Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
File: CKkhe9gwYnyz5lfAuQY8giNN28s.mft (raw, json)
Hash identifier: 1skVzA5ZvFGVS5AhFbhSQhHF/ejoccM5zt8mBG82GHc=
Subject key identifier: AE:5C:7A:10:7D:58:4E:7A:31:3B:13:29:59:DF:D0:58:0F:73:5C:EA
Authority key identifier: 08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
Certificate issuer: /CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Certificate serial: 0197D2186790466E8911B177C25BCC6E869D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
Manifest number: 15C6
Signing time: Thu 03 Jul 2025 21:01:43 +0000
Manifest this update: Thu 03 Jul 2025 21:01:43 +0000
Manifest next update: Fri 04 Jul 2025 21:01:43 +0000
Files and hashes: 1: 34veN2ucTJBbi388PrmLekhLRzM.roa (hash: zPkkR8nXQL9mfEVd+D/kn8bIVDt7EDLAoyKRPC1BVEk=)
2: CKkhe9gwYnyz5lfAuQY8giNN28s.crl (hash: bDkKweSOrw2LN3HoI0UsumxT+fxx3v1r0MlWPfDogUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 17:39:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d2:18:67:90:46:6e:89:11:b1:77:c2:5b:cc:6e:86:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Validity
Not Before: Jul 3 21:01:43 2025 GMT
Not After : Jul 4 21:01:43 2025 GMT
Subject: CN=ae5c7a107d584e7a313b132959dfd0580f735cea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b9:04:06:a9:45:d5:c1:09:bf:ea:1d:ca:8a:
02:5b:09:95:1a:c2:a1:e9:41:38:5d:4d:53:45:28:
12:44:36:91:20:bc:6f:2a:bd:8d:b2:a8:e7:48:f8:
b4:70:55:fc:14:78:76:96:5b:e6:13:52:ff:7e:f5:
fe:03:3c:0c:8b:8b:3f:8f:29:eb:4a:95:f2:2c:85:
c0:19:b5:96:22:d7:33:f6:a8:7b:2b:a9:af:0a:c3:
42:c8:47:6b:8a:0f:94:62:65:0c:9a:fe:6a:19:f4:
4d:5e:64:34:f7:c1:65:9b:54:12:67:35:a8:d4:84:
61:f2:ec:e8:2c:a8:e9:fc:1d:7a:f8:07:b3:61:af:
31:28:f1:b7:e1:98:32:8b:58:f4:9d:c9:f6:fd:47:
44:78:89:7c:b1:13:5d:c5:50:3e:8b:17:ec:48:cb:
f3:9e:cc:bf:1c:33:47:19:3c:4b:17:49:25:5a:e5:
98:8b:17:b3:e3:74:33:55:66:de:37:3b:4b:b2:1f:
3b:c3:23:cf:0b:ad:e0:f5:8f:54:f1:84:21:36:e2:
7d:23:cd:fb:54:5d:3e:76:6a:30:99:49:50:7a:39:
97:de:95:92:58:0d:44:6c:82:0b:d6:94:6e:7d:6b:
7f:1a:a4:62:6c:32:bf:a4:db:a7:ce:1c:62:b3:71:
b2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:5C:7A:10:7D:58:4E:7A:31:3B:13:29:59:DF:D0:58:0F:73:5C:EA
X509v3 Authority Key Identifier:
keyid:08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:a2:02:a6:94:05:80:72:2d:8c:05:17:33:ca:41:07:e8:0d:
c8:88:2d:00:dc:77:9a:01:ea:a1:e0:fa:80:ea:7e:a0:1d:ed:
