Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: DE1IuqRMn4ixZxljDAtt3Fbbcw1c6Q5AHjVTub1pwjE=
Subject key identifier: 53:2D:9F:8F:6E:4B:E7:56:96:90:18:8D:30:20:9D:FF:C3:03:95:17
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 019A71B7CBE787C90C250F06271EC5C87A48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 07:01:01 +0000
Manifest this update: Tue 11 Nov 2025 07:01:01 +0000
Manifest next update: Wed 12 Nov 2025 07:01:01 +0000
Files and hashes: 1: C324i-QiLStBQtj8SlSM_WsRhgA.roa (hash: 57MQFbrSaZ/38tAVb1G6ejMsXoqYvy5V/+YD5WOhbAY=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: Cpe8H0jkJR/ZCZ8xAG5gjNGTJ4zl9nyKZUspSkX4A00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:cb:e7:87:c9:0c:25:0f:06:27:1e:c5:c8:7a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: Nov 11 07:01:01 2025 GMT
Not After : Nov 12 07:01:01 2025 GMT
Subject: CN=532d9f8f6e4be7569690188d30209dffc3039517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:86:c6:41:d9:b2:5f:fc:54:de:ee:a4:b2:7c:
35:09:0e:c4:5f:31:ba:15:e9:63:ae:50:a8:58:29:
42:13:82:07:1d:a3:9a:6d:8c:2d:5f:1d:37:ec:e5:
c4:99:e7:58:ea:76:1a:10:77:a2:86:98:25:16:8b:
30:84:28:b8:0e:41:82:81:dc:85:f2:ca:c1:33:73:
c6:9e:d8:5e:82:cd:9d:40:85:6e:a4:32:be:9f:f9:
70:d7:01:e5:b3:45:74:6d:e6:40:c6:ed:ac:00:9a:
23:db:b5:36:d4:57:82:e8:f2:12:11:f2:e8:88:28:
30:1a:89:b0:92:ac:84:13:22:d8:d4:21:fb:9b:e4:
c2:ea:56:3b:78:74:3e:87:20:10:81:96:79:48:57:
69:40:3a:fa:44:08:26:0b:9d:31:86:0d:46:78:c4:
93:89:e5:3d:b2:2a:72:ac:f2:10:c4:0b:f6:5a:cc:
89:58:8b:3b:c9:61:87:8d:89:b1:33:db:53:2e:68:
cd:1e:88:bb:8b:7f:75:66:20:5d:7c:30:08:64:f8:
cc:cf:0f:72:96:50:f3:8c:c3:49:c6:32:87:74:b8:
2a:0c:a6:47:9b:c5:8f:e6:d2:5f:2c:32:b5:cd:90:
ee:9a:0f:e5:a4:2e:b0:dd:34:65:dc:87:51:8a:d1:
13:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:2D:9F:8F:6E:4B:E7:56:96:90:18:8D:30:20:9D:FF:C3:03:95:17
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:04:32:72:f7:1e:04:87:f0:22:fb:10:4a:9b:44:48:d1:75:
65:5e:f8:3e:0f:f0:f5:8e:30:03:f2:29:db:23:38:4a:21:c1:
e8:ea:eb:9c:ef:27:2d:98:23:0f:8b:65:00:7b:df:e0:c8:49:
e1:7d:bf:86:62:4b:95:55:c5:76:00:94:cd:0d:7b:38:48:59:
9d:da:f5:b2:80:a0:e9:02:8c:86:c2:ab:92:4e:33:97:db:e7:
2c:b1:b7:92:25:0c:df:c9:14:78:f0:04:ad:b7:62:92:44:e4:
e4:fb:5f:ab:58:75:c4:50:55:43:42:ae:89:da:13:2c:a1:86:
b9:69:2e:d2:07:ce:8f:16:14:d6:fa:46:c3:46:fe:6e:84:8d:
db:3a:cf:fd:79:7e:7e:a7:c2:0e:c7:77:1b:58:b3:11:13:a3:
5a:4a:3f:24:44:96:b3:86:33:0d:96:a3:30:7d:05:30:35:c2:
78:c8:a4:a1:63:61:8d:3f:b3:71:d3:01:b2:3a:ec:fd:d0:7c:
75:86:1a:5e:58:f7:a7:5f:bb:63:29:89:fa:b3:27:e0:5a:b5:
f2:46:44:67:f6:77:b3:67:ca:26:4a:79:80:95:79:90:35:d7:
32:eb:e1:3a:37:be:3a:03:1e:2d:eb:bd:46:57:f8:cb:eb:cb:
7d:c1:88:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt8vnh8kMJQ8GJx7FyHpIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNDJhMTM3MTVmYzU1NzhjZGMwNWFhYWE2OGM2YTQxM2Nk
YmM5ZjUwHhcNMjUxMTExMDcwMTAxWhcNMjUxMTEyMDcwMTAxWjAzMTEwLwYDVQQD
Eyg1MzJkOWY4ZjZlNGJlNzU2OTY5MDE4OGQzMDIwOWRmZmMzMDM5NTE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YbGQdmyX/xU3u6ksnw1CQ7EXzG6
FeljrlCoWClCE4IHHaOabYwtXx037OXEmedY6nYaEHeihpglFoswhCi4DkGCgdyF
8srBM3PGnthegs2dQIVupDK+n/lw1wHls0V0beZAxu2sAJoj27U21FeC6PISEfLo
iCgwGomwkqyEEyLY1CH7m+TC6lY7eHQ+hyAQgZZ5SFdpQDr6RAgmC50xhg1GeMST
ieU9sipyrPIQxAv2WsyJWIs7yWGHjYmxM9tTLmjNHoi7i391ZiBdfDAIZPjMzw9y
llDzjMNJxjKHdLgqDKZHm8WP5tJfLDK1zZDumg/lpC6w3TRl3IdRitET3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFMtn49uS+dWlpAYjTAgnf/DA5UXMB8GA1UdIwQY
MBaAFHJCoTcV/FV4zcBaqqaMakE828n1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2tLaE54WDhWWGpOd0ZxcXBveHFRVHpieWZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi85MGFhMWUtMDA5OC00ZmRhLTk4Mjkt
YTE1Y2NmNWI0MTNlLzEvY2tLaE54WDhWWGpOd0ZxcXBveHFRVHpieWZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi85MGFhMWUtMDA5OC00ZmRhLTk4MjktYTE1Y2NmNWI0MTNl
LzEvY2tLaE54WDhWWGpOd0ZxcXBveHFRVHpieWZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdQQycvce
BIfwIvsQSptESNF1ZV74Pg/w9Y4wA/Ip2yM4SiHB6OrrnO8nLZgjD4tlAHvf4MhJ
4X2/hmJLlVXFdgCUzQ17OEhZndr1soCg6QKMhsKrkk4zl9vnLLG3kiUM38kUePAE
rbdikkTk5Ptfq1h1xFBVQ0KuidoTLKGGuWku0gfOjxYU1vpGw0b+boSN2zrP/Xl+
fqfCDsd3G1izEROjWko/JESWs4YzDZajMH0FMDXCeMikoWNhjT+zcdMBsjrs/dB8
dYYaXlj3p1+7YymJ+rMn4Fq18kZEZ/Z3s2fKJkp5gJV5kDXXMuvhOje+OgMeLeu9
Rlf4y+vLfcGIMw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:46 2025 by rpki-client