Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
File: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft (raw, json)
Hash identifier: 3GQdT3KTtH5DX3nwnmlyOzQupvbqRcRGyV2tf1mlCxY=
Subject key identifier: 69:7D:C7:B8:37:12:E9:C0:0F:F0:F0:89:42:1A:98:45:AD:BD:6A:58
Authority key identifier: 72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
Certificate issuer: /CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Certificate serial: 01974F69FCB729280EB186A170190A81DC0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
Manifest number: 14C3
Signing time: Sun 08 Jun 2025 12:00:35 +0000
Manifest this update: Sun 08 Jun 2025 12:00:35 +0000
Manifest next update: Mon 09 Jun 2025 12:00:35 +0000
Files and hashes: 1: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl (hash: tLOOvs8r5q65Ve/GxS8g1wHE0d+1PtgBSZcZLhSHU4g=)
2: hML-Tag6b9qlpG18VlhLUkClkKg.roa (hash: LEX7BjdOFqa/vQo+qGyu7UsdS3xFcEis6fY7DeQDRek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:69:fc:b7:29:28:0e:b1:86:a1:70:19:0a:81:dc:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Validity
Not Before: Jun 8 12:00:35 2025 GMT
Not After : Jun 9 12:00:35 2025 GMT
Subject: CN=697dc7b83712e9c00ff0f089421a9845adbd6a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:91:65:a9:76:14:b2:16:42:7a:a4:c4:45:ef:
ec:4c:83:31:4e:94:06:8d:83:ae:1d:49:57:97:de:
2b:8f:03:ee:b6:4c:17:e9:39:33:37:e5:f8:6f:84:
50:38:42:06:79:34:7b:50:19:cd:d1:8b:99:13:e6:
cd:a9:1e:95:95:59:c2:74:5c:5b:c6:14:bf:18:cf:
21:41:cf:01:86:94:bd:74:ca:e7:be:c4:dc:04:eb:
79:eb:31:06:34:d7:98:c2:8a:29:91:96:04:14:a4:
01:f7:53:1c:51:d1:78:22:a5:4a:d5:d9:1b:82:9e:
19:ea:88:5f:a3:0e:b3:0d:59:07:fb:7f:33:62:3e:
22:74:ee:71:2e:d7:8c:a7:04:32:94:a4:55:b7:19:
b6:d3:74:49:3c:bf:fd:ea:6a:ea:60:bb:39:be:eb:
cd:6b:0b:42:7c:6a:fd:e3:2c:14:f6:ce:21:ed:43:
c5:7d:ef:1c:95:0e:91:d0:e4:d5:1e:43:27:2e:05:
a4:b3:8d:66:7d:93:c5:51:7c:81:1f:e4:6a:5c:ff:
49:f6:bd:39:99:41:e4:9f:02:56:10:c4:40:7a:7a:
f2:58:cf:a9:fb:c2:06:da:e8:4a:be:b9:4e:82:f5:
20:7d:2d:5d:6e:bc:1f:94:da:d2:46:1e:c0:28:5f:
2e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:7D:C7:B8:37:12:E9:C0:0F:F0:F0:89:42:1A:98:45:AD:BD:6A:58
X509v3 Authority Key Identifier:
keyid:72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:f9:bc:c2:c2:97:83:a9:93:72:65:14:d2:7a:fa:27:3b:7c:
69:5d:d5:b2:3f:ad:1a:9b:f5:bb:33:f4:fc:ff:85:02:79:fe:
64:e1:a4:b8:af:48:e7:37:d6:c3:64:69:2a:e2:26:0a:6f:bc:
04:53:43:ac:e9:eb:90:0d:88:fb:8a:b7:8e:55:cf:cf:52:f9:
bb:ac:5e:38:49:23:e1:13:f1:57:cc:28:f8:77:f8:e1:01:56:
f1:73:9c:80:4a:f8:72:0f:4b:29:5e:31:17:9a:c6:87:37:10:
91:c8:a9:61:61:03:c9:33:e7:2b:60:8b:08:c4:ba:00:71:68:
f7:4c:1c:03:bf:97:35:75:76:5d:14:16:30:8b:f2:7e:2d:a8:
bc:49:c6:f0:d6:7d:81:76:5c:c8:f0:03:e5:da:07:dd:d3:cf:
53:1f:70:e3:a7:e7:34:f7:d4:64:69:c5:2b:43:22:25:a1:cd:
f4:ec:b1:38:5d:d1:5f:27:94:3f:1a:cc:e8:de:75:c8:57:20:
eb:13:c3:78:b9:27:b3:37:36:f0:8f:b6:76:8f:0f:34:26:47:
57:ba:a9:fd:b0:18:c9:e1:d6:78:0e:32:4d:a4:22:39:bb:64:
61:35:44:77:45:29:96:d6:5d:51:5a:da:ed:c8:52:22:df:95:
23:67:5b:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 21:35:19 2025 by rpki-client