Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
File: CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft (raw, json)
Hash identifier: dwpSa3p0fC5mkQMjpD5OICTvtYS7nkDRYAppv8Js33U=
Subject key identifier: 61:55:67:7C:D8:5E:AE:62:91:8C:B9:A1:AD:FD:2E:27:7F:88:E0:3C
Authority key identifier: 0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
Certificate issuer: /CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Certificate serial: 0199225525B82E74074533BEDC834775BA11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
Manifest number: 162B
Signing time: Sun 07 Sep 2025 04:00:29 +0000
Manifest this update: Sun 07 Sep 2025 04:00:29 +0000
Manifest next update: Mon 08 Sep 2025 04:00:29 +0000
Files and hashes: 1: CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl (hash: Q0Kcg89HJ6w3gViwTK6kOjhYAOZvhEOol0bG09P6EjI=)
2: Wy1LhCK9kxP-C2UiE5R2K8JtffM.roa (hash: DYS7fnBaD9Os9bSnRtbqX/rsXfSVI5HQGNbOlzCHNGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:25:b8:2e:74:07:45:33:be:dc:83:47:75:ba:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Validity
Not Before: Sep 7 04:00:29 2025 GMT
Not After : Sep 8 04:00:29 2025 GMT
Subject: CN=6155677cd85eae62918cb9a1adfd2e277f88e03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:02:38:41:90:7d:cb:fc:9e:d5:5a:4a:8f:f6:
97:bb:8b:3d:ef:13:6c:22:ae:5e:3a:ff:8e:5d:9a:
c0:26:de:a1:d4:6b:fd:df:4d:85:fa:74:9a:74:cf:
3d:2f:fa:ac:f6:00:ae:8d:5f:52:31:ce:2a:1a:b1:
ec:d4:0b:bf:4e:af:b9:1d:59:23:d8:15:02:96:d9:
17:17:89:06:36:83:cd:71:86:09:4c:6c:fb:f1:33:
ef:97:94:c5:0e:8a:bf:26:bb:41:f1:68:dd:42:7d:
8c:65:93:d0:e9:ab:99:75:fc:a2:52:f4:69:08:c3:
e1:eb:8d:c8:b3:c0:92:8f:5d:a5:27:68:9b:e8:7f:
b7:26:6a:5c:85:65:5a:9d:2a:b7:dc:f7:fb:44:ce:
10:ee:58:b5:a3:4d:16:89:ec:1d:a0:a3:c2:30:4a:
42:b2:54:b4:b4:4f:4b:2a:27:f7:b3:8b:d2:c1:be:
b9:8e:52:4e:bf:73:35:4c:be:26:27:88:f4:aa:9a:
b9:87:78:2d:87:d9:63:89:23:ec:ff:44:47:31:a7:
8a:c1:0c:8f:95:9e:3b:42:59:42:81:2a:91:5b:f4:
de:c2:0f:50:d3:cf:21:db:df:87:22:80:3f:e0:aa:
08:ab:a8:0f:50:14:dd:ba:4c:fc:ff:f6:d8:7d:2d:
a9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:55:67:7C:D8:5E:AE:62:91:8C:B9:A1:AD:FD:2E:27:7F:88:E0:3C
X509v3 Authority Key Identifier:
keyid:0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:86:dc:3b:2c:bb:47:29:a8:41:f7:03:39:e9:af:b6:74:15:
84:a5:0f:94:80:0b:ba:36:06:5a:3c:ce:51:fe:e8:d0:30:b5:
51:70:94:20:76:04:73:f7:10:d4:de:9e:8b:77:c8:74:1b:50:
f2:97:3c:c4:7c:7d:22:59:54:5d:aa:31:b0:2f:02:1a:cd:db:
86:4b:a4:d4:05:da:bc:d4:e9:51:3d:42:d5:fd:da:cf:e8:52:
2f:84:98:a5:ba:86:b4:00:dc:5e:45:f6:2e:de:cc:03:0f:95:
bd:92:7c:29:31:99:5d:2b:3d:58:2e:4b:a9:90:2e:d5:65:9e:
32:13:de:8c:74:2a:44:af:88:0e:ca:73:4c:af:10:62:79:19:
a6:15:a8:df:5b:cc:be:79:a7:c5:b6:41:16:5c:86:e3:9e:2c:
cb:de:3c:99:ea:20:c2:50:76:b5:7e:2e:52:87:54:ee:c8:8d:
7b:b2:d4:83:6a:d1:ba:f9:1d:ae:77:73:80:56:f9:e5:0b:a2:
70:45:31:20:ed:2f:48:d4:41:e4:20:ef:33:7b:d6:38:5e:04:
31:9f:3e:35:80:9e:49:f5:15:ce:83:ea:e1:12:84:31:e0:b8:
e0:31:bb:35:1e:16:77:b0:56:93:ee:b5:99:5e:2e:29:93:b1:
a7:9f:33:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:23:05 2025 by rpki-client