Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
File: CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft (raw, json)
Hash identifier: 1kBv+PpaMXKFArUaY3rnfKREtbQ9YWMpaJIKJx7lRNM=
Subject key identifier: 02:4C:2E:7D:3B:DD:A5:41:39:90:C2:A8:B5:1D:64:62:0F:6D:4A:F5
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 0197B70ED821C89479FCEAFCD6530F7E274F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
Manifest number: 121C
Signing time: Sat 28 Jun 2025 15:01:32 +0000
Manifest this update: Sat 28 Jun 2025 15:01:32 +0000
Manifest next update: Sun 29 Jun 2025 15:01:32 +0000
Files and hashes: 1: CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl (hash: Xt8oDhRAuus9qQPFflHJhO//fc8EwfSgxod1yp8M8lc=)
2: DQ47vKDjcl-2XGhWvGpEltnbLx0.roa (hash: xO7ywYo6rKZE+1UGlrRMauCBtFM1TiMUXrJWYhc9zkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:d8:21:c8:94:79:fc:ea:fc:d6:53:0f:7e:27:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: Jun 28 15:01:32 2025 GMT
Not After : Jun 29 15:01:32 2025 GMT
Subject: CN=024c2e7d3bdda5413990c2a8b51d64620f6d4af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:11:09:5a:1d:3a:55:7f:9e:d0:f2:79:9a:9a:
6a:12:61:28:f6:1b:b1:3d:ff:f5:fb:12:66:94:59:
71:17:b4:e8:c5:f8:22:4e:73:17:55:b9:22:90:ca:
5d:27:99:5f:92:1e:6b:61:37:c0:b3:f4:c8:54:9f:
8e:e3:cd:ad:3d:53:e9:e9:de:58:91:6f:53:49:51:
5f:08:f9:80:a7:d1:87:f7:3d:fa:c4:12:4c:67:76:
2a:26:7a:40:6d:fb:8b:9e:30:77:00:85:9b:a2:09:
bb:4a:af:87:5a:d4:e1:f7:f5:c4:82:69:aa:4d:39:
89:18:d6:3c:66:95:48:a1:a3:1f:0d:bf:c5:7f:78:
c8:8e:5b:a5:38:a5:0c:22:57:17:a0:7b:5d:1d:3b:
73:7d:ff:35:8b:f8:e8:d2:b5:5c:fb:8e:e4:10:cd:
41:cb:0f:25:ac:c0:4b:96:af:5a:ca:42:01:75:b5:
91:1c:f4:fe:e1:50:1a:5f:60:58:a6:94:3a:f0:b8:
38:06:da:0c:a2:22:78:19:c7:58:da:05:8d:61:6c:
2c:ed:3f:ca:36:c3:68:10:57:2b:20:ed:47:c9:f8:
17:b2:0b:8b:77:94:6b:a9:cc:40:40:e4:c2:31:76:
33:75:c0:49:0b:54:c1:7f:56:5d:d2:3b:69:a1:74:
30:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4C:2E:7D:3B:DD:A5:41:39:90:C2:A8:B5:1D:64:62:0F:6D:4A:F5
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:4c:1c:f7:42:f7:16:77:58:3b:8c:ec:23:e9:38:75:82:d4:
5e:ed:da:d6:cb:0f:9d:a2:de:02:7a:ce:43:f1:5b:62:7e:97:
ad:00:49:9e:f7:33:66:e3:f1:c6:a1:58:7f:16:3f:f1:16:05:
7f:43:75:de:d3:c8:50:71:ef:42:d3:1f:ad:f8:dc:e7:3c:c4:
69:d1:99:35:d2:b1:f7:71:db:a7:3f:86:37:c8:09:a3:16:86:
a7:26:a2:6b:c8:12:c7:d9:58:2a:09:f1:45:1e:1a:36:6d:48:
e2:9a:20:8f:5a:c3:2f:f4:21:7f:ab:c9:81:85:57:70:d6:92:
96:78:29:20:e4:6b:eb:08:82:8c:e1:65:f2:8e:f8:84:35:15:
d7:6b:e1:aa:2a:b3:16:0b:dc:e0:39:e4:f5:d3:38:e1:14:f1:
1e:5a:36:1e:d7:b9:0e:9e:c0:7b:1a:50:a7:74:98:54:74:82:
66:46:5a:8d:87:7f:23:bb:62:a3:f1:a6:72:28:d6:92:65:8f:
17:a7:d2:61:eb:21:44:7d:19:19:9b:0e:1b:17:ca:48:7b:a0:
09:ea:bc:10:97:45:a6:64:aa:36:c4:4f:96:cb:8b:a6:8e:d1:
ac:09:96:d1:ba:fa:aa:44:87:52:0b:26:67:43:ac:dd:5a:86:
49:ab:ae:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DtghyJR5/Or81lMPfidPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YTM0ZGFhYTg4N2Q5OGE1MzQ4YzNhNDYwYTIxZmM4NGUx
MWE0ZTYwHhcNMjUwNjI4MTUwMTMyWhcNMjUwNjI5MTUwMTMyWjAzMTEwLwYDVQQD
EygwMjRjMmU3ZDNiZGRhNTQxMzk5MGMyYThiNTFkNjQ2MjBmNmQ0YWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnREJWh06VX+e0PJ5mppqEmEo9hux
Pf/1+xJmlFlxF7ToxfgiTnMXVbkikMpdJ5lfkh5rYTfAs/TIVJ+O482tPVPp6d5Y
kW9TSVFfCPmAp9GH9z36xBJMZ3YqJnpAbfuLnjB3AIWbogm7Sq+HWtTh9/XEgmmq
TTmJGNY8ZpVIoaMfDb/Ff3jIjlulOKUMIlcXoHtdHTtzff81i/jo0rVc+47kEM1B
yw8lrMBLlq9aykIBdbWRHPT+4VAaX2BYppQ68Lg4BtoMoiJ4GcdY2gWNYWws7T/K
NsNoEFcrIO1HyfgXsguLd5RrqcxAQOTCMXYzdcBJC1TBf1Zd0jtpoXQw6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAJMLn073aVBOZDCqLUdZGIPbUr1MB8GA1UdIwQY
MBaAFAijTaqoh9mKU0jDpGCiH8hOEaTmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0tOTnFxaUgyWXBUU01Pa1lLSWZ5RTRScE9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9mNDMzYzMtMTMyZi00ZDY2LWJkMzAt
YzYyY2YyMGE1ZWM5LzEvQ0tOTnFxaUgyWXBUU01Pa1lLSWZ5RTRScE9ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9mNDMzYzMtMTMyZi00ZDY2LWJkMzAtYzYyY2YyMGE1ZWM5
LzEvQ0tOTnFxaUgyWXBUU01Pa1lLSWZ5RTRScE9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALUwc90L3
FndYO4zsI+k4dYLUXu3a1ssPnaLeAnrOQ/FbYn6XrQBJnvczZuPxxqFYfxY/8RYF
f0N13tPIUHHvQtMfrfjc5zzEadGZNdKx93Hbpz+GN8gJoxaGpyaia8gSx9lYKgnx
RR4aNm1I4pogj1rDL/Qhf6vJgYVXcNaSlngpIORr6wiCjOFl8o74hDUV12vhqiqz
Fgvc4Dnk9dM44RTxHlo2Hte5Dp7AexpQp3SYVHSCZkZajYd/I7tio/GmcijWkmWP
F6fSYeshRH0ZGZsOGxfKSHugCeq8EJdFpmSqNsRPlsuLpo7RrAmW0br6qkSHUgsm
Z0Os3VqGSauuPg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:24:31 2025 by rpki-client