Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
File: N1_CEWNZalFHLA_xhKZJkdyDpsE.mft (raw, json)
Hash identifier: KrYbOcS7AmZlbH6/+MvYMY45h7SVwb+9d9e5qBPojYg=
Subject key identifier: 4D:EB:90:CD:14:E2:1E:67:CD:95:C0:84:30:C8:4D:78:D2:59:64:19
Authority key identifier: 37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
Certificate issuer: /CN=375fc21163596a51472c0ff184a64991dc83a6c1
Certificate serial: 01976F62CFBEDAF19AB2A663AF3A9F0D2BFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
Manifest number: 0D63
Signing time: Sat 14 Jun 2025 17:00:35 +0000
Manifest this update: Sat 14 Jun 2025 17:00:35 +0000
Manifest next update: Sun 15 Jun 2025 17:00:35 +0000
Files and hashes: 1: H84HwKjNe_aIYRNxZuH7G-Lr_Yg.roa (hash: BInhIf7xKGiyoM8/t65lkgiaRfMv7QEIqjDpHSYHK0c=)
2: N1_CEWNZalFHLA_xhKZJkdyDpsE.crl (hash: 9FvFI1iD6ZANBlEZNRN7Hqk9Zk+O2ETD5ynjdmBA0PE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 17:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:62:cf:be:da:f1:9a:b2:a6:63:af:3a:9f:0d:2b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375fc21163596a51472c0ff184a64991dc83a6c1
Validity
Not Before: Jun 14 17:00:35 2025 GMT
Not After : Jun 15 17:00:35 2025 GMT
Subject: CN=4deb90cd14e21e67cd95c08430c84d78d2596419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:0b:06:72:f6:cf:b3:6c:e7:f0:5e:64:b6:97:
c7:48:86:48:96:50:64:d4:40:85:f1:19:f2:45:ad:
fd:04:af:4f:65:cc:a6:b9:8e:15:c2:a0:68:a4:b3:
a5:90:39:e2:70:6d:14:6b:a4:60:80:e7:41:df:a7:
e1:a9:e0:b4:2f:1e:b8:7b:1d:d5:bd:a9:ac:37:cf:
70:31:dc:bb:78:a0:68:2f:99:2b:4b:62:4a:98:59:
42:70:b5:7e:be:61:f3:05:d7:65:f1:26:28:5f:62:
8c:1b:5d:88:14:0b:28:b9:57:60:8a:e6:e9:96:27:
39:2c:e7:74:3b:7e:1f:a9:b1:d3:08:fd:70:5f:66:
da:13:c5:49:02:c7:35:6c:8d:a0:1b:6a:0e:9c:21:
4d:2a:f7:19:2f:8a:54:af:89:5a:21:b1:3d:6d:50:
a5:77:d7:ac:1e:4f:f5:d8:41:a0:15:8e:1e:25:97:
67:d8:d3:86:b0:eb:50:37:84:eb:a9:52:e3:92:a3:
bc:99:8c:a5:f2:6f:9b:df:5f:ca:73:86:99:31:7a:
2c:db:ac:5a:31:97:79:56:89:d5:ff:c7:7b:e6:1e:
a9:c7:43:5e:2c:cc:68:dd:bc:3d:44:02:02:4f:a4:
69:bc:db:16:ea:c4:e3:c3:44:d6:93:bd:b3:14:b6:
cd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:EB:90:CD:14:E2:1E:67:CD:95:C0:84:30:C8:4D:78:D2:59:64:19
X509v3 Authority Key Identifier:
keyid:37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:8b:ee:e7:03:84:ff:a6:e5:40:b0:d3:2b:10:f7:1e:0f:a7:
96:ef:d4:88:ad:23:37:40:1c:ea:f9:e0:ed:e3:be:e9:75:4f:
9f:f4:ec:09:21:43:94:de:8d:c6:72:cd:8f:ed:6c:ac:c7:06:
1a:db:4f:7d:e5:fe:fb:08:00:f6:92:eb:a0:37:27:5a:8c:d9:
64:78:2b:99:43:11:89:bb:a4:22:73:19:f6:cb:29:de:c1:8d:
d3:ac:bf:09:83:97:a4:02:78:50:fb:49:f2:dd:89:9a:51:5d:
9f:78:64:f8:54:55:d5:c0:ac:48:f4:d1:2d:10:6a:66:52:c6:
58:d4:12:14:b9:bd:3a:5b:32:3f:ae:81:a3:c4:f2:38:6d:51:
e3:8d:91:1a:80:90:ad:1d:f2:f1:95:50:65:6c:e5:02:d4:0b:
75:1b:1a:fc:5a:50:ed:a8:63:df:cb:43:d1:41:54:ce:4a:48:
ef:13:5b:1c:dc:36:22:da:d1:e9:b0:e7:cd:46:22:04:be:ca:
b9:ee:49:d2:be:ac:e1:9e:42:aa:9e:7f:3b:a8:fc:5e:17:fb:
8a:f2:d5:14:d7:60:86:29:c9:4d:99:fa:af:45:f7:58:7e:60:
e9:98:47:46:59:2c:5b:52:00:9b:b4:fe:72:16:99:5f:d4:7d:
dd:d5:dd:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:12:45 2025 by rpki-client