Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
File: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft (raw, json)
Hash identifier: UenzIlyrHlBTmSWHE6KWnvoy2dJzHgYDpG+ob3eWZzE=
Subject key identifier: AE:50:3E:BB:05:F4:6E:73:BD:F2:C8:5C:D9:05:61:B0:9C:17:FD:1E
Authority key identifier: 72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
Certificate issuer: /CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Certificate serial: 019A2B55DFF8F138E21EF424B4F9076A19D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
Manifest number: 163E
Signing time: Tue 28 Oct 2025 15:00:39 +0000
Manifest this update: Tue 28 Oct 2025 15:00:39 +0000
Manifest next update: Wed 29 Oct 2025 15:00:39 +0000
Files and hashes: 1: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl (hash: NSN7b2KRgbM3RdjV5s87MMGMjJqrRK2aZbBVkn/iT5Y=)
2: hML-Tag6b9qlpG18VlhLUkClkKg.roa (hash: LEX7BjdOFqa/vQo+qGyu7UsdS3xFcEis6fY7DeQDRek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2b:55:df:f8:f1:38:e2:1e:f4:24:b4:f9:07:6a:19:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Validity
Not Before: Oct 28 15:00:39 2025 GMT
Not After : Oct 29 15:00:39 2025 GMT
Subject: CN=ae503ebb05f46e73bdf2c85cd90561b09c17fd1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1e:39:e5:55:35:31:49:0d:88:f1:39:4b:bd:
9f:e7:0e:a6:59:b4:17:a9:d4:e9:5d:81:c7:18:d9:
58:0d:c6:11:17:c3:33:c0:28:c1:c6:bd:c0:3f:0e:
c7:d3:2c:b8:f0:20:b6:89:a3:2d:a1:e3:e8:f6:af:
e4:e2:95:20:cd:9f:a3:c3:89:fc:ec:45:18:4f:81:
9c:46:11:35:d0:74:38:9c:1e:ea:f1:bd:ed:f7:ae:
31:34:9a:99:54:48:6e:e7:10:9d:70:97:99:27:c8:
fb:f9:49:17:e3:b9:3e:3b:71:be:10:2e:d4:29:40:
07:9d:21:60:3e:a7:02:81:63:63:50:03:36:4f:c6:
57:9c:65:d8:af:74:ef:06:3c:a7:15:65:dc:00:f5:
b3:8e:8c:5c:89:c5:09:63:04:92:2a:79:a7:2c:04:
b7:8e:ed:06:61:a0:5d:d7:e8:21:5d:82:b2:c7:e8:
1e:a5:b3:21:33:0d:1e:19:6d:96:0b:50:90:62:78:
b0:3a:63:04:67:5e:98:88:f2:e9:9c:a8:95:17:08:
a0:6f:34:ac:74:93:67:39:42:90:75:8a:2b:1c:f0:
2d:f1:73:59:02:86:fb:19:5a:ea:91:ae:81:f3:3e:
d3:81:b3:9a:bd:f3:49:7c:f3:18:c8:f5:cc:6e:48:
91:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:50:3E:BB:05:F4:6E:73:BD:F2:C8:5C:D9:05:61:B0:9C:17:FD:1E
X509v3 Authority Key Identifier:
keyid:72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:56:91:aa:3d:23:b4:46:8c:0b:75:33:2d:b2:57:af:57:da:
1b:ea:46:5b:51:c3:c1:f5:e9:b4:35:d5:ea:74:2f:01:b1:e6:
