Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
File: N1_CEWNZalFHLA_xhKZJkdyDpsE.mft (raw, json)
Hash identifier: EMYr9iav1Dn/VpkNPLcKkJ7vZ/Li4+q2yAE0l6UBjQo=
Subject key identifier: D5:55:7B:11:6E:64:86:A2:99:F6:AC:9A:90:B8:05:BC:32:16:E4:B3
Authority key identifier: 37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
Certificate issuer: /CN=375fc21163596a51472c0ff184a64991dc83a6c1
Certificate serial: 01988F22A240FC9609C5A79199A03C9C9EF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
Manifest number: 0DF8
Signing time: Sat 09 Aug 2025 14:01:08 +0000
Manifest this update: Sat 09 Aug 2025 14:01:08 +0000
Manifest next update: Sun 10 Aug 2025 14:01:08 +0000
Files and hashes: 1: H84HwKjNe_aIYRNxZuH7G-Lr_Yg.roa (hash: BInhIf7xKGiyoM8/t65lkgiaRfMv7QEIqjDpHSYHK0c=)
2: N1_CEWNZalFHLA_xhKZJkdyDpsE.crl (hash: gKPh4du2FvT8ozqQuH9erwNzyKW1Sku2FvADP36bnLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:22:a2:40:fc:96:09:c5:a7:91:99:a0:3c:9c:9e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375fc21163596a51472c0ff184a64991dc83a6c1
Validity
Not Before: Aug 9 14:01:08 2025 GMT
Not After : Aug 10 14:01:08 2025 GMT
Subject: CN=d5557b116e6486a299f6ac9a90b805bc3216e4b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:13:13:2e:52:fd:3d:9c:b7:2c:54:b4:44:12:
8f:8c:1b:40:70:c8:46:0d:d0:80:d2:25:30:14:6f:
10:27:06:97:cd:f6:ac:3d:59:20:b5:2a:69:6e:d4:
4c:1b:04:f3:6d:aa:88:60:4e:59:55:46:53:99:7e:
59:9c:f5:96:d6:90:42:ba:c5:1d:8c:6d:e4:2a:ea:
fb:75:53:02:34:5d:2d:3d:04:f0:c1:46:cd:d0:d5:
36:1d:b6:74:be:94:6d:dc:1f:83:df:21:aa:18:4e:
df:62:a5:c9:cd:4f:a6:45:01:8d:6c:78:37:ca:94:
23:71:6c:46:ed:80:85:a1:4d:11:9f:e9:2d:69:11:
36:a1:28:a1:e1:20:cd:ba:f1:39:c1:9f:91:a0:58:
ff:db:98:6f:7b:77:35:14:d0:07:e1:dc:1c:07:5c:
72:5f:2d:a2:00:bf:72:30:3f:d9:e9:ef:8b:92:ff:
cd:d2:66:6d:50:bf:cc:fa:49:d0:4d:1f:78:0f:ad:
78:6f:3f:9f:75:eb:a7:82:56:41:a2:4d:6f:d7:c6:
f5:bf:eb:5e:fc:c6:d1:81:58:6a:72:ff:10:c7:88:
c5:a0:68:00:e1:41:a4:28:17:54:04:7a:e6:29:f6:
58:0c:9d:b8:4b:bc:27:22:72:43:35:1c:83:f8:ba:
01:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:55:7B:11:6E:64:86:A2:99:F6:AC:9A:90:B8:05:BC:32:16:E4:B3
X509v3 Authority Key Identifier:
keyid:37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:f8:81:44:03:a3:06:c3:60:5c:a2:b4:fc:1b:11:2c:f1:d6:
4c:3b:aa:b1:a9:24:fc:f4:61:9d:ff:1b:9b:b6:06:3d:82:5a:
13:e1:ce:04:af:3d:ab:b7:b0:8f:dc:6c:78:4e:86:45:9f:09:
f6:45:35:9a:3d:9e:21:20:ad:21:c7:e4:8d:0c:d7:58:ee:53:
5b:64:10:51:a6:83:0e:7c:64:d8:4c:8c:be:b6:69:35:c7:72:
d6:92:ad:6f:df:6f:de:2a:0b:15:1a:7a:83:76:5e:7b:16:36:
81:4a:33:b1:46:78:f6:d8:da:33:25:1d:ed:95:8a:4d:8b:ff:
34:91:73:ee:d7:b5:05:f0:e0:45:e5:d9:92:fb:be:34:6f:f7:
45:0f:94:4b:a7:2d:3e:ac:64:34:25:fe:ea:57:2e:f0:5d:54:
d3:03:f5:20:8f:94:9a:c1:f9:89:78:16:94:9c:28:ce:ea:d7:
87:29:1b:a5:ff:fb:e3:78:e4:7a:80:60:90:a3:f0:f8:65:d6:
62:88:47:74:7f:46:e3:67:32:eb:60:9b:b8:a1:b0:a0:bb:13:
30:59:8f:31:81:fa:f8:dc:23:a1:e9:c9:ad:8c:6e:ae:4f:a7:
83:6c:87:0a:f5:74:1a:63:c8:d9:a3:19:2a:d5:1d:a3:79:71:
d4:ee:ea:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 22:42:34 2025 by rpki-client