Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
File: ceWC839BZJjBi2YkjevM8iQavHY.mft (raw, json)
Hash identifier: Oq6BpICal3jnvULwhjPDBQXcw7PPNBs+iWBqgWi0VsI=
Subject key identifier: 0C:26:88:E5:D1:B8:95:81:E2:EC:D8:07:D9:4D:90:EA:90:2A:AF:D8
Authority key identifier: 71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
Certificate issuer: /CN=71e582f37f416498c18b66248debccf2241abc76
Certificate serial: 019747B07617B970714E221666FB97D520DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
Manifest number: 0517
Signing time: Sat 07 Jun 2025 00:00:36 +0000
Manifest this update: Sat 07 Jun 2025 00:00:36 +0000
Manifest next update: Sun 08 Jun 2025 00:00:36 +0000
Files and hashes: 1: 3JlcQxD2NXWLaEj6J42YSdi1quE.roa (hash: ZFdShZLQiri1BeTMte27QBSxcmd4A78sb6jnkkO6l9s=)
2: ceWC839BZJjBi2YkjevM8iQavHY.crl (hash: XzHHPIapZ2LvhfpBfYUP/RXf/bLfmUZu8bO5OKvyfDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:76:17:b9:70:71:4e:22:16:66:fb:97:d5:20:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71e582f37f416498c18b66248debccf2241abc76
Validity
Not Before: Jun 7 00:00:36 2025 GMT
Not After : Jun 8 00:00:36 2025 GMT
Subject: CN=0c2688e5d1b89581e2ecd807d94d90ea902aafd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ed:aa:d4:f0:30:88:41:5e:b0:9b:d9:23:e0:
c6:f5:cd:11:0d:99:03:04:01:fb:03:24:18:79:77:
e7:6e:b6:79:1b:dc:93:57:8b:8b:f3:e6:c1:a1:57:
ac:5b:e5:f4:4d:5c:3e:e4:f7:67:76:ec:45:e2:8c:
16:fc:2b:a9:06:40:32:64:8e:a1:98:f7:93:2e:aa:
96:2f:1f:80:c2:f9:a0:25:cf:f4:1b:8b:54:b4:14:
72:d7:44:90:04:51:dd:1d:21:33:bd:41:b6:e2:f2:
2f:12:57:3b:32:4f:1b:d5:bb:ea:e2:a1:fa:17:b7:
09:3a:38:32:46:3b:da:e3:15:ee:29:e9:a6:41:6c:
76:c6:fe:77:4b:c1:40:66:1d:54:83:6d:0c:ac:cc:
a7:a5:bd:62:a3:a7:cd:23:42:49:89:28:40:4a:ee:
a5:73:13:51:53:86:9a:42:bc:9f:bd:db:86:fa:d3:
c5:9c:08:71:4f:52:d7:43:29:b4:86:72:69:da:f9:
86:8e:2e:d4:e0:5e:0c:8c:e5:18:4a:d5:f3:b6:bb:
f2:16:24:54:86:76:c4:aa:6d:7c:d8:a3:46:c6:cd:
b9:50:c4:8a:34:6a:66:ce:b5:0e:eb:ee:c4:ad:69:
23:d5:a8:5f:53:4c:31:c2:05:c3:27:f8:4a:51:30:
20:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:26:88:E5:D1:B8:95:81:E2:EC:D8:07:D9:4D:90:EA:90:2A:AF:D8
X509v3 Authority Key Identifier:
keyid:71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:d4:3c:3f:62:10:6a:b7:c5:eb:21:56:20:e4:70:df:c0:93:
97:af:5d:1a:3e:5d:5d:9c:e5:bf:b0:68:1f:66:d6:95:b5:a3:
da:de:76:e7:d5:92:20:40:c0:3f:73:a1:49:ef:ec:e3:ac:4d:
16:6c:b1:16:ef:5b:8e:e5:58:0f:c0:83:f1:d3:e7:92:f3:fd:
d7:4e:30:60:04:40:c5:cc:6a:1c:a7:55:97:11:03:b0:f5:3a:
de:eb:a4:bd:0d:ec:1f:07:c6:45:c4:be:c7:8b:f1:2f:d4:bc:
df:5b:e9:8d:e5:92:54:fd:bb:f7:4e:b8:2d:3b:2a:f5:df:31:
3a:93:70:ee:71:ea:cf:56:03:b0:18:b0:fb:cb:7a:75:6f:68:
9e:a3:bd:cf:b5:ff:7e:3a:ce:d1:40:d4:a5:e3:72:90:7a:1b:
cf:47:7e:b9:55:e9:c1:40:d3:6b:26:00:bb:70:98:41:66:c1:
9c:17:53:a5:43:d6:55:d2:60:19:8f:44:b1:2d:36:ba:5e:bb:
88:b2:07:3d:d0:6b:43:8b:51:d5:a4:bb:2c:03:4c:e5:43:75:
ff:08:25:aa:ed:20:b7:d5:23:b0:35:18:b5:44:88:d7:be:6f:
ac:b3:07:d7:f1:6d:1b:83:38:ba:d9:d3:cc:64:22:ea:1f:f3:
0d:c9:57:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:26:01 2025 by rpki-client