Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
File: CkGloqGDOWKcwTA-beyLtgXdymU.mft (raw, json)
Hash identifier: k2KKLl0xd4leSI5TGzHFV7w0j47F63BHvWyDzHZtfgM=
Subject key identifier: EB:CE:E2:FC:24:53:9B:05:5E:8F:BE:64:B9:8A:E7:7D:25:FA:5C:F7
Authority key identifier: 0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
Certificate issuer: /CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Certificate serial: 019A112884F57DEC620584333AD8E68B6662
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
Manifest number: 16F2
Signing time: Thu 23 Oct 2025 13:00:59 +0000
Manifest this update: Thu 23 Oct 2025 13:00:59 +0000
Manifest next update: Fri 24 Oct 2025 13:00:59 +0000
Files and hashes: 1: CkGloqGDOWKcwTA-beyLtgXdymU.crl (hash: 6WGrIkhZfHw0ezzHIqXaFvfwGAw3LU6/zEYOxKMkDiw=)
2: hER6wRwe_hUZJ0u9RImVrBTy1as.roa (hash: iyJ20Ahzbr3qZY7vMtDGjDttWYIPJenArxH2H2QEoYE=)
3: qKN97IS00Dw-fIUwd184Vx9Y1MM.roa (hash: InDA9nhPg1Xj964zVuEzcl5j+yZyNDumD+IkyAj4yPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 13:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:11:28:84:f5:7d:ec:62:05:84:33:3a:d8:e6:8b:66:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Validity
Not Before: Oct 23 13:00:59 2025 GMT
Not After : Oct 24 13:00:59 2025 GMT
Subject: CN=ebcee2fc24539b055e8fbe64b98ae77d25fa5cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:15:cf:69:c4:35:17:aa:84:87:f0:88:d4:68:
a9:04:aa:d0:4b:46:2a:e2:00:71:48:f7:88:9c:19:
46:49:4c:e9:4b:2f:2a:35:de:96:57:e7:b4:ee:4d:
3c:d8:3d:e1:61:02:2d:70:a3:dd:54:96:e5:a2:f1:
db:f0:2c:7b:c1:01:48:91:d2:03:16:e9:44:f8:f6:
4d:cc:c3:7e:99:f4:f8:29:09:5f:94:94:ce:34:b6:
a1:e5:52:34:cc:06:ea:1f:54:65:09:02:58:d5:db:
e0:24:47:84:48:28:56:9b:dd:cd:05:f8:43:50:63:
11:0e:5e:7e:ad:5a:5d:69:12:6c:96:38:b3:51:41:
a7:50:d1:47:a3:de:3f:22:79:0d:c2:42:87:af:91:
c9:7e:0d:be:bb:10:aa:da:71:71:f7:40:1d:06:10:
23:e7:ca:56:1a:27:d3:42:27:da:9b:ea:5e:cc:b2:
61:19:49:21:ad:18:02:0c:75:99:23:e4:f4:3d:48:
1b:94:a1:7a:9f:53:6c:35:29:4b:60:e4:68:c1:0c:
9a:67:28:e2:1b:7f:86:30:c2:3a:b4:65:53:ae:d8:
04:58:1e:83:90:ff:a2:99:3a:4a:7a:93:9b:51:d7:
69:24:14:94:a6:d5:12:b3:69:9c:5b:d0:cf:46:95:
89:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CE:E2:FC:24:53:9B:05:5E:8F:BE:64:B9:8A:E7:7D:25:FA:5C:F7
X509v3 Authority Key Identifier:
keyid:0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:eb:8d:7e:4d:f1:81:e3:6d:90:9e:77:28:24:ca:82:73:b6:
f2:53:bf:4c:52:3d:50:56:74:62:da:64:96:eb:bd:ba:51:12:
25:15:94:2d:5f:35:32:b4:28:eb:bd:37:52:59:4c:91:e9:14:
e7:bb:42:d2:1c:de:20:1d:4a:fa:a5:52:83:59:87:32:cf:01:
52:58:ec:85:de:e6:da:47:a2:85:8c:32:8a:68:0a:44:a8:53:
ab:4d:a2:12:c5:56:47:48:1e:db:f7:5d:42:39:d7:32:01:bb:
96:af:f3:3d:a0:1f:d7:48:7c:aa:3a:10:20:2a:f7:58:37:ce:
32:c2:a0:41:25:7e:1b:8e:6e:9a:e3:3b:62:c0:68:56:3a:29:
a4:e6:e3:5d:f8:ed:59:dc:e1:91:b5:de:7f:53:66:29:6b:40:
d0:51:a2:2e:1d:b0:2c:66:0e:dd:44:70:38:28:e4:40:ec:06:
3d:a2:bc:46:fe:4b:c6:a5:1b:3b:04:12:cf:6e:40:7f:ef:ba:
e5:f9:80:48:3b:d6:1f:75:0c:9b:13:ee:fd:dc:62:ba:28:6f:
07:e1:48:ba:e8:d7:a4:a8:7e:f3:c6:25:b4:fa:36:0a:f7:23:
f0:fa:ba:25:b9:03:21:70:93:ee:fe:06:8c:3d:fb:de:68:a0:
f3:0c:5e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 22:31:57 2025 by rpki-client