78:c9:da:f3:4c:51:d5:b3:a9:fe:92:2b:72:8b:d3:d5:8c:8e:
41:de:c1:87:58:01:36:b7:e2:cd:5b:98:ff:e2:72:d8:bb:b6:
1b:a0:a3:6e:6d:d2:68:f3:f8:cd:b3:af:ae:1d:67:a8:a4:6e:
ad:04:48:80:4b:6c:96:f6:c0:e4:d7:6e:34:d2:2e:b7:86:b7:
cd:35:f3:46:4e:7c:c3:74:7e:5d:f1:d5:8e:04:2f:7f:9b:89:
34:5e:71:6d:96:c8:21:2b:fa:18:00:1b:38:04:81:c9:a6:29:
6f:88:83:3d:a0:4e:be:26:95:04:02:22:d4:02:ce:f3:07:5f:
35:10:9f:77:5b:71:38:f8:e5:86:bb:af:e3:ff:83:31:85:63:
49:50:89:68:1d:b3:15:94:10:c1:73:c8:69:de:a2:e3:79:11:
91:90:66:0d:79:8d:f4:22:42:20:af:4c:8f:96:39:05:40:c4:
b1:f0:78:18:1a:31:64:c4:4d:1d:be:dd:15:a6:34:76:02:75:
6c:9f:a8:c0:54:b8:d6:a9:e6:53:16:47:74:4d:e5:c8:41:ad:
88:a2:49:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZorVd/48TjiHvQktPkHahnWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNDgxZGQ5MGQxMDBiZDViYzIzYzA0YjEwYzBhODQzMWNj
OWE1YjUwHhcNMjUxMDI4MTUwMDM5WhcNMjUxMDI5MTUwMDM5WjAzMTEwLwYDVQQD
EyhhZTUwM2ViYjA1ZjQ2ZTczYmRmMmM4NWNkOTA1NjFiMDljMTdmZDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtx455VU1MUkNiPE5S72f5w6mWbQX
qdTpXYHHGNlYDcYRF8MzwCjBxr3APw7H0yy48CC2iaMtoePo9q/k4pUgzZ+jw4n8
7EUYT4GcRhE10HQ4nB7q8b3t964xNJqZVEhu5xCdcJeZJ8j7+UkX47k+O3G+EC7U
KUAHnSFgPqcCgWNjUAM2T8ZXnGXYr3TvBjynFWXcAPWzjoxcicUJYwSSKnmnLAS3
ju0GYaBd1+ghXYKyx+gepbMhMw0eGW2WC1CQYniwOmMEZ16YiPLpnKiVFwigbzSs
dJNnOUKQdYorHPAt8XNZAob7GVrqka6B8z7TgbOavfNJfPMYyPXMbkiRJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK5QPrsF9G5zvfLIXNkFYbCcF/0eMB8GA1UdIwQY
MBaAFHJIHdkNEAvVvCPASxDAqEMcyaW1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2tnZDJRMFFDOVc4SThCTEVNQ29ReHpKcGJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84MzAwZjgtOWVjZS00N2NkLTgzN2Qt
ZjE5OTBiMGM3MDVhLzEvY2tnZDJRMFFDOVc4SThCTEVNQ29ReHpKcGJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC84MzAwZjgtOWVjZS00N2NkLTgzN2QtZjE5OTBiMGM3MDVh
LzEvY2tnZDJRMFFDOVc4SThCTEVNQ29ReHpKcGJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIFaRqj0j
tEaMC3UzLbJXr1faG+pGW1HDwfXptDXV6nQvAbHmeMna80xR1bOp/pIrcovT1YyO
Qd7Bh1gBNrfizVuY/+Jy2Lu2G6Cjbm3SaPP4zbOvrh1nqKRurQRIgEtslvbA5Ndu
NNIut4a3zTXzRk58w3R+XfHVjgQvf5uJNF5xbZbIISv6GAAbOASByaYpb4iDPaBO
viaVBAIi1ALO8wdfNRCfd1txOPjlhruv4/+DMYVjSVCJaB2zFZQQwXPIad6i43kR
kZBmDXmN9CJCIK9Mj5Y5BUDEsfB4GBoxZMRNHb7dFaY0dgJ1bJ+owFS41qnmUxZH
dE3lyEGtiKJJ0Q==
-----END CERTIFICATE-----
Generated at Tue Oct 28 22:47:14 2025 by rpki-client