Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: HynBX7/6grnUffeEKkrz1Ho5TNYF9QTDz8iqGSkC6sM=
Subject key identifier: A1:BB:76:84:08:0B:17:1E:6A:70:28:3A:D3:1E:20:5F:FB:30:D1:54
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 0197C9F18BBF35B787C32D9590686A4D3A29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 15C0
Signing time: Wed 02 Jul 2025 07:02:19 +0000
Manifest this update: Wed 02 Jul 2025 07:02:19 +0000
Manifest next update: Thu 03 Jul 2025 07:02:19 +0000
Files and hashes: 1: C324i-QiLStBQtj8SlSM_WsRhgA.roa (hash: 57MQFbrSaZ/38tAVb1G6ejMsXoqYvy5V/+YD5WOhbAY=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: QgMsagdhV/Be0MwV/Amdktt2s+rq54g4JVmA+ZiGKt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f1:8b:bf:35:b7:87:c3:2d:95:90:68:6a:4d:3a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: Jul 2 07:02:19 2025 GMT
Not After : Jul 3 07:02:19 2025 GMT
Subject: CN=a1bb7684080b171e6a70283ad31e205ffb30d154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b2:78:12:7f:d2:8a:fe:ec:4d:74:79:4d:fc:
83:62:34:86:22:73:27:c5:cc:03:11:e8:d1:5e:10:
94:11:ae:89:b0:b6:c8:ec:f5:32:ca:ab:d1:82:58:
3b:9e:7d:b5:67:72:e5:cc:a2:ac:45:f4:9d:ff:66:
47:9f:5d:98:fb:62:ac:56:cd:02:46:9a:24:bb:29:
a1:18:61:5c:e9:12:ab:ee:46:b1:a6:5c:d2:f9:a8:
ae:46:f0:e6:41:74:83:fc:96:37:95:89:27:4f:3f:
18:78:85:8d:68:12:19:5c:d8:9d:55:57:74:71:9c:
02:3a:16:89:4a:97:fd:dd:c0:05:fb:e6:49:3b:8a:
3a:a2:77:6e:e2:5e:1b:62:9e:41:f9:d3:db:e5:d4:
39:d6:57:57:3e:d3:7b:6a:4d:de:41:e9:24:b2:b1:
e0:f3:cc:91:08:a5:2b:3e:4f:80:0d:ce:ec:d3:f6:
50:55:df:6e:51:b4:b3:8f:ab:f6:72:d5:62:d5:f4:
35:ba:ea:7d:cb:0c:3a:be:73:4f:8e:37:0f:5f:7d:
4c:0e:01:ad:6a:f0:8b:a8:84:45:ec:37:65:0a:74:
41:b1:23:00:f1:32:a9:d1:26:96:b5:49:f1:f6:75:
75:a4:86:02:8e:4c:b0:77:3a:b3:1b:53:d5:01:44:
f8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:BB:76:84:08:0B:17:1E:6A:70:28:3A:D3:1E:20:5F:FB:30:D1:54
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:dc:7f:55:34:c3:31:21:41:22:83:3b:52:74:ad:2f:84:59:
6b:30:d1:4e:9e:3c:76:4d:63:bb:30:79:48:20:dc:3b:13:d9:
c7:8e:e0:4b:27:68:1f:f1:64:59:2f:f4:0f:59:79:b3:0f:cb:
17:0a:d6:12:07:51:8d:00:0c:43:87:6b:8d:bd:84:b8:ea:1b:
08:46:3c:c5:20:9a:26:59:5c:3c:5d:f3:7c:70:c6:ad:cd:48:
c6:95:73:76:e2:10:3b:93:74:87:34:0c:23:46:c3:18:c7:b3:
e0:d2:e7:b0:60:7e:0c:8c:97:4a:82:87:f8:ed:a6:c8:a8:0d:
c4:f1:64:87:d1:2a:c5:6f:d4:14:d1:7c:a1:8f:bc:24:38:7e:
61:0c:58:3d:9a:01:52:12:5b:b3:0f:86:33:4f:1c:c7:8c:2d:
94:58:1e:ab:ef:60:18:af:42:3a:0a:61:58:86:1a:56:89:81:
ad:be:82:a6:af:53:65:5e:e0:07:fd:0d:aa:6e:56:0e:fc:29:
6a:74:14:f7:5f:86:ee:b3:8a:34:41:93:30:18:92:65:94:4f:
d5:da:41:fc:8c:80:62:bb:61:ec:7d:39:bb:2a:d4:b2:a4:4d:
f3:b8:d2:80:4d:c9:15:ba:2c:54:e7:b4:15:6a:ee:2d:b0:fe:
73:2e:cd:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:13:56 2025 by rpki-client