Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
File: CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft (raw, json)
Hash identifier: HpiPnWaZaMlw1Ym94KS+H9+OK9KKFnb2ZTTl1VzI+4w=
Subject key identifier: 37:82:F4:8A:CF:E4:D0:83:4B:1E:68:2D:E2:89:2D:71:BD:81:FF:DB
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 0199FC21863E787ABAC8028668CA47B479E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
Manifest number: 1349
Signing time: Sun 19 Oct 2025 11:01:19 +0000
Manifest this update: Sun 19 Oct 2025 11:01:19 +0000
Manifest next update: Mon 20 Oct 2025 11:01:19 +0000
Files and hashes: 1: CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl (hash: /YawufEXo8pG8Qfs+zyN8XOzKxZQwi+lPxr6EwEBc/U=)
2: DQ47vKDjcl-2XGhWvGpEltnbLx0.roa (hash: xO7ywYo6rKZE+1UGlrRMauCBtFM1TiMUXrJWYhc9zkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:86:3e:78:7a:ba:c8:02:86:68:ca:47:b4:79:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: Oct 19 11:01:19 2025 GMT
Not After : Oct 20 11:01:19 2025 GMT
Subject: CN=3782f48acfe4d0834b1e682de2892d71bd81ffdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f8:12:8a:dd:d9:13:96:08:cc:ac:e7:c6:28:
95:04:bc:b4:29:3d:31:57:db:c5:d3:3f:5c:dd:c0:
95:7a:dd:ad:f7:88:d0:7a:05:26:04:22:1a:aa:45:
73:53:fd:61:b7:3c:d9:75:5b:ce:23:6e:36:3c:eb:
b2:a5:58:75:ce:25:7b:21:f8:15:2b:78:52:57:1e:
06:c3:ca:e3:58:80:84:ec:5e:90:c0:3e:03:ae:26:
05:e2:57:3a:ab:1e:82:eb:ff:09:ff:e5:f8:63:1e:
9f:19:43:c7:5d:44:72:54:75:42:f0:99:4d:50:5e:
f5:c4:e0:68:de:98:e3:6c:f2:b8:7f:ab:cd:ac:55:
31:9d:2e:28:dd:ff:91:f3:13:83:1d:cb:2d:b2:44:
69:e2:09:00:1b:8f:20:fe:98:92:c4:37:94:ca:da:
4c:55:d2:e9:f6:3d:9c:d4:12:11:44:f5:33:81:fd:
e7:1d:2f:bc:f7:13:18:52:fe:be:1a:5f:73:4f:4a:
b2:5a:27:20:3c:74:50:a0:af:fe:9c:29:c7:6b:16:
fd:14:cc:fc:5c:9e:86:67:98:76:b8:60:0d:4a:13:
03:f1:e9:ce:c0:14:bb:cb:e1:cf:f6:1b:76:fa:95:
1b:8e:65:cc:f9:9f:f3:6c:54:a6:8a:96:1c:17:36:
47:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:82:F4:8A:CF:E4:D0:83:4B:1E:68:2D:E2:89:2D:71:BD:81:FF:DB
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:01:58:c6:2a:f2:99:82:6a:84:31:32:10:86:2f:85:26:fa:
ca:57:21:a4:2f:8c:a5:47:90:09:46:d1:71:02:d3:4e:9a:b0:
f5:8e:5b:e4:1c:58:48:3b:48:9d:3a:8d:7f:c4:38:cb:f9:9f:
51:3a:56:2b:df:1a:05:bc:3e:18:64:87:60:cb:67:7f:5c:b4:
df:ce:c4:92:f7:48:0b:57:b4:a4:5e:83:f0:19:92:a2:0c:a0:
bb:cc:1b:d8:a2:ed:91:c2:05:d7:91:3d:ae:20:bb:5c:e1:e0:
bd:fc:43:bd:a4:6f:e6:33:f6:8a:86:b9:f7:6b:ed:09:18:e7:
e6:c9:83:b3:67:34:ba:06:8d:28:6a:29:48:7b:d4:3f:6f:69:
42:73:3a:97:5c:89:f0:9a:04:e4:43:9e:91:bb:ea:26:71:0d:
28:04:dc:24:cf:3b:8b:96:c3:d2:8c:85:57:93:52:41:5f:68:
21:dd:fe:7a:7d:a4:04:92:0f:60:aa:52:f0:d1:72:bc:74:87:
b3:ff:3c:84:9c:dd:6f:07:d4:1d:27:6a:bb:8e:ea:37:82:0b:
57:be:9d:25:ee:8c:c1:7e:02:d9:eb:0d:d2:92:5d:1d:c3:ce:
16:af:c7:8e:e6:b3:2b:fd:05:0f:c1:ac:18:2f:6f:aa:c4:57:
1a:74:04:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:25 2025 by rpki-client