Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: d8NqGA9kVbLkJxH/hXxeOLfn+tzevIi0mBJ1M9Utktw=
Subject key identifier: 30:4F:8B:7C:B1:F3:D7:33:74:A7:5F:E6:4F:6D:EA:58:8F:2F:C6:EF
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 0198733D644DDC996F15490A50FEC8524370
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 0287
Signing time: Mon 04 Aug 2025 04:00:59 +0000
Manifest this update: Mon 04 Aug 2025 04:00:59 +0000
Manifest next update: Tue 05 Aug 2025 04:00:59 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: BeZL9t/Qxxbpy50gSudBHfnORlu9YqUnpqFUVdl/T78=)
2: bQzf2uMGkgXH3X2QS8uIrSp74eU.roa (hash: YLxBLk8jjfgkyujII1/AehF/PxCPTNN02Psu8lVMfcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:64:4d:dc:99:6f:15:49:0a:50:fe:c8:52:43:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Aug 4 04:00:59 2025 GMT
Not After : Aug 5 04:00:59 2025 GMT
Subject: CN=304f8b7cb1f3d73374a75fe64f6dea588f2fc6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b6:ff:e5:a3:0d:01:e6:ef:55:22:c9:81:82:
19:60:32:60:5d:7a:68:84:44:fa:3f:9a:bb:14:f2:
49:00:5f:a3:b4:4f:60:e2:5b:bb:10:4c:c5:02:01:
1b:dd:72:ae:5d:0e:04:aa:34:1a:16:e0:fe:ab:56:
32:97:23:54:13:ec:db:a8:0d:d1:45:3d:05:86:42:
02:e8:89:8b:50:d4:28:59:38:14:23:48:69:b9:44:
fe:3d:60:a0:ca:5f:f0:5a:e8:34:08:84:ff:0e:00:
ea:4b:82:78:50:da:66:3e:56:31:37:ef:79:82:7f:
5d:0d:ff:3d:8d:eb:4c:e1:a0:2a:5d:c0:62:53:8f:
a9:71:80:53:fc:d5:2f:2d:4b:98:71:bc:d3:bc:f6:
eb:e9:5a:5c:58:79:5f:93:dc:df:bc:65:6f:15:42:
7c:d4:99:2f:92:05:4e:77:29:2e:98:38:46:cb:dc:
66:f7:d9:d6:9b:8c:26:34:4c:ac:4b:71:79:22:36:
c3:ba:02:42:b9:2e:d6:a3:b9:45:bf:10:1e:e2:b6:
22:c3:c1:54:a9:52:1f:24:4a:b8:7e:54:b0:07:94:
a7:bd:f6:b6:7a:8b:37:d3:d4:d7:b9:f8:c7:2c:d1:
d5:76:cb:6a:d4:5b:ab:91:27:87:e7:b5:2b:79:11:
61:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:4F:8B:7C:B1:F3:D7:33:74:A7:5F:E6:4F:6D:EA:58:8F:2F:C6:EF
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:81:ee:f5:80:db:a4:13:c7:d9:78:7e:2a:0e:78:33:33:cb:
27:f4:07:60:6c:41:e6:47:cd:d1:c8:94:32:5f:bf:53:27:19:
4a:7e:f6:fd:b5:44:fc:b2:97:74:54:02:11:9e:0b:89:3e:05:
d2:68:1c:b3:24:7c:77:17:17:28:df:f9:19:85:64:89:13:25:
b7:1f:87:cd:97:76:68:35:fd:e2:79:a9:5c:a0:97:62:3f:a7:
8f:55:93:42:3a:26:24:68:2a:6d:49:f0:5d:4c:f2:33:85:0b:
fa:60:cd:1b:ef:b3:84:6c:fd:c0:c0:0b:e0:9c:77:bd:6f:8d:
22:b4:85:28:22:3c:9e:7a:7d:55:da:06:ae:30:e5:57:80:52:
cf:7f:80:9b:be:1e:cb:fa:33:3d:fe:c6:aa:4c:a4:e1:09:93:
8c:02:9e:af:d6:90:42:d9:8f:f6:01:a9:5b:c6:b4:95:fa:d4:
80:01:49:a3:5b:42:b7:e9:a7:b8:1a:85:df:5e:94:60:c6:ce:
89:fa:bb:41:89:19:f7:59:17:fd:03:cb:50:ad:ef:af:fb:84:
36:6f:57:01:bb:65:fc:a1:a0:f3:dd:f7:bc:f0:20:56:2b:52:
79:3b:8e:27:de:aa:74:2e:a3:dd:6e:39:14:8e:36:b4:35:6c:
f0:d4:d6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:15:05 2025 by rpki-client