Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json)
Hash identifier: n6WHR8kHgLrDY1Ja7+MnudGIz/kE3bXgDmiRwTYoIWY=
Subject key identifier: CE:44:3A:A2:D1:81:44:62:54:28:5A:75:15:2C:9C:B9:5A:ED:72:AD
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: 01993236A346DBA70CE8198A9F20017D5EC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
Manifest number: 0F8D
Signing time: Wed 10 Sep 2025 06:01:05 +0000
Manifest this update: Wed 10 Sep 2025 06:01:05 +0000
Manifest next update: Thu 11 Sep 2025 06:01:05 +0000
Files and hashes: 1: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: Kf59JNxD/nHjmqgrwqIjmhe80ykqmq9MZW0zSa+o2Is=)
2: WXokG7cKriDfqWoaHraaATikOZM.roa (hash: l03IsJpcA1hZ2SxrPxTFFWqboVv9JIckV/GXuLQrkcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 06:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:36:a3:46:db:a7:0c:e8:19:8a:9f:20:01:7d:5e:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Sep 10 06:01:05 2025 GMT
Not After : Sep 11 06:01:05 2025 GMT
Subject: CN=ce443aa2d181446254285a75152c9cb95aed72ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:77:4c:a8:bb:6d:9e:e2:a1:4e:0a:8b:96:bb:
62:b2:63:87:28:81:f2:29:c3:28:44:7f:30:a6:9a:
c2:de:fb:d8:12:7b:f4:14:a1:9f:08:35:fa:d2:fe:
1a:54:71:70:65:63:de:f6:d4:b2:7d:25:ef:b1:3d:
8a:b3:b5:7c:9f:55:cc:f7:bd:ac:9c:43:c2:04:40:
80:16:74:15:cc:49:67:19:71:af:d5:9b:49:24:3a:
62:25:22:5b:5a:94:f1:54:ee:bf:1a:6f:9f:83:a2:
63:32:8b:5a:e7:bb:7c:a3:68:99:f6:a6:d0:fd:cb:
77:a7:34:0a:13:f3:ae:a0:82:52:5d:eb:7b:fb:89:
72:b1:89:f1:dc:7c:75:77:6d:66:5d:49:f4:63:54:
0d:bf:50:9f:47:f9:f6:48:a8:13:49:34:a4:bb:61:
b5:12:06:4c:c7:4f:80:98:8d:f9:66:c0:99:b5:24:
b2:d6:43:ec:6e:01:c8:62:95:2a:f3:25:9f:36:93:
e9:a9:a0:e7:c5:00:f0:4d:ce:cd:27:26:57:86:56:
41:ac:6d:fe:55:86:e3:6b:6b:36:2e:a2:6c:11:f8:
f9:12:d0:65:2d:9c:29:c0:4b:f9:89:25:55:d0:58:
68:c3:10:36:8f:f4:05:e8:86:3f:85:72:31:e3:87:
3e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:44:3A:A2:D1:81:44:62:54:28:5A:75:15:2C:9C:B9:5A:ED:72:AD
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:7a:3b:fa:51:5b:f5:58:32:18:4a:d9:4d:0b:5f:ba:30:f4:
d2:03:40:ef:5d:48:79:e6:81:34:c2:86:ae:90:3c:ef:1e:2a:
86:f8:d1:9a:4d:7a:b8:f7:ec:78:f5:42:76:d2:b1:da:0e:1a:
59:62:8e:c4:41:f7:14:61:e0:96:99:28:79:a6:18:b2:d2:e1:
5d:47:50:f7:81:82:32:b2:63:95:3c:65:47:aa:b3:4f:a5:26:
4c:52:8f:ad:74:7c:5b:25:0f:d4:8a:dd:1a:21:97:c6:39:25:
b3:78:e4:cd:67:d2:28:04:21:46:e0:bd:6d:6a:73:5b:a7:70:
34:9a:98:92:1f:d2:a3:4c:0b:91:67:15:5d:3a:fa:33:30:5f:
22:26:a6:04:b9:fc:a9:de:f0:36:be:20:e4:2b:35:87:e0:1b:
7b:c8:d7:46:db:ee:2b:2c:74:60:49:bb:62:c8:54:57:bf:50:
e7:d3:0c:f4:f0:05:fe:82:0f:2c:73:92:58:90:0a:a2:42:55:
6d:77:de:e5:1e:fd:b0:b5:6e:68:65:09:e1:bf:d4:81:5a:bc:
6f:4c:07:e8:67:d8:a5:22:6d:b2:e5:94:28:b7:1e:77:41:f1:
50:48:53:54:ba:ef:74:a2:d8:3e:56:72:dd:4c:b1:22:46:d8:
9a:89:19:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 14:27:14 2025 by rpki-client