Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
File: CKKX-M-hzm0_4sUmkRxGippjGNA.mft (raw, json)
Hash identifier: ApX0RNYWfBmmQBgnazWgKXthGJzFyvltxJUaxbimFXg=
Subject key identifier: F1:DE:56:BA:1E:0E:6B:8C:13:DE:77:5A:48:C1:E7:6B:FA:90:25:35
Authority key identifier: 08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0
Certificate issuer: /CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0
Certificate serial: 0196C53A4B380E28733E6474236E09F80A66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
Manifest number: 153A
Signing time: Mon 12 May 2025 16:00:53 +0000
Manifest this update: Mon 12 May 2025 16:00:53 +0000
Manifest next update: Tue 13 May 2025 16:00:53 +0000
Files and hashes: 1: 5MRhSgchnAtf4S3HQR8A2P9G7a4.roa (hash: zhfGWwF8FWGDVI625aodd4CNBRsAZhPphxbbSuJ9Gk4=)
2: CKKX-M-hzm0_4sUmkRxGippjGNA.crl (hash: DiVC7glp0POxoxPF1ny4p2AVFdB2uZ1yelCfdERNUwI=)
3: KBS5ODGVPgLIrn_lzCZVpLCuM_o.roa (hash: tuJiuTZZDp+7DpYOFgzygNPFPeRHjujTGVj2/4ZqQWE=)
4: lf4o5O9cdWZQhb3j1ES-63-ld0k.roa (hash: MkYv77LnNtclc+nDDwEnxwywSZw8C8g7xWpLHjYSnn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:4b:38:0e:28:73:3e:64:74:23:6e:09:f8:0a:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0
Validity
Not Before: May 12 16:00:53 2025 GMT
Not After : May 13 16:00:53 2025 GMT
Subject: CN=f1de56ba1e0e6b8c13de775a48c1e76bfa902535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:08:5d:27:ef:4b:cd:a5:b7:83:b1:b2:d3:be:
40:ce:bf:47:17:37:5c:00:fc:a8:b4:cb:3c:a1:b5:
be:2a:4b:49:5a:de:15:82:70:08:f0:96:e8:7b:b1:
99:21:40:f1:9c:98:a1:13:e5:c7:0f:3d:df:d4:3e:
3e:18:e5:d1:90:a7:14:ce:f1:e0:4e:2a:88:60:32:
47:24:ef:8a:17:4b:12:f6:4d:4e:c5:69:62:c6:a4:
e8:dc:bc:9e:04:11:76:7f:ba:27:07:be:2c:eb:1a:
6a:a3:4e:8d:ed:27:53:40:84:89:65:d6:21:9b:cf:
a4:f7:82:04:ed:6a:9a:ac:b5:f9:0b:46:5e:c1:6e:
08:e6:a1:2e:c7:59:7b:f3:f0:9f:03:1b:90:23:95:
e9:76:70:68:58:47:70:89:21:54:02:79:34:e7:b0:
3f:9c:78:71:b8:74:70:d7:5d:d9:7f:ab:2f:3e:63:
5d:ef:f5:1a:10:ef:4a:2d:31:d8:f9:40:af:29:67:
00:f2:bb:06:12:a0:91:32:34:f4:07:09:2b:7e:3a:
69:47:b8:05:05:31:86:ed:72:17:94:06:c5:2c:32:
fe:eb:bf:b5:be:6f:18:aa:95:28:dd:ce:a8:69:15:
38:32:8c:56:2b:5a:ac:9f:8a:1f:9d:28:67:19:40:
2e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:DE:56:BA:1E:0E:6B:8C:13:DE:77:5A:48:C1:E7:6B:FA:90:25:35
X509v3 Authority Key Identifier:
keyid:08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:07:e5:36:19:91:5f:87:ff:aa:bf:be:f9:56:4b:de:ec:18:
