82:95:0b:48:f5:05:8c:11:c1:cb:2a:4d:
76:da:b2:be:d0:9b:39:f0:ba:17:d5:ba:75:52:31:24:c0:e6:
33:a3:25:75:40:ab:b7:fd:40:2f:63:d9:bf:02:cd:10:05:7a:
27:25:2e:39:59:40:ce:43:30:1f:09:29:78:26:c0:36:b5:36:
c8:6d:66:a8:12:7e:ed:f7:1e:bb:9e:2a:01:8c:ea:52:00:d6:
83:5d:22:07:f4:f6:58:36:1f:19:7e:4a:48:44:28:64:71:39:
70:16:a1:9b:9f:c5:40:51:8b:a8:5b:13:2c:fe:86:60:6c:85:
5a:f0:89:0e:06:95:c7:48:69:7b:67:2a:e1:02:68:5b:73:09:
b4:d8:2b:ca:76:b9:81:42:c8:e2:9b:a6:e3:fb:9e:7a:d2:ed:
7f:8d:bb:c9:0b:61:93:36:05:f9:0a:19:c8:b7:2d:40:02:5c:
be:6a:d9:94:71:ff:d4:ec:59:ce:76:44:c1:c8:06:27:da:62:
1b:7d:e0:77:57:1e:cd:c6:15:e6:7f:ec:cc:04:e0:a5:c6:7f:
e7:4d:a3:4b:95:61:3e:d4:aa:7f:8f:1b:a1:65:0b:35:f3:8e:
c3:38:31:09:34:c8:fe:cb:91:10:9a:f4:51:91:40:14:ac:ec:
c1:e1:c0:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:04 2026 by rpki-client