18:a9:aa:a3:7c:52:52:f1:9f:27:ba:32:68:a0:d8:71:05:b0:
92:64:16:ef:36:09:44:64:18:fc:3e:92:17:4b:a6:2c:19:ab:
8e:2c:f5:45:0b:be:5d:51:a9:57:c7:d7:54:cb:8a:cc:6a:fe:
0b:1b:89:55:1a:79:f7:20:f8:c6:f6:3b:31:95:2d:af:ba:47:
59:69:1f:be:0c:b4:4e:2e:03:75:13:df:16:7c:93:2e:79:5c:
88:c2:e7:09:3f:61:d7:de:cc:9e:a6:22:54:ae:f2:2b:df:e0:
62:61:2d:d1:97:42:72:e2:87:10:e3:df:9c:1c:b3:c2:03:c7:
b0:f7:1c:11:39:08:6c:58:ba:50:b1:9a:02:97:94:ac:06:06:
e8:d2:27:a0:f9:6b:a9:81:24:6b:39:16:a0:a9:49:c0:41:09:
7e:61:e5:56:96:a4:a7:c0:d3:62:72:c1:f9:77:3c:2a:c6:0f:
09:4b:4a:3d:f0:67:29:e0:e8:cd:1d:3d:d6:fd:1b:6b:98:d2:
57:73:d4:ae:79:96:78:4e:b6:45:60:27:c0:1a:fd:c9:7c:d9:
e6:94:24:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfSGGeQRm6JEbF3wlvMboadMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YTkyMTdiZDgzMDYyN2NiM2U2NTdjMGI5MDYzYzgyMjM0
ZGRiY2IwHhcNMjUwNzAzMjEwMTQzWhcNMjUwNzA0MjEwMTQzWjAzMTEwLwYDVQQD
EyhhZTVjN2ExMDdkNTg0ZTdhMzEzYjEzMjk1OWRmZDA1ODBmNzM1Y2VhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmbkEBqlF1cEJv+odyooCWwmVGsKh
6UE4XU1TRSgSRDaRILxvKr2NsqjnSPi0cFX8FHh2llvmE1L/fvX+AzwMi4s/jynr
SpXyLIXAGbWWItcz9qh7K6mvCsNCyEdrig+UYmUMmv5qGfRNXmQ098Flm1QSZzWo
1IRh8uzoLKjp/B16+AezYa8xKPG34Zgyi1j0ncn2/UdEeIl8sRNdxVA+ixfsSMvz
nsy/HDNHGTxLF0klWuWYixez43QzVWbeNztLsh87wyPPC63g9Y9U8YQhNuJ9I837
VF0+dmowmUlQejmX3pWSWA1EbIIL1pRufWt/GqRibDK/pNunzhxis3GyMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK5cehB9WE56MTsTKVnf0FgPc1zqMB8GA1UdIwQY
MBaAFAipIXvYMGJ8s+ZXwLkGPIIjTdvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0traGU5Z3dZbnl6NWxmQXVRWThnaU5OMjhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC83ZGRlNDQtZDdiNS00OGRhLWJjNjgt
MmM1YmFjMzVjMzQ0LzEvQ0traGU5Z3dZbnl6NWxmQXVRWThnaU5OMjhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC83ZGRlNDQtZDdiNS00OGRhLWJjNjgtMmM1YmFjMzVjMzQ0
LzEvQ0traGU5Z3dZbnl6NWxmQXVRWThnaU5OMjhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxaICppQF
gHItjAUXM8pBB+gNyIgtANx3mgHqoeD6gOp+oB3tGKmqo3xSUvGfJ7oyaKDYcQWw
kmQW7zYJRGQY/D6SF0umLBmrjiz1RQu+XVGpV8fXVMuKzGr+CxuJVRp59yD4xvY7
MZUtr7pHWWkfvgy0Ti4DdRPfFnyTLnlciMLnCT9h197MnqYiVK7yK9/gYmEt0ZdC
cuKHEOPfnByzwgPHsPccETkIbFi6ULGaApeUrAYG6NInoPlrqYEkazkWoKlJwEEJ
fmHlVpakp8DTYnLB+Xc8KsYPCUtKPfBnKeDozR091v0ba5jSV3PUrnmWeE62RWAn
wBr9yXzZ5pQkfA==
-----END CERTIFICATE-----
Generated at Fri Jul 4 02:53:45 2025 by rpki-client