Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
File: CeVm4OteXiEQflX8lg-x7iGHRHQ.mft (raw, json)
Hash identifier: ucEjFnXLzfd0xvCmQD52vBKe2rKRhRmMbX6p2NpGJEM=
Subject key identifier: C1:B8:27:8E:FC:46:18:AA:F8:FD:A0:40:3D:BB:A6:86:26:66:78:4E
Authority key identifier: 09:E5:66:E0:EB:5E:5E:21:10:7E:55:FC:96:0F:B1:EE:21:87:44:74
Certificate issuer: /CN=09e566e0eb5e5e21107e55fc960fb1ee21874474
Certificate serial: 0199239EC9C7CC19FCC1A050358D38590756
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVm4OteXiEQflX8lg-x7iGHRHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
Manifest number: 14B9
Signing time: Sun 07 Sep 2025 10:00:32 +0000
Manifest this update: Sun 07 Sep 2025 10:00:32 +0000
Manifest next update: Mon 08 Sep 2025 10:00:32 +0000
Files and hashes: 1: CeVm4OteXiEQflX8lg-x7iGHRHQ.crl (hash: MJDwpKK2tfaPqq6APk5JqFcgOLkQind9zIvEYL7lpNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CeVm4OteXiEQflX8lg-x7iGHRHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:c9:c7:cc:19:fc:c1:a0:50:35:8d:38:59:07:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e566e0eb5e5e21107e55fc960fb1ee21874474
Validity
Not Before: Sep 7 10:00:32 2025 GMT
Not After : Sep 8 10:00:32 2025 GMT
Subject: CN=c1b8278efc4618aaf8fda0403dbba6862666784e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:76:a9:98:d7:ae:59:03:67:a3:ce:39:09:5c:
fc:10:d9:dc:eb:dd:a5:70:33:ec:84:0e:59:fe:cf:
6f:7c:0c:04:92:6c:b1:05:38:7c:47:53:66:84:69:
67:f5:2e:cc:b4:ec:aa:76:5a:7e:3c:52:d2:a7:9c:
a7:28:6d:02:6a:31:59:41:ce:66:81:18:01:85:eb:
86:a8:3a:2b:ed:a8:3f:c6:3e:25:ac:cb:f3:61:24:
72:43:49:ab:25:77:f4:41:ee:b6:5d:65:43:43:18:
bf:13:b1:78:a8:ad:3a:23:e6:1a:bf:bb:54:bf:f3:
5a:da:79:ab:13:4a:3d:5b:31:e9:17:d6:eb:e1:9f:
c5:ae:d9:5e:8f:3d:91:89:16:87:bf:6a:ec:2f:ca:
c8:14:ca:ef:30:39:11:dc:81:ee:c2:8b:f5:7e:40:
7d:7b:89:2a:c9:a9:ae:77:23:83:33:b6:70:06:12:
0a:ea:8f:02:a8:72:5a:ad:a8:13:b5:6c:4f:b4:cf:
3e:38:18:74:a6:a2:64:f9:ec:5a:68:89:f0:df:4b:
34:2a:bf:7c:be:1b:18:ba:4c:fb:ab:2a:0d:a5:e6:
33:52:b0:ee:b2:34:5d:fc:30:0a:e6:6f:62:51:0f:
b3:d9:74:96:a2:fd:85:d6:08:ef:df:fa:d7:76:b1:
49:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B8:27:8E:FC:46:18:AA:F8:FD:A0:40:3D:BB:A6:86:26:66:78:4E
X509v3 Authority Key Identifier:
keyid:09:E5:66:E0:EB:5E:5E:21:10:7E:55:FC:96:0F:B1:EE:21:87:44:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVm4OteXiEQflX8lg-x7iGHRHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:b6:cf:e3:d6:81:dd:c7:a6:13:0f:59:e4:f6:76:27:7b:14:
