Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: 40EZrrE0agEcpn8oinPuhJQwID0ISk3KBY/zv70Ru+w=
Subject key identifier: C6:ED:35:69:E5:26:71:F5:6E:88:0D:BC:03:00:AF:0B:7A:19:28:83
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 019A0DF0029FB1242781B473968F9FC35E6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 035C
Signing time: Wed 22 Oct 2025 22:00:24 +0000
Manifest this update: Wed 22 Oct 2025 22:00:24 +0000
Manifest next update: Thu 23 Oct 2025 22:00:24 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: q8AkFJe5h0wrpB3viWwudWwvDLRajfhiLnV1YhOmDHA=)
2: hwJf6VumQco-ZneET3L8ACOfvX8.roa (hash: EcoD8v/r1aMC/ov7E8diQalSosE5t0EwMU8AArCBREA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0d:f0:02:9f:b1:24:27:81:b4:73:96:8f:9f:c3:5e:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Oct 22 22:00:24 2025 GMT
Not After : Oct 23 22:00:24 2025 GMT
Subject: CN=c6ed3569e52671f56e880dbc0300af0b7a192883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6c:e1:5c:a4:4a:11:65:0f:26:f4:c1:e1:43:
66:2c:19:0a:3f:8c:6c:d6:b0:0e:81:c2:b6:09:b3:
6d:a8:71:f6:8b:68:66:0d:fb:7a:87:f6:3f:c8:98:
29:91:6f:b0:19:b5:d6:a0:0e:9b:3e:37:14:db:dc:
ec:be:8e:bb:0c:ef:15:36:d9:84:24:6b:bb:72:56:
0e:75:79:55:eb:1d:de:f9:6b:a0:e6:fb:3e:b0:a7:
78:79:4e:c5:c8:22:83:99:92:5a:ac:7b:f7:21:9c:
0b:09:e6:d4:5c:35:55:3f:6b:5a:ab:c9:c5:29:8d:
34:bb:d5:9c:fa:59:99:c4:2a:0e:96:b9:05:e6:5b:
29:25:77:1f:bb:ea:f4:df:c6:56:78:e5:5c:21:2c:
be:1d:77:24:cd:44:3c:e2:b8:68:bc:0d:e2:1a:65:
4a:89:42:85:fd:de:63:2c:a7:1e:20:cf:17:f4:4e:
ef:a6:95:82:27:d5:e1:0f:c4:82:9e:ab:fb:de:1c:
eb:d4:89:1a:22:e4:fa:2f:6a:4b:79:b1:17:ea:b9:
c7:eb:28:25:63:39:28:9f:61:0b:40:96:7e:a3:0e:
de:7c:54:42:7e:f9:bc:ee:71:3b:a0:aa:06:58:de:
8b:d9:b5:71:b4:a4:6e:84:6c:3e:c5:6e:5f:58:e3:
17:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:ED:35:69:E5:26:71:F5:6E:88:0D:BC:03:00:AF:0B:7A:19:28:83
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:98:fd:2a:89:97:23:2b:bb:b4:01:64:52:51:7d:c6:01:6c:
19:fc:ac:db:29:65:b0:50:fb:00:ab:4b:74:e5:21:7c:a7:5f:
9c:32:0e:89:33:bc:a5:88:67:07:1a:ee:41:aa:fe:35:74:e3:
1e:8d:b6:33:95:9b:96:f8:8d:8c:d5:bb:10:9e:2e:a3:80:26:
55:b0:a8:96:2e:44:b5:79:c7:5b:ff:d6:cb:85:5a:2d:c1:ed:
1b:bf:d1:a9:ce:2c:c7:2c:e0:c5:dd:d5:36:94:2c:fb:79:95:
7d:03:e5:d3:90:86:e2:47:8f:b9:25:61:da:e5:a0:dc:c7:52:
af:00:b2:65:2e:d3:0e:26:0d:95:0b:d6:56:a7:fa:fc:fc:bf:
20:5d:85:42:62:86:00:1e:27:50:c9:99:26:f7:13:45:3d:da:
1e:48:43:1f:04:8d:a8:4b:9d:59:50:3a:ff:2b:05:9c:26:66:
ee:2a:cc:a7:26:27:63:49:1b:23:7d:56:35:c5:38:c4:da:78:
a2:6e:6b:8f:e4:ad:35:ae:6a:c6:22:b4:d8:35:d3:57:20:0d:
b3:91:b3:0b:bd:c7:d8:fa:51:2f:98:71:82:9e:7a:e5:bd:ef:
59:47:c2:0b:ee:99:a8:24:21:3b:99:3a:c7:18:96:93:29:36:
97:bc:3d:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoN8AKfsSQngbRzlo+fw15qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NDI3NTlhMDRmY2ZkOWRkMzg2NDg2ZjA0ODIwZTRhMDYw
Mzk3ZjIwHhcNMjUxMDIyMjIwMDI0WhcNMjUxMDIzMjIwMDI0WjAzMTEwLwYDVQQD
EyhjNmVkMzU2OWU1MjY3MWY1NmU4ODBkYmMwMzAwYWYwYjdhMTkyODgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGzhXKRKEWUPJvTB4UNmLBkKP4xs
1rAOgcK2CbNtqHH2i2hmDft6h/Y/yJgpkW+wGbXWoA6bPjcU29zsvo67DO8VNtmE
JGu7clYOdXlV6x3e+Wug5vs+sKd4eU7FyCKDmZJarHv3IZwLCebUXDVVP2taq8nF
KY00u9Wc+lmZxCoOlrkF5lspJXcfu+r038ZWeOVcISy+HXckzUQ84rhovA3iGmVK
iUKF/d5jLKceIM8X9E7vppWCJ9XhD8SCnqv73hzr1IkaIuT6L2pLebEX6rnH6ygl
Yzkon2ELQJZ+ow7efFRCfvm87nE7oKoGWN6L2bVxtKRuhGw+xW5fWOMXbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMbtNWnlJnH1bogNvAMArwt6GSiDMB8GA1UdIwQY
MBaAFAhCdZoE/P2d04ZIbwSCDkoGA5fyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEt
NzAyNWUxODgwNjhjLzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEtNzAyNWUxODgwNjhj
LzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU5j9KomX
Iyu7tAFkUlF9xgFsGfys2yllsFD7AKtLdOUhfKdfnDIOiTO8pYhnBxruQar+NXTj
Ho22M5WblviNjNW7EJ4uo4AmVbColi5EtXnHW//Wy4VaLcHtG7/Rqc4sxyzgxd3V
NpQs+3mVfQPl05CG4kePuSVh2uWg3MdSrwCyZS7TDiYNlQvWVqf6/Py/IF2FQmKG
AB4nUMmZJvcTRT3aHkhDHwSNqEudWVA6/ysFnCZm7irMpyYnY0kbI31WNcU4xNp4
om5rj+StNa5qxiK02DXTVyANs5GzC73H2PpRL5hxgp565b3vWUfCC+6ZqCQhO5k6
xxiWkyk2l7w9Nw==
-----END CERTIFICATE-----
Generated at Thu Oct 23 07:34:37 2025 by rpki-client