Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
File: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft (raw, json)
Hash identifier: ImF5TEzveG/W6DCgvOHB2ICHNq6p7WPFiryh+AU1H1Q=
Subject key identifier: 8B:74:A8:82:CB:72:A3:07:28:03:06:D5:6C:9C:D4:66:26:A0:D2:16
Authority key identifier: 72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
Certificate issuer: /CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Certificate serial: 019922C35CA32CEF67273C0EB734F1DC4E0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
Manifest number: 15B5
Signing time: Sun 07 Sep 2025 06:00:52 +0000
Manifest this update: Sun 07 Sep 2025 06:00:52 +0000
Manifest next update: Mon 08 Sep 2025 06:00:52 +0000
Files and hashes: 1: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl (hash: 2uGo2hR+AkM/Fyzd7NDAauBA0x+1u2s8JjWXOySxxNk=)
2: hML-Tag6b9qlpG18VlhLUkClkKg.roa (hash: LEX7BjdOFqa/vQo+qGyu7UsdS3xFcEis6fY7DeQDRek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:5c:a3:2c:ef:67:27:3c:0e:b7:34:f1:dc:4e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Validity
Not Before: Sep 7 06:00:52 2025 GMT
Not After : Sep 8 06:00:52 2025 GMT
Subject: CN=8b74a882cb72a307280306d56c9cd46626a0d216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:24:4a:fe:50:b1:45:d1:91:53:af:34:05:0f:
73:7c:d0:7f:58:76:52:34:ee:43:94:a9:d8:38:b1:
50:12:d7:08:83:f1:5a:ac:3b:9c:08:6b:03:69:e0:
94:ac:3a:e0:1e:7f:c5:96:a0:6e:92:a4:15:63:fd:
a4:76:87:42:25:4f:dd:6e:ba:5f:7c:73:ae:41:55:
18:22:9c:62:b6:12:63:72:71:e5:d7:86:59:58:fb:
bb:f6:01:46:b1:c6:54:e4:21:08:d3:21:0f:05:b0:
3d:56:6c:37:be:53:32:cb:de:ec:e8:f6:75:13:f5:
33:ce:ea:7d:e4:3d:0a:e4:41:c8:52:50:9c:08:8f:
96:a0:0d:ee:e8:6a:7f:f4:e5:4a:57:a0:cc:46:62:
f6:8f:62:f7:f5:60:25:bd:24:bf:16:79:e3:31:5a:
e0:e8:bf:90:1f:e3:c2:58:90:07:25:a6:d2:21:0c:
d4:81:15:5d:f8:86:dd:dd:7c:d9:d8:da:b2:2b:bd:
ef:13:45:7f:cf:b7:73:23:f4:65:55:0d:49:a7:1c:
aa:fc:27:37:2b:a0:27:4c:07:a7:68:bb:62:4a:1c:
ae:75:ee:36:fa:96:74:19:ce:b8:7d:5e:f3:95:ab:
02:00:e1:67:31:dd:e6:3d:10:7e:64:e3:47:2c:80:
e8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:74:A8:82:CB:72:A3:07:28:03:06:D5:6C:9C:D4:66:26:A0:D2:16
X509v3 Authority Key Identifier:
keyid:72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:48:5f:6a:e8:0a:57:b1:01:2d:74:fa:37:1e:e4:04:7b:37:
32:89:ce:22:e2:7c:87:9e:82:e6:51:f6:3a:c7:f4:65:b4:21:
f0:d2:40:14:f7:ed:68:ed:99:1e:7c:02:96:15:64:30:56:ee:
cd:f2:e3:b9:72:af:09:6e:27:46:93:9a:0a:aa:2d:4b:5c:08:
71:19:2b:e7:d6:a5:aa:39:45:a6:c9:cc:40:36:5e:dd:9e:99:
60:16:23:2f:db:0a:2c:a0:0a:b7:db:de:ba:bf:0f:56:a0:cc:
76:76:bd:61:42:bd:b2:2a:fb:93:99:37:9c:31:a4:a4:37:b4:
ff:f9:07:89:d5:ef:65:e4:0b:3a:93:ff:e6:84:eb:e7:34:57:
21:23:06:11:17:70:73:1b:10:92:1c:13:56:bf:f9:7e:cb:a8:
75:7b:13:0a:01:2b:11:04:e3:cd:af:12:f4:33:0e:c7:1c:b3:
4a:e5:21:66:06:25:06:a3:20:de:b2:6d:77:93:12:c2:39:76:
55:98:98:9f:72:b4:c6:5e:78:51:37:83:d6:82:7b:04:77:a6:
70:ce:1c:31:b9:34:be:d8:a4:9a:53:e5:bd:3e:14:17:de:25:
67:6d:61:f1:2d:25:79:35:e0:fe:b8:b3:5f:dd:03:19:59:a9:
a6:77:9f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:19 2025 by rpki-client