Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
File: CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft (raw, json)
Hash identifier: UN2aMFe4yburhAOe9omx7fbZAyx8NYaPuSTlF7bjKzc=
Subject key identifier: CA:B8:12:35:79:A4:E6:EF:C4:FE:F9:B0:1A:28:2F:1B:97:EA:2F:6C
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 01976DABDCB7AB1FFF99E7D3F3C0B9273D57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
Manifest number: 11F6
Signing time: Sat 14 Jun 2025 09:01:08 +0000
Manifest this update: Sat 14 Jun 2025 09:01:08 +0000
Manifest next update: Sun 15 Jun 2025 09:01:08 +0000
Files and hashes: 1: CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl (hash: ez+HPM10Ac2Hkb+m0EYS4OVNWd6SsIqvM+ZxX0Cs1b0=)
2: DQ47vKDjcl-2XGhWvGpEltnbLx0.roa (hash: xO7ywYo6rKZE+1UGlrRMauCBtFM1TiMUXrJWYhc9zkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:dc:b7:ab:1f:ff:99:e7:d3:f3:c0:b9:27:3d:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: Jun 14 09:01:08 2025 GMT
Not After : Jun 15 09:01:08 2025 GMT
Subject: CN=cab8123579a4e6efc4fef9b01a282f1b97ea2f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:06:97:a1:79:d4:91:fb:3e:61:be:2d:ea:0b:
55:fd:00:f9:49:c2:b8:d2:23:fa:0d:aa:21:6b:df:
80:0e:59:ea:ec:4a:fb:c0:c8:26:2e:b5:08:05:d5:
5c:48:22:5a:a6:3d:18:dd:c3:1f:19:a8:aa:64:c8:
a6:b7:dc:a6:e3:2a:56:06:b9:df:13:10:5b:19:b9:
98:72:fc:5c:da:3c:e5:39:6d:64:05:b8:97:bd:1c:
91:2e:13:1f:61:01:c1:17:be:7b:dc:15:de:ca:4a:
7c:f4:1f:8a:2c:ec:28:a9:e9:f1:4d:64:64:90:49:
7a:a7:2c:26:d8:a4:a1:4b:31:fc:6d:24:2e:20:80:
1f:6c:71:49:e8:30:f9:87:36:d5:36:67:73:f1:ad:
10:50:7f:47:8f:20:e4:28:35:c5:61:c7:2c:ef:04:
b1:eb:fe:8b:e0:9b:d4:a2:57:d4:9d:90:28:de:2a:
8f:d9:0a:fe:fa:8b:29:58:d0:17:ae:d9:16:15:12:
e0:db:fd:97:04:4f:97:aa:1c:10:07:7e:e1:d3:62:
22:de:e2:bc:b4:dc:bc:76:7a:87:de:84:7e:30:d8:
a7:67:3e:b7:f4:13:44:72:3d:8e:81:2e:cc:3a:73:
c0:f4:79:44:76:bf:8e:c9:c0:48:30:5b:5a:ac:5c:
58:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B8:12:35:79:A4:E6:EF:C4:FE:F9:B0:1A:28:2F:1B:97:EA:2F:6C
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:62:ff:e8:e8:60:6d:d8:47:07:ea:e7:9c:d6:2c:a5:6a:9d:
5f:08:7c:77:40:96:1e:a6:1c:e0:f0:fc:ed:56:ee:18:2c:b9:
ef:67:61:04:f5:67:c1:ef:98:02:e9:52:cd:eb:8e:50:c2:58:
71:78:d0:e6:81:0b:a9:e5:fe:ad:bb:5a:ab:10:36:2a:64:99:
c5:17:24:67:8e:af:a9:be:5c:b1:36:19:b3:03:1e:54:78:1d:
61:dd:36:c9:12:6e:73:56:9d:f2:7a:11:4c:12:80:fe:fd:09:
aa:84:25:e0:e0:93:2e:bf:78:a4:96:f6:bc:a1:a8:ea:e0:e9:
e7:87:69:0d:79:c0:26:27:71:e5:a3:25:07:2d:68:11:83:60:
10:37:dc:3e:b4:d5:03:da:02:ab:d7:5d:41:bd:cd:59:de:a4:
7d:03:ca:f4:76:4f:9e:9b:46:5a:54:65:0f:fc:0f:7c:58:46:
5f:3a:a7:95:7d:3a:db:8b:77:31:f5:58:8a:4e:32:42:44:64:
34:35:a7:6b:eb:b8:f9:92:13:2a:d0:43:c5:5f:1f:1b:ac:ee:
8d:f3:b8:5e:37:58:ed:00:10:c0:cc:fe:96:74:f2:d1:cc:6a:
f5:65:45:78:90:17:10:47:47:93:58:cd:84:79:29:fd:5c:17:
2e:09:93:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:11:37 2025 by rpki-client