Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json)
Hash identifier: mSjlrZy3i+G5SMewsrXc3rJbFVFmvCNIpp/TppEMoKU=
Subject key identifier: A6:C5:39:77:58:1F:A9:27:CF:BA:3E:5C:EA:3F:BD:E5:B0:70:A7:F7
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 0199FCFD7C89D80D047EAEA4CD90A0492987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
Manifest number: 140C
Signing time: Sun 19 Oct 2025 15:01:34 +0000
Manifest this update: Sun 19 Oct 2025 15:01:34 +0000
Manifest next update: Mon 20 Oct 2025 15:01:34 +0000
Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: SmaTYH+ed6FiaAXzVfsq0p/v3loB8vfr9Hc87xT+B3w=)
2: ESQpVAiSLlfE8UMM75aY_vsPDNc.roa (hash: ubyXNF+odFgCxSHtSbasAdaDvs7x7Wh5p2HTa/QrZgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:7c:89:d8:0d:04:7e:ae:a4:cd:90:a0:49:29:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: Oct 19 15:01:34 2025 GMT
Not After : Oct 20 15:01:34 2025 GMT
Subject: CN=a6c53977581fa927cfba3e5cea3fbde5b070a7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bf:f1:e1:bc:a8:49:21:e2:0e:1e:0b:e7:8a:
80:d2:15:0c:bb:b0:0f:0b:d0:93:4f:89:46:1d:23:
44:93:e5:32:de:53:41:90:f5:c1:de:d1:49:c3:c9:
3d:b0:e2:a4:f5:ed:0c:e0:0d:89:82:49:ef:4a:0b:
8f:50:43:14:a3:2f:df:b7:e4:00:46:55:58:54:2f:
7c:58:19:d7:41:8a:14:59:ef:2d:cd:d0:51:87:c2:
a7:a3:bd:5f:ec:b6:20:29:bb:16:dd:60:1d:7b:b9:
31:62:78:44:42:93:a4:db:cc:3d:30:1d:9c:ad:1a:
53:ae:9a:92:03:b1:d0:35:ae:da:5b:6d:07:dd:89:
8b:1d:01:ad:2e:78:d5:84:e9:85:bb:69:d8:34:88:
0e:db:c0:05:1b:90:c2:1a:b6:f9:5a:0c:ad:3e:1e:
b9:75:7e:32:7e:e8:d3:cb:9e:80:ab:07:32:27:76:
b9:a4:d5:8b:29:8e:2b:ca:7f:c5:19:89:86:cc:fb:
28:b5:36:96:7f:af:5d:16:21:5b:b2:d4:84:48:be:
7f:2e:5d:87:fd:ba:9a:2c:49:9a:56:27:fa:a8:52:
1a:c4:74:58:72:18:e0:55:91:ca:ce:55:27:2d:d3:
ea:63:e6:6e:ae:94:35:cf:66:62:a7:d8:7b:d5:a7:
2c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C5:39:77:58:1F:A9:27:CF:BA:3E:5C:EA:3F:BD:E5:B0:70:A7:F7
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:4e:23:96:e0:cb:69:ac:7c:5a:2b:cc:f6:c3:91:05:43:17:
1f:9a:9b:f7:e7:3e:1d:80:a0:7b:e2:5e:88:30:16:be:fc:b5:
c9:ce:3f:cb:8b:39:1c:58:f8:f7:b8:74:b0:af:70:9c:60:c5:
ca:a0:d9:e0:56:4b:5d:48:74:b0:25:00:e6:c4:a1:94:17:f3:
4b:d9:53:0c:6c:8e:3f:4f:9e:8a:89:ba:00:f7:0d:71:ea:ad:
42:c2:1a:ab:b2:cb:75:9f:98:2b:57:73:14:8a:7f:26:de:12:
94:c6:af:fa:5a:7a:9a:2e:17:4b:ef:ee:4c:cd:af:d1:0a:2d:
88:8f:95:b6:63:23:19:60:88:ab:72:05:ea:77:fe:2d:d2:83:
d4:99:75:a9:70:70:55:51:35:89:1c:67:e0:d7:8a:94:56:e7:
99:c7:4b:01:51:8a:71:cc:d5:0d:dd:09:e9:c0:ca:12:a0:cc:
48:ed:6a:6f:7d:15:b2:05:21:24:bd:6b:74:12:73:cb:d9:a4:
c4:b4:25:e2:04:b4:d2:67:69:6d:42:c3:f8:fc:5a:06:b2:cc:
bc:77:40:ad:da:ba:29:97:d8:ae:4b:64:4b:54:82:b8:86:58:
81:c8:f1:f7:ec:04:d6:c9:61:38:60:e7:0a:0d:14:ce:af:1d:
2f:c3:ba:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:51 2025 by rpki-client