Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json)
Hash identifier: 3c9TOjGXuo2fA2CxG3nlMk7nQL/GY5vXyhllYznsHEo=
Subject key identifier: D5:AC:11:87:7D:3B:CC:7B:A9:01:9C:3F:F7:F0:5A:35:E5:6F:C2:82
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: 01967CE9D9F63014C34A4F35557F008D2F4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
Manifest number: 0E26
Signing time: Mon 28 Apr 2025 15:00:22 +0000
Manifest this update: Mon 28 Apr 2025 15:00:22 +0000
Manifest next update: Tue 29 Apr 2025 15:00:22 +0000
Files and hashes: 1: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: DWpAnZKcjEDeO5oC333ijtiUzUXphnFFsHh+9f+apy8=)
2: WXokG7cKriDfqWoaHraaATikOZM.roa (hash: l03IsJpcA1hZ2SxrPxTFFWqboVv9JIckV/GXuLQrkcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:e9:d9:f6:30:14:c3:4a:4f:35:55:7f:00:8d:2f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Apr 28 15:00:22 2025 GMT
Not After : Apr 29 15:00:22 2025 GMT
Subject: CN=d5ac11877d3bcc7ba9019c3ff7f05a35e56fc282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a8:9e:64:37:df:9f:37:ba:c5:45:bc:58:a3:
f5:3b:b7:0d:72:92:1e:a3:32:1c:df:9e:f5:5e:e8:
14:80:b7:75:ce:0b:bf:14:68:cc:ab:96:41:08:5d:
24:b5:27:98:7a:d9:53:85:38:c7:29:9b:05:72:e2:
d6:e3:b1:b4:2e:2d:49:53:b0:0f:91:55:15:9e:29:
83:50:5c:92:0f:1e:19:81:0f:03:2c:8a:a5:7d:6c:
49:d7:14:8b:27:f4:a3:dc:b8:7a:86:f4:69:91:b8:
d8:d7:1c:c0:dd:b6:e0:ce:d4:b9:ee:d9:f7:87:25:
34:4b:57:cb:50:7e:f3:69:db:8c:fd:45:e6:41:a2:
6d:8e:49:c3:6d:1f:26:62:8c:a4:3e:45:05:1b:84:
8b:cb:ed:7c:19:31:73:89:ae:90:44:1d:eb:5f:3f:
2b:f3:0f:d8:e8:be:37:89:52:29:33:0b:e3:3a:3a:
01:95:1a:29:40:04:a7:d5:ea:e2:5d:61:a7:c2:a4:
55:e5:83:bd:4c:21:cb:e7:8e:ca:47:6d:a7:93:2f:
56:68:72:99:8d:75:07:64:33:fb:67:60:0d:f0:0c:
ee:7a:9f:0a:dd:07:83:1b:97:ee:9a:40:3c:39:b2:
4b:b4:72:4a:ec:4d:0a:f5:28:7f:90:9e:71:97:ba:
b3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:AC:11:87:7D:3B:CC:7B:A9:01:9C:3F:F7:F0:5A:35:E5:6F:C2:82
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:ec:e8:87:d1:6b:4a:28:37:a1:2e:0a:04:34:66:e3:aa:f1:
8b:7c:33:23:17:2a:37:3f:c8:2f:26:be:28:a0:f0:0a:25:e7:
f0:ed:ba:91:5b:32:87:a3:dc:41:bf:8a:3e:17:89:c3:30:fe:
b1:cf:7a:8b:24:92:92:34:5e:32:2d:48:a5:61:3b:e2:61:a1:
a1:41:d7:5e:e8:b4:bf:3d:e2:82:a1:82:64:4c:b3:fa:b1:74:
e9:ab:e7:5f:3d:94:8e:7e:c9:84:a0:6b:fd:c4:30:88:65:8d:
ad:56:85:bc:b7:23:39:26:a0:17:64:c6:e3:01:45:cf:35:2e:
13:80:19:95:c0:f4:05:bd:1b:a3:75:19:ec:28:29:ee:a5:4c:
b0:89:60:6d:d3:0a:54:be:77:e7:9d:14:9c:bf:bb:bd:6b:cc:
68:05:33:4b:5a:20:ae:62:6e:88:91:dd:e1:cb:9d:11:43:16:
71:ac:8e:97:a4:3a:ae:b2:95:06:4a:8a:aa:b7:c6:45:68:56:
28:9d:79:54:11:bc:36:56:d7:3a:34:4e:a9:57:9b:5a:17:c5:
c7:4e:80:af:98:c2:4b:da:b7:7c:06:0b:58:de:7e:81:ba:79:
a3:bd:49:83:cd:6a:a4:92:45:ff:a4:28:8f:b1:ed:74:06:28:
94:5f:48:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:40:35 2025 by rpki-client