Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: sfxdywA2CHSjGB269EPId8GQCu8ptADcaCfsXTIdSy4=
Subject key identifier: 21:F7:45:32:2A:8B:B8:55:C0:F4:A1:4F:5C:22:FE:BF:2F:70:41:7E
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 01974BC40E1E5AA916C95CD4F3555953EC7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 01EE
Signing time: Sat 07 Jun 2025 19:00:29 +0000
Manifest this update: Sat 07 Jun 2025 19:00:29 +0000
Manifest next update: Sun 08 Jun 2025 19:00:29 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: ctpaWE7/N1MZEj59W/O5AdZFEbqws6fgfMpLvuuH4E8=)
2: bQzf2uMGkgXH3X2QS8uIrSp74eU.roa (hash: YLxBLk8jjfgkyujII1/AehF/PxCPTNN02Psu8lVMfcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:0e:1e:5a:a9:16:c9:5c:d4:f3:55:59:53:ec:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Jun 7 19:00:29 2025 GMT
Not After : Jun 8 19:00:29 2025 GMT
Subject: CN=21f745322a8bb855c0f4a14f5c22febf2f70417e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:57:d7:0d:51:25:94:89:b1:18:dd:4d:fd:ce:
e7:4b:b7:ee:88:cd:a5:1e:68:17:e1:00:fe:13:66:
89:01:8b:e9:3c:a5:e5:12:7c:44:27:92:f9:c3:c3:
2a:47:94:d7:23:45:35:f5:10:db:13:87:8e:dd:24:
c1:18:ad:7d:19:dc:ef:43:58:23:39:94:37:78:b8:
94:44:a3:e1:5d:0c:57:d6:f1:f9:0e:23:85:75:c1:
b0:7e:2a:c1:d9:35:12:cb:49:3d:8c:e8:77:b6:45:
2d:f8:55:fe:6d:4a:b9:fc:67:e8:2e:65:5f:a9:3d:
7d:ab:96:51:46:11:0c:24:4d:20:2e:ca:84:3d:73:
f4:aa:71:8f:87:4d:6c:a4:18:55:ea:da:07:53:db:
02:e5:9f:c2:73:bf:b8:2a:63:91:d1:eb:47:40:66:
9c:a3:e7:95:df:71:17:37:90:43:d0:0e:c2:77:82:
7b:18:6f:05:30:ca:61:13:e7:a8:b7:fb:66:0e:5a:
f1:ba:c2:28:a2:65:9f:11:e4:bb:c5:96:f6:7c:83:
66:78:3d:f5:57:85:fd:63:4c:58:2a:d2:92:05:cf:
b5:99:42:df:5d:d3:23:90:e8:85:49:b0:df:ea:a2:
73:76:8c:49:f6:b5:68:82:53:8d:fc:d9:c6:5e:63:
2f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F7:45:32:2A:8B:B8:55:C0:F4:A1:4F:5C:22:FE:BF:2F:70:41:7E
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:44:a1:eb:f6:8f:16:a2:52:e8:e0:44:15:2a:c6:85:0b:e6:
fb:45:1f:13:61:46:e2:1a:ba:10:84:39:de:89:5a:51:4b:f3:
ab:ca:40:e0:a7:99:5a:3d:0f:d3:ec:ae:d0:ab:2e:dc:7b:78:
1f:e5:93:bf:f0:81:62:a1:63:cb:b3:8f:4a:e7:f9:70:90:88:
53:bc:23:79:cc:2f:85:75:d1:0c:30:04:82:dc:cd:31:63:21:
e9:6b:b3:34:04:c1:fe:b5:a8:10:03:2c:78:e0:c9:d4:40:3e:
59:ea:5f:2d:b1:62:4d:0a:9f:75:ce:5c:9c:5a:c1:7b:27:4e:
69:f7:7a:af:14:16:ab:3c:ab:ac:8a:46:2d:90:85:9c:da:18:
75:57:0a:b6:b8:ab:98:ce:9e:fe:f7:33:ba:9f:53:ce:e9:9e:
08:ed:da:4a:68:d1:c9:39:4a:b6:0b:b2:b3:65:aa:33:fb:f8:
dd:7e:ed:00:59:92:34:88:4c:bc:e8:b5:ab:2a:2e:ec:4a:e2:
5c:26:83:12:a8:b3:e8:f4:64:f8:fb:81:b4:79:66:bc:0b:f8:
fa:48:22:37:67:32:33:51:4e:ce:51:55:63:fd:7a:d1:76:f0:
c1:d7:3c:c1:16:37:de:1e:cd:fd:f2:e3:9d:67:4b:97:77:78:
36:e1:7f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:26:32 2025 by rpki-client