Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json)
Hash identifier: VQKa3ET69gtk4VR3gkkRc1TWJa6ehRT1DCLkN/XY9AU=
Subject key identifier: C5:0D:CF:05:70:92:8A:04:9C:88:B2:B3:0B:EE:AA:2E:BC:8A:17:AC
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: 019777F82BA3332DAB410587CAFECD17D3D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
Manifest number: 0EA8
Signing time: Mon 16 Jun 2025 09:00:42 +0000
Manifest this update: Mon 16 Jun 2025 09:00:42 +0000
Manifest next update: Tue 17 Jun 2025 09:00:42 +0000
Files and hashes: 1: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: CxkxE8JwurTMuWA8cDxJPrRcW/W9q9NKaFCAQ/ahkb0=)
2: WXokG7cKriDfqWoaHraaATikOZM.roa (hash: l03IsJpcA1hZ2SxrPxTFFWqboVv9JIckV/GXuLQrkcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:f8:2b:a3:33:2d:ab:41:05:87:ca:fe:cd:17:d3:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Jun 16 09:00:42 2025 GMT
Not After : Jun 17 09:00:42 2025 GMT
Subject: CN=c50dcf0570928a049c88b2b30beeaa2ebc8a17ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f3:99:d3:5f:67:99:e7:e1:22:05:90:0c:c0:
bc:d4:b4:86:88:75:65:bf:87:c5:4b:29:99:e7:28:
e4:2f:24:04:b1:1c:c1:82:ba:6a:7f:33:ab:db:06:
76:4e:1d:d7:ba:af:07:6a:eb:4b:3a:50:98:51:dc:
71:66:32:e2:d6:fa:b1:a4:c6:c1:f5:b8:65:b5:d7:
b1:95:34:0f:24:f2:94:5a:fe:51:ec:db:4d:fb:d1:
d2:62:14:20:c0:f6:f7:04:6e:91:90:64:12:12:27:
fc:c5:5a:5d:1d:12:f4:e3:11:50:08:c0:77:92:f6:
fe:ad:88:a1:91:a7:00:d3:1e:34:51:61:fd:62:2e:
ec:f9:08:16:21:7d:80:ce:c9:0b:0c:38:44:9d:8a:
18:58:80:9d:a1:99:5f:0a:7d:b5:e9:2f:ea:65:37:
01:d0:6a:75:bb:23:9c:c7:a8:2f:dc:63:33:0c:dc:
a4:60:9c:ac:a0:6a:c1:93:9b:0f:9e:ef:be:9d:d8:
4a:97:c2:f5:bb:71:37:ef:f8:c8:9d:6b:76:87:94:
8c:0f:33:4f:d4:2a:c9:ea:e4:fa:81:97:91:c1:28:
30:95:2e:0e:b9:53:fd:18:09:22:d4:aa:86:8f:38:
0b:57:75:3c:f0:4f:52:b2:b3:b3:fa:21:97:6f:60:
cd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:0D:CF:05:70:92:8A:04:9C:88:B2:B3:0B:EE:AA:2E:BC:8A:17:AC
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:aa:ad:bd:89:0e:dd:17:42:32:65:61:e7:39:6e:ec:43:f5:
ec:90:86:0b:d2:80:db:ad:87:af:fd:2c:5e:4a:c2:05:2a:96:
ac:4a:d5:5d:8f:f7:0e:da:86:6e:7e:68:68:23:0f:72:61:2b:
53:a0:94:47:1c:e2:f0:ad:da:6b:1f:7b:f0:a9:8b:72:a1:b8:
06:7f:7a:6f:ef:00:9e:f8:da:ec:9f:ce:b0:a2:7a:f2:ab:1f:
7f:c8:38:11:3d:16:70:ca:34:ad:03:28:9c:e6:e7:b3:31:e1:
e2:13:4d:6a:44:f8:71:d1:c5:bd:45:7c:77:8a:55:ab:ac:33:
f3:7f:8d:c4:96:31:07:d9:b6:c9:0e:3d:bc:8a:9e:54:5d:65:
cd:24:10:b9:0d:31:53:16:7c:6a:80:45:20:da:41:25:b7:40:
6c:9a:65:0b:11:98:a1:58:60:7e:0c:f1:3c:75:e7:84:8f:31:
13:c4:0e:46:50:08:3e:91:88:fe:24:78:cb:14:26:d4:6c:38:
73:b9:a5:37:2f:c3:0f:54:c6:37:20:e3:27:48:04:5b:6c:5d:
fc:86:dd:58:2b:ce:28:49:97:c0:a1:06:c9:e0:10:a9:a9:18:
a9:26:84:53:3b:a5:76:4a:90:c9:83:65:41:56:3a:40:37:df:
00:57:3a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 14:59:39 2025 by rpki-client