Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
File: ceWC839BZJjBi2YkjevM8iQavHY.mft (raw, json)
Hash identifier: 1p9HXZkZPMt9dnrZBOeMR/qdtzK+jdtaSvI9fDHN6pw=
Subject key identifier: 81:DF:8D:58:02:3B:DB:FF:C2:1B:BC:67:18:CA:DE:51:B4:17:D9:93
Authority key identifier: 71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
Certificate issuer: /CN=71e582f37f416498c18b66248debccf2241abc76
Certificate serial: 01993BDE387C74909915FB5C34B9FCCBD7AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
Manifest number: 061A
Signing time: Fri 12 Sep 2025 03:00:43 +0000
Manifest this update: Fri 12 Sep 2025 03:00:43 +0000
Manifest next update: Sat 13 Sep 2025 03:00:43 +0000
Files and hashes: 1: 3JlcQxD2NXWLaEj6J42YSdi1quE.roa (hash: ZFdShZLQiri1BeTMte27QBSxcmd4A78sb6jnkkO6l9s=)
2: ceWC839BZJjBi2YkjevM8iQavHY.crl (hash: WeUb8SicltoQqkZo3c4Tl/LPmKireVcCxsI3YKHAqPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 21:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3b:de:38:7c:74:90:99:15:fb:5c:34:b9:fc:cb:d7:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71e582f37f416498c18b66248debccf2241abc76
Validity
Not Before: Sep 12 03:00:43 2025 GMT
Not After : Sep 13 03:00:43 2025 GMT
Subject: CN=81df8d58023bdbffc21bbc6718cade51b417d993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2c:c9:ce:dc:cb:2c:f1:f4:40:1e:18:46:fa:
51:9a:fe:ee:3c:c8:32:86:3d:69:93:d3:68:4b:b8:
94:6c:45:6f:bf:21:a7:69:b1:ab:60:6b:27:56:af:
ec:5a:14:8a:63:3b:52:da:63:3c:c5:5d:d6:9c:35:
bb:12:f3:83:c9:ae:3e:d5:c5:2c:1d:2e:77:8b:df:
57:44:10:75:7d:be:97:a8:14:4a:e9:33:0a:2a:fe:
f2:1b:5e:cf:b3:5c:9e:a2:c4:30:79:18:f3:c6:9b:
c7:3a:a9:e7:b1:d4:c1:b5:b8:16:fe:3b:0b:e8:9d:
b3:65:df:40:6d:bf:61:a9:09:46:62:d7:d7:e0:fb:
bf:90:1d:16:d7:67:fa:b8:0e:d5:a7:fb:e8:8f:b0:
35:4b:66:fd:55:76:e9:10:a2:3e:69:4d:6a:85:14:
8c:f0:75:27:e6:f1:c4:de:07:1a:79:3d:1c:e4:05:
8f:eb:ba:87:fe:89:77:ae:4d:06:8e:f2:0f:d1:1b:
45:2f:66:8a:e1:11:c6:70:37:d6:21:0a:be:1b:5f:
80:64:64:c6:39:01:6e:e5:9a:74:50:f5:68:ac:fb:
3f:65:dd:14:25:c3:d9:bb:47:b2:50:3b:40:8b:6c:
8e:d6:14:c9:41:20:b8:be:64:5d:13:2b:46:c7:80:
39:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:DF:8D:58:02:3B:DB:FF:C2:1B:BC:67:18:CA:DE:51:B4:17:D9:93
X509v3 Authority Key Identifier:
keyid:71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:4e:fb:e6:3d:e5:ff:d3:7c:33:62:4e:61:42:ef:85:32:42:
d0:b3:6e:ed:24:6c:98:c5:15:21:36:f0:e4:18:c6:e8:96:a3:
ce:38:c4:89:f5:94:20:df:b3:82:5c:93:fc:e7:cc:36:a6:2c:
03:17:86:55:e7:cf:dc:a3:9a:25:77:8a:dd:aa:5e:e7:1b:86:
6d:81:f8:3b:36:1c:fc:66:bc:ae:60:19:46:18:f2:61:2c:61:
19:47:33:30:29:77:31:ca:ad:9f:b2:55:df:43:f8:a3:25:c6:
fe:7f:08:55:20:3d:c8:70:b1:11:6f:44:dc:9d:3b:38:0c:20:
df:4a:28:29:53:ce:c7:de:7b:4d:c2:85:74:92:70:6c:d0:4d:
33:e6:c5:80:83:4c:c7:6a:b6:17:20:a5:c1:cb:44:3c:00:3e:
e6:ab:22:31:18:12:9c:b5:13:6e:57:54:ca:c4:53:bd:b1:f1:
66:c1:4d:a7:d6:c7:f4:9c:ba:a2:ac:ce:c7:7e:4c:83:b7:6c:
ce:cf:e5:e5:87:fe:0f:8d:1b:f4:22:bf:81:54:86:16:75:b4:
1d:73:1f:04:cd:71:d0:06:25:e7:20:ed:8a:6d:67:c0:89:3d:
7a:cf:53:76:59:ac:b8:86:65:9b:df:dd:8d:50:36:c5:52:cc:
fa:85:ea:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 12 05:40:31 2025 by rpki-client