Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
File: CKKX-M-hzm0_4sUmkRxGippjGNA.mft (raw, json)
Hash identifier: VJwiMHORN/k15ppXCrwiRJMK5Ahpdz5hCjRiWFdoSxE=
Subject key identifier: 98:BE:9C:6C:C8:55:1A:5E:50:ED:6A:23:AE:AB:FC:96:68:F5:BD:E6
Authority key identifier: 08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0
Certificate issuer: /CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0
Certificate serial: 0197B6A100F0F2ED2769C7A10FAA657976D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 13:01:34 +0000
Manifest this update: Sat 28 Jun 2025 13:01:34 +0000
Manifest next update: Sun 29 Jun 2025 13:01:34 +0000
Files and hashes: 1: 5MRhSgchnAtf4S3HQR8A2P9G7a4.roa (hash: zhfGWwF8FWGDVI625aodd4CNBRsAZhPphxbbSuJ9Gk4=)
2: CKKX-M-hzm0_4sUmkRxGippjGNA.crl (hash: /EnfGxVYYb1iSfwtXpDMPEcVRUeK2vVKQTBojN3qqzA=)
3: KBS5ODGVPgLIrn_lzCZVpLCuM_o.roa (hash: tuJiuTZZDp+7DpYOFgzygNPFPeRHjujTGVj2/4ZqQWE=)
4: lf4o5O9cdWZQhb3j1ES-63-ld0k.roa (hash: MkYv77LnNtclc+nDDwEnxwywSZw8C8g7xWpLHjYSnn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:00:f0:f2:ed:27:69:c7:a1:0f:aa:65:79:76:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0
Validity
Not Before: Jun 28 13:01:34 2025 GMT
Not After : Jun 29 13:01:34 2025 GMT
Subject: CN=98be9c6cc8551a5e50ed6a23aeabfc9668f5bde6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9d:88:5a:ad:55:9d:23:84:27:97:05:79:00:
17:87:f0:4f:c3:a5:32:3c:1f:63:6a:42:a2:62:1d:
4b:1e:8f:58:dc:4e:f7:73:10:e1:f0:3a:c9:d3:6a:
a5:48:b8:23:ff:37:b3:f7:2f:0d:91:6b:8b:ab:1a:
8f:40:a7:1e:10:2e:35:53:38:14:f5:b3:08:7d:89:
42:df:00:14:af:26:4f:3b:79:05:30:a3:0a:fc:c3:
04:6c:68:88:0b:0f:77:73:da:9f:e6:e8:d0:d1:e5:
22:e4:ea:5a:52:4f:6c:65:67:95:1b:fd:4e:52:6b:
d8:f1:d4:90:e9:26:aa:66:2d:72:e6:57:59:dc:60:
c6:35:06:d0:8e:a3:fa:d0:fa:b4:4a:e6:a2:20:5e:
c9:05:a1:a2:dd:c6:41:02:7d:63:3e:7a:d5:d5:08:
99:a9:7f:c2:cf:22:bc:95:28:17:4c:95:26:c0:69:
6d:ff:d5:a1:07:e3:b3:f9:47:1a:43:3d:38:8e:5c:
e3:00:ea:e8:27:3c:a7:d9:cb:cc:00:cf:f4:7f:31:
7b:51:1d:41:a3:71:e9:c1:10:17:62:da:7a:d3:91:
df:04:e8:10:d3:d7:d0:34:09:2a:f0:35:40:f3:9f:
e8:47:ea:a8:d7:67:98:4e:f6:07:b5:8d:1d:c2:b2:
b4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:BE:9C:6C:C8:55:1A:5E:50:ED:6A:23:AE:AB:FC:96:68:F5:BD:E6
X509v3 Authority Key Identifier:
keyid:08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:b8:ac:85:ea:2e:23:9d:74:14:19:9a:58:c4:c0:32:70:8e:
1e:78:9f:eb:f3:57:38:59:fd:3b:19:02:2a:9e:53:3c:7c:86:
9b:b8:37:44:d0:88:46:21:4b:e8:24:83:49:35:c7:d0:85:cb:
81:82:c1:e3:be:4c:ed:f1:bf:bc:39:29:88:34:c4:9b:ad:02:
b1:28:8b:76:0d:7b:59:31:4b:01:13:52:f1:1d:f0:72:38:31:
55:ef:e7:53:b6:21:cc:0f:83:99:24:e3:9c:8c:4b:93:1f:d6:
d2:3f:fd:c7:b6:cc:01:a4:e3:e7:92:e4:aa:70:16:1a:ff:37:
47:37:0b:9e:1c:0c:f9:c2:36:4b:29:48:c0:4d:9b:72:c3:85:
b6:11:26:8f:d3:e1:f7:91:f6:b3:61:60:6c:b2:b7:a8:77:cb:
d0:d4:51:06:03:ee:58:8a:c1:6d:1d:72:76:68:89:a9:aa:77:
cd:7a:24:1b:1b:28:1b:bb:b6:6b:8f:09:d2:34:99:82:af:0d:
42:50:a6:12:ff:40:35:3c:f7:cf:0a:11:1c:c3:37:48:51:0a:
67:ab:24:a8:cc:b4:a7:ef:d3:ba:a3:d8:eb:18:77:f5:4a:3f:
ae:0d:50:f3:62:79:d4:ae:31:a5:8e:29:14:38:02:e4:41:e9:
ce:c3:46:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:02:10 2025 by rpki-client