e4:70:93:26:39:f0:a3:c1:7e:78:b3:40:af:cd:26:4a:f7:9d:
b3:d9:52:ad:d8:ef:c6:18:cd:c0:2e:77:88:51:56:34:0c:ea:
b8:9b:fe:b8:b0:f8:43:78:44:b2:c4:b0:8b:a0:a4:ff:35:46:
bb:c4:44:79:d1:cc:0f:cf:34:c8:19:9a:c5:da:15:7b:34:72:
48:4c:f8:77:49:6b:af:f0:4f:e3:3a:dc:8e:7f:dc:c2:ef:8d:
39:81:67:80:2b:a4:4d:c7:91:0e:31:e1:a7:7e:c4:67:f4:5b:
3b:e0:89:71:8a:3c:7d:73:ad:ed:e9:c7:7e:bb:ea:ba:ad:c7:
aa:f3:ac:ea:92:f9:88:68:fa:33:9a:85:65:7b:a4:d7:9a:bf:
5b:d6:88:69:47:4e:0a:43:ba:73:4c:b8:eb:70:a4:dc:eb:24:
a8:9e:e9:f6:52:a0:0f:34:f5:4a:ed:e0:2c:e9:11:8f:f2:b7:
cf:4e:bf:a8:fa:79:33:af:50:56:fa:13:e3:56:39:e1:fd:36:
32:31:69:44:c3:37:96:8a:03:a5:14:b6:69:2f:11:e0:9e:59:
54:a1:af:06:89:9b:14:5a:5b:3f:c0:48:6c:ae:44:8d:bd:85:
26:2a:77:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjnsnHzBn8waBQNY04WQdWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZTU2NmUwZWI1ZTVlMjExMDdlNTVmYzk2MGZiMWVlMjE4
NzQ0NzQwHhcNMjUwOTA3MTAwMDMyWhcNMjUwOTA4MTAwMDMyWjAzMTEwLwYDVQQD
EyhjMWI4Mjc4ZWZjNDYxOGFhZjhmZGEwNDAzZGJiYTY4NjI2NjY3ODRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3apmNeuWQNno845CVz8ENnc692l
cDPshA5Z/s9vfAwEkmyxBTh8R1NmhGln9S7MtOyqdlp+PFLSp5ynKG0CajFZQc5m
gRgBheuGqDor7ag/xj4lrMvzYSRyQ0mrJXf0Qe62XWVDQxi/E7F4qK06I+Yav7tU
v/Na2nmrE0o9WzHpF9br4Z/Frtlejz2RiRaHv2rsL8rIFMrvMDkR3IHuwov1fkB9
e4kqyamudyODM7ZwBhIK6o8CqHJaragTtWxPtM8+OBh0pqJk+exaaInw30s0Kr98
vhsYukz7qyoNpeYzUrDusjRd/DAK5m9iUQ+z2XSWov2F1gjv3/rXdrFJvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMG4J478Rhiq+P2gQD27poYmZnhOMB8GA1UdIwQY
MBaAFAnlZuDrXl4hEH5V/JYPse4hh0R0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2VWbTRPdGVYaUVRZmxYOGxnLXg3aUdIUkhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8wMDA4Y2QtZTEyOS00MjRjLWI1YWYt
MGFmMWRlOGYxZmYxLzEvQ2VWbTRPdGVYaUVRZmxYOGxnLXg3aUdIUkhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8wMDA4Y2QtZTEyOS00MjRjLWI1YWYtMGFmMWRlOGYxZmYx
LzEvQ2VWbTRPdGVYaUVRZmxYOGxnLXg3aUdIUkhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALbbP49aB
3cemEw9Z5PZ2J3sU5HCTJjnwo8F+eLNAr80mSveds9lSrdjvxhjNwC53iFFWNAzq
uJv+uLD4Q3hEssSwi6Ck/zVGu8REedHMD880yBmaxdoVezRySEz4d0lrr/BP4zrc
jn/cwu+NOYFngCukTceRDjHhp37EZ/RbO+CJcYo8fXOt7enHfrvquq3HqvOs6pL5
iGj6M5qFZXuk15q/W9aIaUdOCkO6c0y463Ck3OskqJ7p9lKgDzT1Su3gLOkRj/K3
z06/qPp5M69QVvoT41Y54f02MjFpRMM3looDpRS2aS8R4J5ZVKGvBombFFpbP8BI
bK5Ejb2FJip32w==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:23 2025 by rpki-client