Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json)
Hash identifier: yXJdb7LlZOinLPqDyZytzpDjniEg3mhMeTmdiknTdoc=
Subject key identifier: 8A:87:C0:E9:E7:D2:4E:9E:84:38:6F:72:77:0B:E8:72:07:92:08:52
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 0197515878106249624596E8243EED0214FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
Manifest number: 12AA
Signing time: Sun 08 Jun 2025 21:00:41 +0000
Manifest this update: Sun 08 Jun 2025 21:00:41 +0000
Manifest next update: Mon 09 Jun 2025 21:00:41 +0000
Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: ObuVWlANo5Dp3Es963l7Tav+Xcg30xGNTlBP2GAAT9c=)
2: ESQpVAiSLlfE8UMM75aY_vsPDNc.roa (hash: ubyXNF+odFgCxSHtSbasAdaDvs7x7Wh5p2HTa/QrZgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:58:78:10:62:49:62:45:96:e8:24:3e:ed:02:14:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: Jun 8 21:00:41 2025 GMT
Not After : Jun 9 21:00:41 2025 GMT
Subject: CN=8a87c0e9e7d24e9e84386f72770be87207920852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3f:d5:ce:9c:e0:ec:28:7d:05:5b:52:23:de:
bb:6f:17:7c:53:6c:a4:54:ce:e1:15:89:5d:bf:1a:
b6:0c:9c:be:be:93:45:e2:53:db:54:04:ab:72:38:
55:dc:bf:42:17:d1:9f:f7:ac:4a:a0:71:05:67:10:
68:36:ba:5b:cf:d0:30:a6:42:66:77:95:40:23:e6:
1d:90:c9:22:60:d8:a2:60:2a:aa:0c:21:d9:8e:14:
0f:ad:64:c6:a9:f2:f0:09:a3:f4:ce:76:f2:42:db:
21:e8:38:93:9d:24:00:4b:18:5c:c1:79:99:71:c3:
07:2b:ff:da:9b:74:bc:a4:73:59:b0:9f:49:c0:89:
a2:e7:a3:1b:f4:f3:0f:45:5e:47:8f:2c:88:64:16:
e4:58:cc:9d:83:94:9e:47:cb:30:44:65:11:e3:6b:
ef:01:69:84:8a:a1:a8:15:ea:89:26:c4:0b:65:91:
8f:0f:82:49:fe:b8:5c:23:6d:a4:60:c0:b4:13:28:
38:3b:1c:ed:ee:0d:77:43:75:2c:a7:86:c2:09:6c:
a5:06:5b:a9:80:25:c1:ce:57:63:f6:1c:7d:63:56:
1c:b3:0c:40:8c:ee:29:13:18:19:7f:fe:fc:2c:d5:
c0:5c:ae:ce:cb:ad:f3:89:9b:98:0f:6d:b4:b8:18:
f3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:87:C0:E9:E7:D2:4E:9E:84:38:6F:72:77:0B:E8:72:07:92:08:52
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:78:bb:a6:93:40:9e:69:44:65:d3:82:16:ed:51:d7:ed:20:
4f:2b:8e:07:61:cf:2c:6d:54:77:cd:7b:65:ce:8e:19:2f:c8:
52:64:28:41:43:e3:5a:23:1c:0d:0b:75:b7:6a:c2:1f:40:12:
64:75:6a:d0:47:3f:5c:ad:28:fc:e2:20:19:ec:e9:fe:6e:cb:
43:92:8b:48:75:d0:f8:bc:89:d9:37:04:57:d0:80:6a:82:14:
ac:37:b0:9c:69:43:55:e6:28:fa:8d:b9:95:01:67:97:53:32:
d8:66:19:5a:05:cf:0e:1a:5c:ca:a5:29:bf:15:72:05:7b:77:
fd:a3:a3:74:ac:be:29:c7:82:30:be:0a:a7:0e:64:1b:dd:2d:
55:37:1e:8d:e4:98:2a:87:2f:9a:25:7a:c4:95:13:51:53:d6:
ca:09:15:8a:cd:76:ef:f8:2d:59:cb:1e:20:ab:33:c2:32:7d:
5b:6c:65:0e:a1:2c:81:1b:07:ae:08:5c:1c:ee:2e:0e:6a:1b:
20:e4:b0:7d:e6:4a:8f:98:95:a8:e3:94:16:d1:68:82:8a:67:
16:91:84:e4:75:3a:0e:ff:e3:fe:ac:b8:90:c7:d4:42:0d:b0:
0d:ab:a2:61:c0:29:4f:8d:73:5d:53:eb:09:b0:3e:54:26:f8:
39:f5:6d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 07:58:56 2025 by rpki-client