Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: MdVj0vuk6jHDC9R5IVYWLC4Wmow4u080rkf88dnoAK0=
Subject key identifier: 91:E0:5A:2F:FD:E2:46:1E:B4:88:EF:9C:6D:1A:78:F8:D6:3B:F7:75
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 01977A1D1DE4B77064308A0838180C0AF0BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 0206
Signing time: Mon 16 Jun 2025 19:00:17 +0000
Manifest this update: Mon 16 Jun 2025 19:00:17 +0000
Manifest next update: Tue 17 Jun 2025 19:00:17 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: bJSevI7fr6vDagHTwmfkm2pWJHFrptBzAENENv42t50=)
2: bQzf2uMGkgXH3X2QS8uIrSp74eU.roa (hash: YLxBLk8jjfgkyujII1/AehF/PxCPTNN02Psu8lVMfcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:1d:1d:e4:b7:70:64:30:8a:08:38:18:0c:0a:f0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Jun 16 19:00:17 2025 GMT
Not After : Jun 17 19:00:17 2025 GMT
Subject: CN=91e05a2ffde2461eb488ef9c6d1a78f8d63bf775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ca:3d:14:17:63:07:d5:85:24:37:db:2b:39:
e3:b9:fe:86:d7:75:30:e5:1f:4a:1f:18:7c:da:5a:
29:70:88:b8:0a:f6:4f:30:76:03:c9:ee:45:6d:d0:
cf:f9:15:d6:6a:cc:18:2b:90:7c:82:d1:ce:ef:6d:
cb:fb:54:c2:b7:f5:81:5f:b6:03:94:04:5f:ff:d3:
7f:1b:d9:cb:69:ae:45:cc:26:27:aa:33:3b:63:0b:
ad:87:bf:25:e9:01:f6:d0:88:6c:43:09:37:15:34:
13:a6:b8:f2:36:90:0b:16:c5:70:c0:d0:0e:55:15:
3c:dc:86:6d:d1:dd:da:1b:01:60:34:d8:0d:5a:f3:
0c:c4:df:16:98:6a:ad:69:bb:c9:b4:e6:90:9f:f8:
98:32:9c:7e:ed:53:ae:b1:97:9b:af:02:6f:4b:00:
77:b4:bc:19:4c:a2:38:82:2f:bb:39:d1:c6:9a:72:
c6:61:0c:9f:8e:bf:a8:69:28:1a:bc:4e:21:48:67:
50:57:23:2e:92:31:50:74:90:d9:9e:46:5b:48:87:
bb:39:04:8c:6f:4e:37:fb:1e:66:7a:24:f4:1c:1a:
3f:78:f5:d4:a3:26:97:69:b6:a3:33:c0:c4:8b:8e:
eb:b9:37:47:dc:00:22:3c:39:98:66:71:08:6c:ea:
a4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E0:5A:2F:FD:E2:46:1E:B4:88:EF:9C:6D:1A:78:F8:D6:3B:F7:75
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:b3:76:71:ba:b3:07:59:ba:7c:2d:d6:fb:05:38:68:e1:21:
21:10:fb:ed:6c:11:a4:a8:99:95:3b:86:43:fe:96:68:63:ab:
59:78:46:fe:2d:33:3a:6d:fb:74:f3:bf:ab:a5:e2:37:07:72:
95:35:ac:2d:de:dd:2f:81:d0:76:64:2c:ba:c8:b3:dd:9a:7b:
07:98:5d:71:64:b3:22:eb:3e:ce:1e:82:ca:28:0e:63:4a:23:
19:b7:21:8d:55:41:c4:62:db:bd:05:8d:8c:e1:0e:0a:b1:50:
a7:6a:72:22:17:b4:7e:e2:3b:71:b3:86:3e:d8:6d:46:3c:20:
d2:bd:9c:f8:63:22:c3:37:5e:df:fd:eb:4e:6a:7f:3d:91:1c:
7a:42:18:74:b4:bf:9f:5f:af:b2:11:cc:98:77:9e:e0:7c:ee:
39:17:32:de:e3:6b:24:9b:ad:cf:23:d6:8a:8f:8c:a7:16:b3:
67:c1:66:f1:34:4a:b7:ad:37:69:de:77:11:f8:a8:ce:cf:2e:
21:0e:18:0a:af:c7:f5:15:1d:5e:bb:5f:7b:a4:4a:d9:34:e5:
17:e4:9d:32:aa:4c:b3:3e:02:46:f2:55:4e:92:a0:9b:7f:38:
6b:ae:99:c2:61:d6:27:dd:68:d1:4a:a5:20:1f:11:27:42:3a:
a6:c4:f4:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd6HR3kt3BkMIoIOBgMCvC9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NDI3NTlhMDRmY2ZkOWRkMzg2NDg2ZjA0ODIwZTRhMDYw
Mzk3ZjIwHhcNMjUwNjE2MTkwMDE3WhcNMjUwNjE3MTkwMDE3WjAzMTEwLwYDVQQD
Eyg5MWUwNWEyZmZkZTI0NjFlYjQ4OGVmOWM2ZDFhNzhmOGQ2M2JmNzc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8o9FBdjB9WFJDfbKznjuf6G13Uw
5R9KHxh82lopcIi4CvZPMHYDye5FbdDP+RXWaswYK5B8gtHO723L+1TCt/WBX7YD
lARf/9N/G9nLaa5FzCYnqjM7Ywuth78l6QH20IhsQwk3FTQTprjyNpALFsVwwNAO
VRU83IZt0d3aGwFgNNgNWvMMxN8WmGqtabvJtOaQn/iYMpx+7VOusZebrwJvSwB3
tLwZTKI4gi+7OdHGmnLGYQyfjr+oaSgavE4hSGdQVyMukjFQdJDZnkZbSIe7OQSM
b043+x5meiT0HBo/ePXUoyaXabajM8DEi47ruTdH3AAiPDmYZnEIbOqktwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJHgWi/94kYetIjvnG0aePjWO/d1MB8GA1UdIwQY
MBaAFAhCdZoE/P2d04ZIbwSCDkoGA5fyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEt
NzAyNWUxODgwNjhjLzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEtNzAyNWUxODgwNjhj
LzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWLN2cbqz
B1m6fC3W+wU4aOEhIRD77WwRpKiZlTuGQ/6WaGOrWXhG/i0zOm37dPO/q6XiNwdy
lTWsLd7dL4HQdmQsusiz3Zp7B5hdcWSzIus+zh6CyigOY0ojGbchjVVBxGLbvQWN
jOEOCrFQp2pyIhe0fuI7cbOGPthtRjwg0r2c+GMiwzde3/3rTmp/PZEcekIYdLS/
n1+vshHMmHee4HzuORcy3uNrJJutzyPWio+MpxazZ8Fm8TRKt603ad53Efiozs8u
IQ4YCq/H9RUdXrtfe6RK2TTlF+SdMqpMsz4CRvJVTpKgm384a66ZwmHWJ91o0Uql
IB8RJ0I6psT0Pg==
-----END CERTIFICATE-----
Generated at Tue Jun 17 03:28:12 2025 by rpki-client