Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: jro1OLZfVPsNu5ymRQ9q6BdulUaGozCZlr0sH9Gmy/U=
Subject key identifier: A6:68:BA:5B:4C:30:AE:25:BE:F5:D6:23:89:EE:E0:80:21:B6:EB:E4
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 019921B24A1825D3B49823708E4800E51ECC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 01:02:36 +0000
Manifest this update: Sun 07 Sep 2025 01:02:36 +0000
Manifest next update: Mon 08 Sep 2025 01:02:36 +0000
Files and hashes: 1: C324i-QiLStBQtj8SlSM_WsRhgA.roa (hash: 57MQFbrSaZ/38tAVb1G6ejMsXoqYvy5V/+YD5WOhbAY=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: NqA+3eJIxBZ20Z7SRVURbeEawMj1p9qSwqudUFxNwT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:4a:18:25:d3:b4:98:23:70:8e:48:00:e5:1e:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: Sep 7 01:02:36 2025 GMT
Not After : Sep 8 01:02:36 2025 GMT
Subject: CN=a668ba5b4c30ae25bef5d62389eee08021b6ebe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e6:38:1e:65:f9:ce:65:b4:39:51:8c:72:f9:
8d:74:ef:3d:db:9e:0c:fb:f0:d3:d3:73:aa:4f:48:
57:ba:8e:ca:d6:17:63:ab:60:09:fb:0f:59:63:78:
13:23:14:26:44:78:e5:c4:af:6a:3d:39:5e:be:ee:
2c:44:59:5a:d2:22:30:b7:fc:40:30:84:76:2b:bd:
e6:de:63:52:cf:d9:16:0e:bd:38:34:08:ab:73:84:
21:5d:ef:ba:6f:b4:cd:c3:2a:a1:96:69:88:05:79:
2b:b0:b8:c1:1f:87:5e:7a:8a:b1:db:e5:18:19:c0:
0c:bd:7f:03:20:54:82:19:f5:70:dc:b4:ce:ad:f9:
c9:a0:4a:c9:ff:60:3b:2f:2a:f9:d5:e9:ee:35:e8:
b5:65:9a:b7:41:61:21:40:ad:3a:48:3b:49:53:ab:
73:4c:5e:b8:fa:cb:35:20:e1:23:b8:f1:ae:53:84:
78:66:7f:48:44:d8:58:58:3e:aa:e4:af:13:f3:e4:
9d:7c:e1:0e:f3:60:8c:22:0d:3d:b7:36:a3:44:10:
14:06:0c:85:bb:06:da:a8:b4:23:e9:9a:43:dc:df:
11:13:a1:42:f9:2d:51:7c:7a:71:ba:fa:b0:c1:d3:
0f:46:12:48:a5:aa:65:d1:1d:50:51:c0:6d:8d:8d:
20:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:68:BA:5B:4C:30:AE:25:BE:F5:D6:23:89:EE:E0:80:21:B6:EB:E4
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:50:cc:73:ab:06:bf:83:f4:fc:ae:43:c1:cc:5c:0f:fa:0a:
57:81:39:56:9f:4d:26:60:b4:48:e7:a7:f6:eb:16:ac:87:ea:
e9:70:c2:2a:a3:4b:f7:c3:00:18:62:62:a7:bf:74:e8:69:bb:
f7:60:e9:87:f7:65:25:c5:91:82:55:27:0e:a5:6f:c8:bf:44:
a8:0d:2c:06:b2:87:d0:76:46:9a:86:d7:83:4a:05:98:8d:dc:
c9:bd:87:21:b5:10:28:33:46:7a:8c:06:4a:0a:e7:bf:a5:10:
e8:c4:e6:1f:64:46:9c:23:eb:33:cb:23:bf:62:b6:a1:23:40:
88:40:9c:2c:f5:29:ca:6f:0f:05:e7:19:ff:c5:fa:cb:76:cb:
31:77:6e:15:19:5f:16:a3:99:f3:5a:d7:cf:ac:0d:3b:1d:c1:
79:ff:49:84:1d:d2:a5:94:ef:f6:05:0e:70:56:b1:8a:19:2f:
52:ce:1a:ee:9d:35:a0:26:fe:f7:d5:76:a6:52:7e:4e:58:43:
c6:ab:a5:33:23:5f:b5:6f:cb:57:d7:58:33:4e:48:de:52:77:
d3:d6:2f:b3:aa:75:bc:1a:a6:47:4c:e0:98:ee:17:69:45:8f:
51:f7:d5:40:b8:f0:ed:52:5e:7f:5a:88:fb:f0:97:4a:11:89:
bc:d1:45:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhskoYJdO0mCNwjkgA5R7MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNDJhMTM3MTVmYzU1NzhjZGMwNWFhYWE2OGM2YTQxM2Nk
YmM5ZjUwHhcNMjUwOTA3MDEwMjM2WhcNMjUwOTA4MDEwMjM2WjAzMTEwLwYDVQQD
EyhhNjY4YmE1YjRjMzBhZTI1YmVmNWQ2MjM4OWVlZTA4MDIxYjZlYmU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxeY4HmX5zmW0OVGMcvmNdO89254M
+/DT03OqT0hXuo7K1hdjq2AJ+w9ZY3gTIxQmRHjlxK9qPTlevu4sRFla0iIwt/xA
MIR2K73m3mNSz9kWDr04NAirc4QhXe+6b7TNwyqhlmmIBXkrsLjBH4deeoqx2+UY
GcAMvX8DIFSCGfVw3LTOrfnJoErJ/2A7Lyr51enuNei1ZZq3QWEhQK06SDtJU6tz
TF64+ss1IOEjuPGuU4R4Zn9IRNhYWD6q5K8T8+SdfOEO82CMIg09tzajRBAUBgyF
uwbaqLQj6ZpD3N8RE6FC+S1RfHpxuvqwwdMPRhJIpapl0R1QUcBtjY0gRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKZoultMMK4lvvXWI4nu4IAhtuvkMB8GA1UdIwQY
MBaAFHJCoTcV/FV4zcBaqqaMakE828n1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2tLaE54WDhWWGpOd0ZxcXBveHFRVHpieWZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi85MGFhMWUtMDA5OC00ZmRhLTk4Mjkt
YTE1Y2NmNWI0MTNlLzEvY2tLaE54WDhWWGpOd0ZxcXBveHFRVHpieWZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi85MGFhMWUtMDA5OC00ZmRhLTk4MjktYTE1Y2NmNWI0MTNl
LzEvY2tLaE54WDhWWGpOd0ZxcXBveHFRVHpieWZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaFDMc6sG
v4P0/K5DwcxcD/oKV4E5Vp9NJmC0SOen9usWrIfq6XDCKqNL98MAGGJip7906Gm7
92Dph/dlJcWRglUnDqVvyL9EqA0sBrKH0HZGmobXg0oFmI3cyb2HIbUQKDNGeowG
Sgrnv6UQ6MTmH2RGnCPrM8sjv2K2oSNAiECcLPUpym8PBecZ/8X6y3bLMXduFRlf
FqOZ81rXz6wNOx3Bef9JhB3SpZTv9gUOcFaxihkvUs4a7p01oCb+99V2plJ+TlhD
xqulMyNftW/LV9dYM05I3lJ309Yvs6p1vBqmR0zgmO4XaUWPUffVQLjw7VJef1qI
+/CXShGJvNFFBQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:15 2025 by rpki-client