26:81:24:e0:ad:bb:18:89:fa:00:e5:93:0a:0c:23:4c:0e:8c:
e8:1f:f2:71:6d:a8:9b:1e:41:99:d4:9f:50:85:85:1a:c9:fd:
81:28:3b:1c:94:50:e9:af:bc:9b:30:76:b2:bd:fe:b7:80:34:
2e:e9:43:dd:b7:9e:fe:e1:6b:3c:14:64:9e:41:9c:3a:6f:12:
2b:ec:e8:cd:e2:c7:8c:e8:10:c3:77:32:1e:f0:f4:6c:2b:a4:
de:c6:7c:50:23:de:bd:61:cc:20:ab:83:3f:da:23:62:de:bc:
11:b4:60:88:8f:77:00:b5:17:9b:f7:42:1c:a9:71:7a:7c:f2:
d7:a4:f3:34:18:ee:0a:b7:94:77:4c:8e:35:58:b1:ad:5d:ea:
9b:83:9c:56:4d:58:c7:f1:9e:3c:ed:14:80:c0:fb:a2:35:a2:
1b:a9:f4:4f:61:fd:e3:77:f0:d3:d6:12:20:3a:96:46:8d:b7:
44:a8:e8:25:3b:a3:85:6b:39:2e:79:31:4e:08:a1:fb:ad:71:
4f:88:75:f2:07:0d:b0:da:63:06:4b:30:69:f5:df:c1:c1:e6:
f8:75:57:44:1a:47:de:23:dc:a7:23:b4:e6:08:1c:4b:aa:c0:
a9:db:ec:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbFOks4DihzPmR0I24J+ApmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YTI5N2Y4Y2ZhMWNlNmQzZmUyYzUyNjkxMWM0NjhhOWE2
MzE4ZDAwHhcNMjUwNTEyMTYwMDUzWhcNMjUwNTEzMTYwMDUzWjAzMTEwLwYDVQQD
EyhmMWRlNTZiYTFlMGU2YjhjMTNkZTc3NWE0OGMxZTc2YmZhOTAyNTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAhdJ+9LzaW3g7Gy075Azr9HFzdc
APyotMs8obW+KktJWt4VgnAI8Jboe7GZIUDxnJihE+XHDz3f1D4+GOXRkKcUzvHg
TiqIYDJHJO+KF0sS9k1OxWlixqTo3LyeBBF2f7onB74s6xpqo06N7SdTQISJZdYh
m8+k94IE7WqarLX5C0ZewW4I5qEux1l78/CfAxuQI5XpdnBoWEdwiSFUAnk057A/
nHhxuHRw113Zf6svPmNd7/UaEO9KLTHY+UCvKWcA8rsGEqCRMjT0BwkrfjppR7gF
BTGG7XIXlAbFLDL+67+1vm8YqpUo3c6oaRU4MoxWK1qsn4ofnShnGUAuvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPHeVroeDmuME953WkjB52v6kCU1MB8GA1UdIwQY
MBaAFAiil/jPoc5tP+LFJpEcRoqaYxjQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0tLWC1NLWh6bTBfNHNVbWtSeEdpcHBqR05BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS81ZjE1M2QtNzFkOS00NzBhLWJhMjct
OTcxMTM5NTE0YmIxLzEvQ0tLWC1NLWh6bTBfNHNVbWtSeEdpcHBqR05BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS81ZjE1M2QtNzFkOS00NzBhLWJhMjctOTcxMTM5NTE0YmIx
LzEvQ0tLWC1NLWh6bTBfNHNVbWtSeEdpcHBqR05BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMQflNhmR
X4f/qr+++VZL3uwYJoEk4K27GIn6AOWTCgwjTA6M6B/ycW2omx5BmdSfUIWFGsn9
gSg7HJRQ6a+8mzB2sr3+t4A0LulD3bee/uFrPBRknkGcOm8SK+zozeLHjOgQw3cy
HvD0bCuk3sZ8UCPevWHMIKuDP9ojYt68EbRgiI93ALUXm/dCHKlxenzy16TzNBju
CreUd0yONVixrV3qm4OcVk1Yx/GePO0UgMD7ojWiG6n0T2H943fw09YSIDqWRo23
RKjoJTujhWs5LnkxTgih+61xT4h18gcNsNpjBkswafXfwcHm+HVXRBpH3iPcpyO0
5ggcS6rAqdvskg==
-----END CERTIFICATE-----
Generated at Mon May 12 19:59:29 2025 by rpki-client