Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
File: CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft (raw, json)
Hash identifier: Ltg9sIStgMu7IpnY+3NDrlJi0sgnllErePckaoTA65A=
Subject key identifier: DB:13:38:58:07:BC:C8:0B:05:06:2B:BC:D8:7A:DB:14:6F:31:70:AC
Authority key identifier: 08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
Certificate issuer: /CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Certificate serial: 019747E7650B466D413F9453F3EA1D360338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 01:00:36 +0000
Manifest this update: Sat 07 Jun 2025 01:00:36 +0000
Manifest next update: Sun 08 Jun 2025 01:00:36 +0000
Files and hashes: 1: CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl (hash: UNVpRLosyz0vy9fO+BVGtELwB/3rmlOf6btA8Wuq4Bc=)
2: yW1cS9Mx29vTOamtTRsFT6bLIXw.roa (hash: PZBuxnii3Pq+stD6k3qQUstIcPbrvHDexZJKpw32ONQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:65:0b:46:6d:41:3f:94:53:f3:ea:1d:36:03:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Validity
Not Before: Jun 7 01:00:36 2025 GMT
Not After : Jun 8 01:00:36 2025 GMT
Subject: CN=db13385807bcc80b05062bbcd87adb146f3170ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:83:95:15:4b:2f:1d:a4:30:f1:e9:8e:05:88:
4b:bd:c2:52:b6:28:8b:93:f4:9f:ea:90:5e:b5:c6:
76:a4:f0:a5:33:a6:3b:27:82:a1:d6:f9:ea:8c:29:
50:67:15:d8:e1:db:d7:08:10:d2:f4:54:60:1e:df:
9f:91:2f:27:c6:3f:52:6f:a2:54:42:ef:29:42:9f:
92:fa:7b:ae:37:aa:01:7f:fd:3a:a0:66:41:d1:a9:
e2:80:6c:cd:fa:08:ca:9b:cd:5c:e3:e6:bf:4a:b4:
d0:c6:d3:9f:cf:ab:04:6d:4f:54:c6:cf:25:b2:be:
0c:f1:d5:9f:37:61:2e:4d:d2:0b:da:2b:67:fa:a4:
55:ff:e4:84:8a:88:dd:0f:d3:d9:fa:f4:24:23:72:
cf:94:7c:d6:7e:3f:c1:63:0b:5b:b5:d9:26:26:db:
28:97:d5:51:bc:70:9e:b9:0a:08:d3:4e:ab:0c:7a:
3d:f1:6a:39:0d:1c:a5:12:30:b2:04:7c:c9:d0:6d:
ab:6b:e5:7b:19:e8:78:62:53:c2:d8:f3:c9:04:5d:
c9:cf:4d:c6:99:c7:7c:16:94:e4:3b:3c:fb:6e:4a:
0e:73:a7:b4:52:1f:c2:70:39:5e:c3:5f:05:bc:ba:
4a:59:31:99:0c:6b:68:7e:27:35:fd:d8:84:26:57:
37:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:13:38:58:07:BC:C8:0B:05:06:2B:BC:D8:7A:DB:14:6F:31:70:AC
X509v3 Authority Key Identifier:
keyid:08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:ee:23:90:92:d6:73:96:8b:bc:3a:79:52:9c:1c:98:df:10:
41:f4:63:da:84:50:94:7c:7d:86:df:27:ca:bf:e8:b6:77:a3:
36:b1:5f:7d:6b:40:c9:cb:bb:87:d1:5f:53:da:dd:49:4b:31:
cd:d6:e6:e4:bf:e0:95:99:71:c4:f8:a9:6e:10:66:f0:f9:ac:
2b:4c:cf:c0:ef:66:7a:b2:0f:6c:14:af:0d:0f:78:da:b3:0e:
3a:3b:b3:f0:55:b7:10:5c:de:73:68:35:df:21:a5:8e:fb:3a:
90:6c:38:44:74:4b:b3:12:06:a5:9f:3c:10:90:69:67:09:6a:
d0:ae:77:52:9c:ac:78:41:b0:bf:4b:41:0b:84:99:8f:b0:0c:
09:9c:26:8e:7f:bd:57:81:d7:91:96:74:60:ac:97:9f:41:71:
fb:bb:72:fd:f1:bc:a1:8e:d1:e8:34:f4:74:2d:4a:f7:3d:96:
53:80:e8:52:81:26:76:f5:d7:63:57:77:44:e4:15:c1:74:e6:
43:d2:bd:3f:98:01:4d:21:e7:2f:c0:90:40:1f:6c:0e:70:a9:
e4:05:18:5c:eb:f5:1c:bb:fb:b1:af:ba:be:af:e3:d9:50:7c:
46:24:2a:ec:2d:43:58:68:66:2a:3a:5a:ff:86:78:92:87:e3:
67:28:68:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdH52ULRm1BP5RT8+odNgM4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YTVjM2FiYTQyMWI3OGE3ZDVkMDliNzViNGNlM2JlNTI3
M2NhYWMwHhcNMjUwNjA3MDEwMDM2WhcNMjUwNjA4MDEwMDM2WjAzMTEwLwYDVQQD
EyhkYjEzMzg1ODA3YmNjODBiMDUwNjJiYmNkODdhZGIxNDZmMzE3MGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4YOVFUsvHaQw8emOBYhLvcJStiiL
k/Sf6pBetcZ2pPClM6Y7J4Kh1vnqjClQZxXY4dvXCBDS9FRgHt+fkS8nxj9Sb6JU
Qu8pQp+S+nuuN6oBf/06oGZB0anigGzN+gjKm81c4+a/SrTQxtOfz6sEbU9Uxs8l
sr4M8dWfN2EuTdIL2itn+qRV/+SEiojdD9PZ+vQkI3LPlHzWfj/BYwtbtdkmJtso
l9VRvHCeuQoI006rDHo98Wo5DRylEjCyBHzJ0G2ra+V7Geh4YlPC2PPJBF3Jz03G
mcd8FpTkOzz7bkoOc6e0Uh/CcDlew18FvLpKWTGZDGtofic1/diEJlc3SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNsTOFgHvMgLBQYrvNh62xRvMXCsMB8GA1UdIwQY
MBaAFAilw6ukIbeKfV0Jt1tM475Sc8qsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQt
MzY0ZmFlN2M3MmM0LzEvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQtMzY0ZmFlN2M3MmM0
LzEvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZe4jkJLW
c5aLvDp5UpwcmN8QQfRj2oRQlHx9ht8nyr/otnejNrFffWtAycu7h9FfU9rdSUsx
zdbm5L/glZlxxPipbhBm8PmsK0zPwO9merIPbBSvDQ942rMOOjuz8FW3EFzec2g1
3yGljvs6kGw4RHRLsxIGpZ88EJBpZwlq0K53UpyseEGwv0tBC4SZj7AMCZwmjn+9
V4HXkZZ0YKyXn0Fx+7ty/fG8oY7R6DT0dC1K9z2WU4DoUoEmdvXXY1d3ROQVwXTm
Q9K9P5gBTSHnL8CQQB9sDnCp5AUYXOv1HLv7sa+6vq/j2VB8RiQq7C1DWGhmKjpa
/4Z4kofjZyhohg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:30:21 2025 by rpki-client