Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
File: CKKX-M-hzm0_4sUmkRxGippjGNA.mft (raw, json)
Hash identifier: rIeNSTS17ajg1kDfYadadFxY+a9hWeO0Sajj33JvxOU=
Subject key identifier: CF:D4:AC:E1:95:83:00:21:17:6B:35:F6:1A:87:CD:B2:4B:85:CA:97
Authority key identifier: 08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0
Certificate issuer: /CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0
Certificate serial: 0198D6605BA0F29FD51B1A5D94D508EF9E3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 10:01:35 +0000
Manifest this update: Sat 23 Aug 2025 10:01:35 +0000
Manifest next update: Sun 24 Aug 2025 10:01:35 +0000
Files and hashes: 1: 5MRhSgchnAtf4S3HQR8A2P9G7a4.roa (hash: zhfGWwF8FWGDVI625aodd4CNBRsAZhPphxbbSuJ9Gk4=)
2: CKKX-M-hzm0_4sUmkRxGippjGNA.crl (hash: bM9h1qJKpPpagJpqJjiOhd0xYkkAt2ZCrvJfDv/ul+E=)
3: KBS5ODGVPgLIrn_lzCZVpLCuM_o.roa (hash: tuJiuTZZDp+7DpYOFgzygNPFPeRHjujTGVj2/4ZqQWE=)
4: lf4o5O9cdWZQhb3j1ES-63-ld0k.roa (hash: MkYv77LnNtclc+nDDwEnxwywSZw8C8g7xWpLHjYSnn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:5b:a0:f2:9f:d5:1b:1a:5d:94:d5:08:ef:9e:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0
Validity
Not Before: Aug 23 10:01:35 2025 GMT
Not After : Aug 24 10:01:35 2025 GMT
Subject: CN=cfd4ace195830021176b35f61a87cdb24b85ca97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:04:86:03:36:cc:ad:b9:8e:81:c4:8b:a0:9e:
b9:d7:99:be:61:b9:06:19:50:e6:57:e5:5d:74:16:
35:93:d5:1e:98:33:06:80:d4:eb:77:61:ea:f9:2b:
29:59:de:a4:01:14:ce:ac:0a:ee:df:f5:d6:78:b0:
74:9b:48:ba:a5:9e:be:91:5a:1f:d9:87:ab:8b:10:
63:86:78:4f:77:77:5e:ec:b0:2d:f1:3d:b6:83:45:
aa:85:04:0c:f0:73:4d:c0:93:46:22:3a:a9:a7:60:
6d:90:27:be:44:1e:9c:b1:2b:4b:37:3e:9f:2f:28:
d9:1f:ac:3e:c5:44:dc:a7:c6:f2:10:76:12:6b:4b:
e7:06:8f:34:7d:31:72:6f:df:00:08:36:8f:ca:43:
be:01:39:a7:27:0a:da:f6:e2:64:ae:34:a4:05:88:
26:60:14:47:83:c6:85:48:c4:da:0d:52:65:c7:16:
41:c1:09:1a:47:9a:e7:4f:18:32:ca:d2:43:ea:b3:
b6:0d:4e:88:f7:ad:76:b2:68:a7:51:4d:04:5c:a1:
ba:6f:f1:a6:fd:07:a0:df:09:75:a8:7d:90:8c:74:
3f:84:83:da:bd:77:e3:37:a7:46:e3:95:8a:3a:9d:
5b:96:53:c6:fc:f1:4c:36:c2:ac:9f:85:a8:4a:63:
d4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D4:AC:E1:95:83:00:21:17:6B:35:F6:1A:87:CD:B2:4B:85:CA:97
X509v3 Authority Key Identifier:
keyid:08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:0c:9e:52:f5:7a:b1:63:cd:a9:f3:3a:f0:08:f7:71:77:d4:
13:7a:fa:25:9f:83:e1:40:21:2c:8e:5b:7a:b5:02:5d:09:f2:
6d:3f:a5:d7:d8:4e:ca:5a:67:12:e5:6e:a7:40:93:e1:06:48:
33:0c:2b:08:3e:dc:62:d2:f1:cc:b8:0d:55:d1:e7:28:c3:b4:
61:27:de:09:d1:9f:ea:c4:34:da:44:70:c2:31:3b:af:8c:29:
24:f6:52:d7:16:11:1c:88:15:14:34:48:42:73:1f:8a:8c:16:
b9:73:7d:67:6d:c4:e7:25:b2:a3:b7:7b:85:ad:e0:1b:26:c3:
bd:c2:49:1f:87:8c:89:1e:4f:d2:9c:d5:bf:d4:ea:02:8b:e6:
2d:fb:b8:ec:60:28:03:1e:c7:c2:67:d8:61:ee:9f:19:e2:0f:
14:28:06:a0:49:2f:d8:d1:c9:ef:d5:2e:c6:99:ea:e1:bb:d9:
c0:65:a2:0f:14:c0:c3:ee:5f:6e:ad:9b:20:b2:0d:1c:92:4f:
28:94:e0:5c:83:f9:dc:26:6b:96:00:e8:f4:51:f2:36:e6:b8:
54:5a:f0:a0:ee:b9:fc:a3:7b:4e:07:be:fa:23:10:9d:0b:f7:
a2:99:8f:f4:a6:32:44:d5:5a:9f:8a:d9:cf:27:a7:01:99:72:
92:de:d0:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:19:01 2025 by rpki-client