Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: LvdcymrBb1koGDab+JqWhS2YVB2imqVQMUqJmapODYo=
Subject key identifier: 32:F0:62:98:F8:BB:69:89:21:9A:70:97:0F:28:BF:B2:38:62:E8:D4
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 0198D472E8BA10CAA19CAF8AED83E56A86AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 01:02:37 +0000
Manifest this update: Sat 23 Aug 2025 01:02:37 +0000
Manifest next update: Sun 24 Aug 2025 01:02:37 +0000
Files and hashes: 1: C324i-QiLStBQtj8SlSM_WsRhgA.roa (hash: 57MQFbrSaZ/38tAVb1G6ejMsXoqYvy5V/+YD5WOhbAY=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: tDprQBInyBOfgJR5GKW3+srrI7xJljhjAnpS2WwO6Sg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:e8:ba:10:ca:a1:9c:af:8a:ed:83:e5:6a:86:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: Aug 23 01:02:37 2025 GMT
Not After : Aug 24 01:02:37 2025 GMT
Subject: CN=32f06298f8bb6989219a70970f28bfb23862e8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f9:89:95:fc:42:05:37:44:8b:18:86:b8:60:
0c:17:fa:9e:8e:b4:2d:f7:b9:bf:0f:b6:ba:f7:8c:
0d:4c:49:a1:20:27:52:84:db:81:a5:c2:19:af:61:
f9:32:bb:41:fb:cf:06:5b:31:01:75:7c:c7:76:fc:
25:ea:be:17:41:3e:59:61:f2:ad:6e:cb:57:2e:26:
ec:6e:cf:52:7f:1c:f4:8a:c6:ef:cc:11:e0:42:16:
f9:07:34:63:44:43:f5:9d:0f:2f:8a:67:72:81:dd:
c7:82:19:0a:b2:68:cc:47:41:29:c8:9f:40:fd:f8:
2b:cb:02:67:96:c8:e6:ce:bc:72:3f:5e:4e:07:20:
e2:6a:9a:49:d1:30:b4:6c:8c:ca:1e:6e:e4:b5:04:
0f:d6:0d:3d:c3:8d:14:9e:1f:2b:0c:8f:e4:a8:fd:
6f:ed:b1:d1:79:85:0c:7e:b3:ea:7a:0d:90:f9:9e:
f0:37:fb:3f:49:80:5b:3e:4f:f3:4c:f9:80:c7:7e:
a5:fe:5e:b8:d0:82:d7:87:db:2b:77:8d:36:96:f7:
95:72:7e:dc:c7:71:26:da:6d:94:2f:a6:1c:56:95:
1e:c1:1f:e1:97:e5:f2:26:08:35:42:3a:a3:9d:fe:
77:d6:1c:43:6e:d9:9b:81:2f:4c:26:24:6f:8b:4e:
7b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F0:62:98:F8:BB:69:89:21:9A:70:97:0F:28:BF:B2:38:62:E8:D4
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:ae:d8:cb:03:10:89:e6:b4:be:e9:80:d3:4c:7e:4a:8d:2d:
bc:48:ae:90:49:50:51:0b:ee:9d:86:90:3b:38:df:7f:33:05:
40:e8:71:a0:6a:a2:dc:56:6b:b9:bb:39:4d:ad:0a:7d:51:6d:
15:7a:58:f0:60:8d:23:05:3d:3d:47:7b:4a:53:d1:09:31:bd:
75:96:16:49:c0:b8:ef:d4:7c:67:ad:0a:02:77:0b:35:5b:bb:
4a:a9:9c:cb:24:3e:23:71:48:72:96:89:ea:22:0d:13:ca:f8:
8a:5c:30:16:05:f7:10:67:59:66:20:7e:71:0d:b7:2f:9a:43:
d2:1a:11:5f:db:a3:11:dc:13:09:a3:2f:87:00:21:d9:8e:64:
42:98:3a:72:2d:cd:8f:77:6d:76:1a:4f:47:d0:bf:86:8c:8a:
af:47:6f:d6:4a:fe:00:01:69:ce:6a:e5:53:65:53:43:45:fc:
0c:4e:e1:66:39:a0:8c:42:ab:d7:62:44:d6:d6:66:61:79:f5:
2e:54:39:d6:52:7d:41:85:b0:f6:93:ce:aa:25:6a:0a:5c:5f:
6e:f9:b2:7d:4a:f3:03:d0:06:4b:24:67:60:27:88:67:2c:17:
17:0b:bb:ce:0d:85:4c:b8:38:fa:45:51:bf:14:75:35:27:cd:
8b:b0:6a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:40:16 2025 by rpki-client