Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json)
Hash identifier: YO7hHUsdF4Wt8aXGKMUZ/PqgDFWRBWD7HIwIXBHP14c=
Subject key identifier: A6:BC:0C:29:B4:A7:BD:28:F0:70:4A:9C:10:5E:C6:C1:6C:FC:C8:56
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 019922C385B904C0394D6D8467A87F2646E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
Manifest number: 139B
Signing time: Sun 07 Sep 2025 06:01:03 +0000
Manifest this update: Sun 07 Sep 2025 06:01:03 +0000
Manifest next update: Mon 08 Sep 2025 06:01:03 +0000
Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: jhB79cz3HefEiYZkQKhvlMW2NThcD3OkRyifTYiDiU4=)
2: ESQpVAiSLlfE8UMM75aY_vsPDNc.roa (hash: ubyXNF+odFgCxSHtSbasAdaDvs7x7Wh5p2HTa/QrZgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:85:b9:04:c0:39:4d:6d:84:67:a8:7f:26:46:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: Sep 7 06:01:03 2025 GMT
Not After : Sep 8 06:01:03 2025 GMT
Subject: CN=a6bc0c29b4a7bd28f0704a9c105ec6c16cfcc856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d6:82:ff:31:8d:b1:16:69:22:db:0d:60:ad:
37:16:bc:06:c2:31:af:b0:bc:15:7d:18:f8:80:9d:
7f:f7:84:b2:e5:74:ce:2a:d1:f0:9c:b4:c6:80:96:
a8:a0:c2:4d:d8:60:58:cb:78:08:4b:67:db:ca:d5:
ca:d9:c0:80:b6:a1:09:09:8d:34:68:b4:49:17:ef:
78:09:6a:d1:4d:92:48:66:f6:26:51:14:7f:ee:ca:
61:c2:47:58:b9:f9:2b:91:db:57:ae:4b:3b:6f:23:
2e:22:59:04:1b:df:9e:2a:89:c2:20:19:13:c8:49:
55:da:db:78:c4:33:45:b0:ef:e6:92:a1:39:78:6b:
f3:b2:68:bb:0e:01:ff:4d:60:34:b3:09:ef:d6:9c:
be:2a:f5:62:f6:c5:d0:4e:70:5c:2b:3a:0e:dd:f5:
e3:38:46:fa:0a:2e:71:83:69:86:46:d0:77:36:db:
03:0b:e7:c6:db:ee:c0:3b:0e:32:36:73:78:ec:b1:
9a:c3:ee:fe:2a:06:a5:62:f3:34:7f:ec:52:d3:ba:
c8:98:6e:d7:cb:40:67:3b:d0:a6:c6:c5:3b:b2:f9:
b7:a6:ad:73:cc:66:4d:74:19:ea:d9:fb:c9:3b:bc:
3e:18:b4:0f:88:54:ee:ab:77:88:a9:0d:41:f5:02:
f7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BC:0C:29:B4:A7:BD:28:F0:70:4A:9C:10:5E:C6:C1:6C:FC:C8:56
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:90:86:7c:65:f2:d9:72:80:d0:18:e9:71:f3:f1:e0:4d:63:
33:e1:ff:e6:0c:ca:6e:7d:e8:53:82:c0:22:0f:0e:cd:c2:12:
31:c1:8f:51:cd:21:63:e1:b5:cd:3a:7f:e2:b3:c9:10:f7:6e:
85:c9:00:9e:c0:0d:90:df:f0:a8:71:ea:e9:34:ad:32:94:fb:
c4:e3:18:fe:fd:c7:19:e3:d8:23:12:42:d3:3b:a1:3a:b8:d1:
1a:1e:0b:e3:50:c0:10:2b:57:f7:7d:b6:41:56:48:a2:64:ca:
22:b4:44:f1:15:cd:37:91:9c:d3:8f:3e:fd:0a:8d:76:38:3f:
16:45:ef:fd:76:1c:95:26:43:13:a5:4d:d3:38:92:09:d1:21:
7a:49:41:15:c0:28:4c:25:d5:bc:d3:45:2b:a4:5c:68:96:a5:
4b:79:f6:92:d1:dd:81:c7:4a:70:c1:3a:e7:d5:63:ba:6e:92:
20:a0:a4:74:83:de:11:51:1b:ff:71:0d:51:44:f4:02:55:d8:
d5:5e:08:49:08:a8:91:a6:63:c3:73:a2:70:68:16:21:81:18:
05:79:e1:17:79:2d:ba:b2:67:a2:50:54:c1:04:3c:e5:aa:06:
41:3f:8c:85:6a:a6:4d:ba:f3:16:fe:ac:30:c2:36:6e:8c:cc:
c8:00:c1:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:28 2025 by rpki-client