Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json)
Hash identifier: hxsrCXZlPsx9lmq+ni8uEcLhVA9b33y+xYQ0B/UPM3o=
Subject key identifier: 21:94:20:6A:25:F9:00:D9:6D:53:A4:29:D4:29:F0:CC:46:52:B1:BB
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 0196DB8ABF1A5DB005BA7BB802D35C00DEC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
Manifest number: 126D
Signing time: Sat 17 May 2025 00:00:25 +0000
Manifest this update: Sat 17 May 2025 00:00:25 +0000
Manifest next update: Sun 18 May 2025 00:00:25 +0000
Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: QIb77wmNK9Aef80ReNhaCaQcgI//sUVcAaA/e7YB3qY=)
2: ESQpVAiSLlfE8UMM75aY_vsPDNc.roa (hash: ubyXNF+odFgCxSHtSbasAdaDvs7x7Wh5p2HTa/QrZgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:db:8a:bf:1a:5d:b0:05:ba:7b:b8:02:d3:5c:00:de:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: May 17 00:00:25 2025 GMT
Not After : May 18 00:00:25 2025 GMT
Subject: CN=2194206a25f900d96d53a429d429f0cc4652b1bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a5:2d:16:64:62:4b:f6:d1:45:c3:0d:be:6e:
37:bf:90:cd:89:a1:ba:37:08:76:4c:c9:6e:31:d1:
31:5e:3a:f2:d5:5e:d8:2d:07:33:8d:34:12:32:58:
3d:8c:f8:98:1e:7c:02:9b:ed:36:8d:ad:bc:4b:b7:
60:ef:d1:91:f0:0d:dd:7e:8e:56:ca:ca:5f:38:73:
32:49:e1:b0:ff:ae:ed:19:3d:d7:52:78:f8:13:8e:
78:39:53:21:88:1a:2d:29:af:83:5a:a3:b3:c9:80:
ed:2f:30:55:7c:2c:bc:92:26:4f:1a:bd:e0:d0:3a:
9d:5b:4a:c8:45:76:8d:a4:47:bc:16:ce:36:53:0f:
a1:56:f4:51:c5:fc:da:7a:35:11:a2:3a:0e:86:cc:
8a:6f:7a:e3:a8:3c:37:8e:e9:39:1d:06:2f:37:42:
5e:6f:84:44:62:cf:e4:d1:94:ef:bd:27:fb:66:cf:
6a:5d:44:8f:32:4a:67:78:7f:a1:77:48:75:ef:9d:
e9:0a:03:5e:f9:5a:20:55:63:06:44:07:9a:b4:10:
45:12:89:19:27:98:8f:9f:59:7c:25:3c:b6:d1:f0:
56:81:77:c0:f1:7e:2e:40:43:e3:44:e1:f7:39:28:
5b:b2:21:49:99:ff:8c:f1:b1:98:6b:b7:e9:4b:ec:
7b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:94:20:6A:25:F9:00:D9:6D:53:A4:29:D4:29:F0:CC:46:52:B1:BB
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:c4:88:cb:71:bd:e7:79:26:ff:a5:6d:7c:2b:d4:d1:39:3b:
38:5c:88:af:9c:26:d7:28:31:e0:9a:98:e0:0f:73:aa:95:c4:
54:0a:ad:66:28:9e:d4:8e:65:6e:05:20:e9:e6:72:ae:26:64:
d5:df:dc:d8:e5:c8:40:1f:cb:8b:dd:54:43:76:c8:89:01:99:
68:40:57:6c:a7:68:65:72:56:fd:62:69:6f:b2:c7:ef:f5:0b:
a6:c3:4c:d9:3d:09:00:aa:b9:86:1f:98:d8:15:3e:9f:54:7e:
64:f1:a1:d6:99:f1:d5:2b:8f:c1:0e:5c:fb:cd:59:fb:04:e7:
15:7c:65:bd:82:66:94:a1:11:2c:d9:3a:4e:db:a7:f1:37:6e:
fd:25:74:ce:cd:20:22:24:b4:63:fb:c0:6b:40:e5:b4:0a:4a:
dd:fb:bf:79:f6:9a:e1:ce:af:a4:17:20:92:0c:e3:b0:eb:70:
23:a5:16:c7:77:ce:6d:e4:84:c7:be:17:1b:9a:3d:43:d0:91:
b4:35:7b:e4:52:4a:9d:fb:0f:ac:84:2c:53:83:d2:63:27:b6:
9e:48:e7:2c:4f:b5:7f:13:90:94:c9:3f:f4:be:08:aa:bc:f8:
4d:c3:cd:5c:0b:f1:85:01:a9:67:28:e5:01:d5:96:f9:d0:3a:
cf:42:9f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 02:32:37 2025 by rpki-client