Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: ohktV4GNjlar4mZao068wcgo/euiGb5dK7K2yuEH1fk=
Subject key identifier: 2A:C9:CF:A1:73:5B:0C:79:95:07:EB:D9:C7:3D:7F:D9:73:3E:A9:0E
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 0199FBEADA03F36F20250343A6E8323F636F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 10:01:36 +0000
Manifest this update: Sun 19 Oct 2025 10:01:36 +0000
Manifest next update: Mon 20 Oct 2025 10:01:36 +0000
Files and hashes: 1: C324i-QiLStBQtj8SlSM_WsRhgA.roa (hash: 57MQFbrSaZ/38tAVb1G6ejMsXoqYvy5V/+YD5WOhbAY=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: HA3J/zOE4+w+vpv/kuX1PpEOWhlzZR7RxUcA1VVge5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:da:03:f3:6f:20:25:03:43:a6:e8:32:3f:63:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: Oct 19 10:01:36 2025 GMT
Not After : Oct 20 10:01:36 2025 GMT
Subject: CN=2ac9cfa1735b0c799507ebd9c73d7fd9733ea90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f5:f8:50:ac:83:a4:fc:42:0c:4a:ad:c5:e4:
c7:01:72:3f:06:d4:d6:63:2c:01:7f:0a:c5:95:f7:
03:3f:a8:43:fd:c5:b2:ba:82:74:f9:fa:a6:d2:77:
39:89:79:c7:25:b5:1c:62:33:fc:a8:5f:a8:af:20:
d2:d7:ef:8e:7e:6e:ea:52:42:43:2d:be:e9:70:d3:
d9:b0:04:ac:ef:18:cc:bd:a1:97:be:62:25:35:64:
2e:e8:06:8a:6c:d2:59:02:12:c3:6c:01:5c:d1:1b:
7b:6c:20:a3:4f:ce:89:41:c8:bf:49:37:79:15:92:
53:2c:2b:a1:c3:d1:f0:2a:ab:33:5d:9b:9b:72:57:
53:6d:aa:a7:c0:16:fb:59:47:8b:04:cf:ea:00:24:
10:28:90:d9:95:54:8f:3f:23:48:e8:f5:5e:f7:f2:
64:b8:da:37:fb:78:7c:54:df:d0:6e:63:0c:ed:81:
08:70:b9:e6:a7:c8:f7:d7:36:00:44:60:99:42:bd:
21:30:7b:61:ea:51:65:75:b4:0c:f7:77:73:da:4a:
20:bd:59:f0:c0:ec:a7:db:98:c3:ca:29:5e:16:88:
40:6f:8a:4d:d0:bf:3d:2e:53:f2:66:2f:3b:82:90:
15:6d:6a:25:a4:72:92:4a:a8:10:96:bb:d1:5d:a3:
2e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:C9:CF:A1:73:5B:0C:79:95:07:EB:D9:C7:3D:7F:D9:73:3E:A9:0E
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ee:9f:e2:6f:76:a4:04:57:36:78:48:99:3d:e7:c9:0e:89:
23:be:8f:cf:5f:96:22:8c:91:33:60:c0:69:bc:75:9d:c9:36:
1e:10:77:28:32:9d:88:43:4a:3d:6b:f5:54:fb:20:8b:a2:9c:
b7:0f:94:5b:e3:b8:70:57:24:7f:8a:db:e7:25:bd:4e:7d:51:
1b:6b:6d:40:78:be:58:21:de:99:06:b5:c1:fb:a7:40:1b:c6:
b7:40:c2:72:81:45:79:f3:cc:d1:db:97:6e:9c:10:5f:b6:a3:
07:61:3a:2b:03:1f:cc:e3:88:9c:40:18:15:5b:40:7e:49:ed:
be:2e:00:5a:c7:c5:0e:47:b9:06:a7:ec:f0:d7:54:49:36:39:
64:a8:5f:be:3f:7e:40:30:60:35:a5:c8:db:d2:46:2f:f8:fd:
f6:4e:fa:c4:a7:44:3a:6f:0a:e0:4c:40:ca:cd:3c:36:77:26:
b2:94:ed:a8:4a:f0:6b:b9:a4:b4:d5:0f:cb:ef:1c:01:55:40:
c9:b7:95:fe:10:02:fe:2e:34:f5:e0:4d:b6:53:8f:cb:94:96:
c1:6e:6c:70:55:a1:34:91:13:5d:44:f2:2c:27:b2:0d:35:db:
a2:c8:89:d9:21:0a:63:84:f7:3c:42:b5:1d:fb:a2:e3:70:52:
93:bb:b1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:42:56 2025 by rpki-client