
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json)
Hash identifier: 88iIoGD4t56DVsX46ETnNYYbLm3xuKU3gn0Vs2/rM24=
Subject key identifier: 3A:AD:56:9C:7F:78:D3:B4:78:DF:F2:19:5B:CA:B2:3D:3D:38:EB:28
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: 01987E9D02E94876721390069874DA82BCC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
Manifest number: 0F30
Signing time: Wed 06 Aug 2025 09:01:15 +0000
Manifest this update: Wed 06 Aug 2025 09:01:15 +0000
Manifest next update: Thu 07 Aug 2025 09:01:15 +0000
Files and hashes: 1: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: i25vrlxCnk6f3765A4ggY2XKkmP3fzGte/M1eIXJ6tk=)
2: WXokG7cKriDfqWoaHraaATikOZM.roa (hash: l03IsJpcA1hZ2SxrPxTFFWqboVv9JIckV/GXuLQrkcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:9d:02:e9:48:76:72:13:90:06:98:74:da:82:bc:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Aug 6 09:01:15 2025 GMT
Not After : Aug 7 09:01:15 2025 GMT
Subject: CN=3aad569c7f78d3b478dff2195bcab23d3d38eb28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:54:2c:eb:ea:dc:a7:ca:e7:2d:ec:df:46:4f:
db:df:56:55:6a:f5:58:7e:d5:87:7b:80:b1:ed:fc:
4e:22:be:8d:52:9d:64:1d:e3:1e:d0:7b:0f:e1:20:
f0:66:34:3b:30:97:23:ab:5b:07:d8:07:fa:5a:a4:
aa:c5:04:1c:7c:31:ae:d6:1a:b8:d2:1f:34:bb:07:
2d:0c:2a:31:76:bc:a9:fa:18:df:3b:3b:c8:24:5b:
a2:ab:00:62:f9:bb:3e:1b:7a:a9:01:0f:39:05:9e:
d5:e7:d2:9f:cc:15:e4:00:9f:3c:bc:76:30:bd:3d:
37:1d:31:d2:99:f4:8c:f5:29:8f:ee:b0:55:df:35:
9c:69:07:c3:fc:76:2f:41:49:24:52:6e:a0:0d:7c:
14:d9:30:d0:21:e2:fe:82:3b:20:b2:82:1e:3d:73:
da:c8:89:2c:5f:0a:96:6b:47:a4:d5:0b:35:43:71:
20:f0:b2:b6:1f:6e:6b:69:65:78:5a:66:51:e1:25:
e7:d2:56:60:e0:97:61:6d:94:ac:94:b2:bb:26:e1:
4d:d8:b1:4d:0a:b0:0c:ee:df:77:0d:e8:da:b2:30:
38:e8:80:c1:7e:08:07:1a:c2:4a:e3:3d:90:0f:2a:
6a:eb:02:a5:a6:ba:49:66:5c:e8:65:e0:1e:d3:f9:
03:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:AD:56:9C:7F:78:D3:B4:78:DF:F2:19:5B:CA:B2:3D:3D:38:EB:28
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:5c:76:b8:31:22:e7:34:cd:bc:4c:20:bb:cd:02:e7:ee:a3:
1d:7c:d9:8c:32:8f:65:87:65:70:89:f0:98:2d:f2:b3:40:11:
aa:73:5c:8f:46:b3:be:ae:14:4f:1d:d9:1b:1a:f9:f3:90:3f:
24:92:3b:73:6b:e3:0c:9e:59:11:2c:24:22:e6:8c:9c:30:88:
3d:61:60:b0:8b:8a:a0:14:79:7f:5e:2a:9f:63:17:23:2f:b0:
0f:80:cb:ba:15:54:79:7e:04:10:03:53:4e:9c:a5:f6:5f:49:
2c:60:46:cb:d8:74:a5:cf:92:0d:99:79:e8:01:b9:d3:c5:95:
aa:2e:8d:53:5d:86:53:6f:77:ba:dc:43:37:66:46:24:5d:75:
39:f7:7d:5f:8c:2d:4f:d9:dc:d7:08:f2:83:9b:50:20:7d:7f:
da:4c:54:91:7f:5e:e6:2f:e6:ce:1c:25:30:0f:d1:41:2b:79:
dd:d5:ab:59:32:2c:7c:2b:35:60:99:9a:75:26:ef:22:e0:8d:
60:26:6b:79:7d:51:52:ea:b2:db:ab:14:e3:9a:1f:f2:b9:fb:
4e:f1:75:00:34:4d:ed:1b:5a:bc:73:bc:09:f1:40:fd:bf:e3:
1a:56:fd:72:bc:7f:b4:9e:a1:6f:27:5b:21:6d:4e:07:a7:bf:
f8:bc:75:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:11:52 2025 by rpki-client