Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
File: CKKX-M-hzm0_4sUmkRxGippjGNA.mft (raw, json)
Hash identifier: mZUlcM7R7w2flg8rn8zGKYcSJxXoXGmDAzUeHPgew20=
Subject key identifier: 3A:C2:2F:D5:0F:EF:F4:73:B8:37:C5:E3:DB:93:1B:A4:AA:2D:EE:0C
Authority key identifier: 08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0
Certificate issuer: /CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0
Certificate serial: 019E1F114A02C99651858C34733EC0060EF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 02:01:27 +0000
Manifest this update: Wed 13 May 2026 02:01:27 +0000
Manifest next update: Thu 14 May 2026 02:01:27 +0000
Files and hashes: 1: 5dqgcQc20DZK2fFn6bpH-A8uyQ8.roa (hash: eVKJis7Ad9o9z5jyjcFOLQfOP7WhBCGivw8hyFer3JM=)
2: CKKX-M-hzm0_4sUmkRxGippjGNA.crl (hash: daRJPKvmqymv+ZtrGRJQOBpSbUpYO9Men68/JIWWZ3s=)
3: RMuTV-vXrFsXAt5l344yDIEdodg.roa (hash: 4Y7+XsWOTPcRpIgGXMuxA5FSDFIupn4tgYoKEVmPgqU=)
4: UL14P1AhHlUZzAIOnswglPjo1V8.roa (hash: oIVyB68rjWbYMJyZsMbtBMTHDcN1LK+tN3ZZZFRb1s4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:4a:02:c9:96:51:85:8c:34:73:3e:c0:06:0e:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0
Validity
Not Before: May 13 02:01:27 2026 GMT
Not After : May 14 02:01:27 2026 GMT
Subject: CN=3ac22fd50feff473b837c5e3db931ba4aa2dee0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:02:3c:a4:13:ce:32:43:2f:e7:2f:32:61:a8:
19:3d:02:6d:d1:9e:0f:25:e3:c4:4f:83:84:51:f6:
4f:47:e9:ec:82:4f:27:1a:8f:13:37:ea:7c:82:10:
08:d5:ee:6b:6a:ad:9e:2a:f7:6a:1a:03:52:90:a2:
56:50:47:01:4f:4e:1c:48:05:41:01:e8:07:20:41:
db:f2:ba:b4:95:a1:6c:9f:8e:01:99:e5:7c:8f:c2:
34:65:14:2c:23:b4:05:61:9a:55:d2:d7:81:63:77:
71:c1:9c:de:65:1f:55:24:1c:f2:8b:2b:1d:81:07:
b6:f1:0b:ba:69:ed:e4:18:09:77:1b:64:3b:d2:f5:
31:36:8a:13:a4:d8:c7:ba:d6:d7:1b:70:af:1f:b3:
95:ec:8e:67:dd:f9:25:e2:e1:e4:00:ee:ee:0d:57:
a8:4e:ab:48:6f:e2:63:81:27:e8:50:77:5e:1f:90:
7e:85:2e:18:29:87:c1:16:ad:f9:1b:88:67:5b:5e:
9c:4f:c7:de:11:b1:bb:b8:64:af:59:31:1d:40:1e:
e6:47:58:33:11:53:b5:81:f8:96:0c:a0:b0:f5:4b:
e6:b1:f6:20:37:dd:ea:5f:ec:7b:bb:e0:f0:27:86:
be:b0:4e:ec:6a:b4:8a:47:2a:b9:fe:8d:f2:d4:26:
ad:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:C2:2F:D5:0F:EF:F4:73:B8:37:C5:E3:DB:93:1B:A4:AA:2D:EE:0C
X509v3 Authority Key Identifier:
keyid:08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:3c:21:30:0d:59:75:1a:0e:c7:94:6d:93:f7:85:87:76:8d:
a8:e9:b1:e5:ec:b5:58:5a:c1:9f:50:74:aa:10:67:e1:a8:cb:
f6:f7:a0:cf:64:05:68:46:0e:31:81:aa:93:bd:99:44:fa:84:
e1:cd:e3:d7:86:25:1a:c8:92:a9:8e:94:4a:6b:05:98:01:38:
32:26:27:69:da:7b:03:7c:e6:04:24:9b:f7:5d:46:2c:c6:01:
a9:af:a8:7e:3b:ca:3a:19:5c:08:2d:db:14:65:ec:28:c0:b0:
77:12:ac:8d:4f:bb:a7:b2:3b:fd:29:d7:96:3d:ac:e7:97:18:
13:c7:5c:19:41:b6:7a:f6:c7:cb:c7:8e:c0:da:a2:6e:16:e1:
92:66:e9:73:6c:ea:eb:9e:68:29:e9:ae:7c:d8:04:4b:f9:73:
1e:8f:92:c1:dc:e4:3c:ee:bd:26:9e:38:8e:d0:b5:43:ef:58:
40:45:46:64:48:48:71:7f:f0:ba:04:17:04:b7:43:83:a4:a9:
76:57:c1:5a:0c:4a:40:79:72:cf:fd:24:8c:4d:9c:bf:93:84:
59:4e:f5:e8:6f:93:e2:05:57:db:f0:68:b8:7d:b5:ca:db:79:
ce:97:dd:5e:d5:57:7e:4a:d1:32:3d:41:00:88:a0:12:75:7c:
96:81:19:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:53:59 2026 by rpki-client