Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json)
Hash identifier: QPjf0Lt+enN7zNpViXGK65S0I4540YeBixLHK0wouag=
Subject key identifier: 2D:E3:5D:5A:F4:99:F8:18:24:C9:B9:0E:E4:AD:19:42:41:A8:60:6D
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: 01984A77F65DD094756D7C7230A538F7DE6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
Manifest number: 0F15
Signing time: Sun 27 Jul 2025 06:00:32 +0000
Manifest this update: Sun 27 Jul 2025 06:00:32 +0000
Manifest next update: Mon 28 Jul 2025 06:00:32 +0000
Files and hashes: 1: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: v+GxaKZoZEeWN+8sqjs5/wn7QnQdk0YKSq8T/IYjqls=)
2: WXokG7cKriDfqWoaHraaATikOZM.roa (hash: l03IsJpcA1hZ2SxrPxTFFWqboVv9JIckV/GXuLQrkcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:77:f6:5d:d0:94:75:6d:7c:72:30:a5:38:f7:de:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Jul 27 06:00:32 2025 GMT
Not After : Jul 28 06:00:32 2025 GMT
Subject: CN=2de35d5af499f81824c9b90ee4ad194241a8606d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9b:2e:3d:b7:db:59:aa:19:46:6d:01:2b:e9:
70:8e:37:d2:b1:a2:9c:13:14:53:3f:ea:e5:72:9f:
f1:63:fd:5d:39:dd:59:54:32:63:9f:9b:82:82:b8:
a2:aa:a7:90:c7:31:15:33:ed:a7:4d:5e:e2:e5:80:
3e:53:6f:71:76:3a:2e:75:2e:d2:32:4c:76:14:25:
ad:b8:d2:2f:c5:88:a5:80:19:7c:ed:6d:28:44:b0:
a0:09:d8:19:f1:3c:af:6a:96:49:4f:79:ca:cd:d0:
2c:28:24:cd:20:0a:c2:b8:df:3b:68:35:9f:bd:0b:
2d:00:02:ae:3d:d2:57:9a:8b:74:8b:75:89:3a:f3:
97:75:a1:ab:ea:46:69:83:bf:9a:93:2f:e7:5f:4f:
c9:00:c1:e6:e5:42:19:66:0a:6d:dc:3a:35:a2:dd:
46:e1:25:f1:2d:4d:ea:bc:8f:e3:c7:dc:ff:f1:d2:
96:e1:95:d0:6d:dc:22:f4:96:7d:c2:89:cd:16:9d:
42:71:96:a8:6e:68:8b:f2:b2:b2:5b:9c:51:6c:62:
71:a0:04:f7:3b:3f:33:37:15:17:af:66:c8:6b:49:
01:38:88:5e:db:44:11:00:f2:e9:7c:f7:f7:6b:31:
ef:be:02:7c:be:2a:23:e8:fd:a5:b2:32:b5:4b:f8:
98:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E3:5D:5A:F4:99:F8:18:24:C9:B9:0E:E4:AD:19:42:41:A8:60:6D
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e5:cd:a0:bc:43:60:17:87:79:62:f2:c8:07:04:46:4e:b6:67:
a2:c5:81:8d:19:33:f4:dc:c6:88:bf:66:90:03:15:c7:9d:8d:
40:ff:45:35:33:d1:6b:43:2f:b2:d2:4c:45:45:e8:3e:9d:28:
18:12:a7:79:48:31:cd:27:d6:ba:ac:54:4a:ce:25:4c:6e:7f:
45:3c:f1:ce:43:c4:ac:e3:1d:b9:53:8d:5e:da:7e:bf:6c:3c:
79:fa:b9:c3:51:ed:c8:e9:53:60:fc:b7:c0:98:df:cb:fc:4a:
ba:a0:f8:7e:23:b0:b7:f6:b9:0d:f4:83:5c:82:08:5b:c3:b1:
bb:55:fc:27:1e:0c:28:ef:b4:3c:78:5a:e4:c7:d7:4e:eb:e0:
6a:19:3d:28:6d:3d:62:87:b3:8b:38:1a:e5:a2:a5:1e:da:f1:
67:f5:fb:d6:18:68:2f:2d:71:2c:b3:e1:46:65:4e:d7:59:02:
22:bc:8d:fd:90:fe:c1:14:da:19:83:4b:b6:aa:6d:3f:25:c2:
1a:7b:d6:ea:6c:77:b6:9a:c1:53:b8:e0:76:0f:b7:f3:b2:a3:
6d:7d:32:01:e8:50:7e:8e:21:40:70:ff:b7:01:44:73:f0:b7:
5d:93:e2:19:89:64:22:8a:d7:90:78:51:59:2e:80:c0:d6:37:
9c:b8:4b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:38:24 2025 by rpki-client