Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json)
Hash identifier: PEvHyoSk1qluYHJvlVDyhJNSe2uSufZywrhrvCSg/3I=
Subject key identifier: FB:B6:84:3F:E3:7C:60:C8:28:CA:64:B9:6E:B8:30:C3:B8:C6:13:38
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 0198D7739FCEBD1B1B64C0477AA045D6C91D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
Manifest number: 1374
Signing time: Sat 23 Aug 2025 15:02:15 +0000
Manifest this update: Sat 23 Aug 2025 15:02:15 +0000
Manifest next update: Sun 24 Aug 2025 15:02:15 +0000
Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: WAS0fshO3gmtKCpZz8Z+uKLLLTYK0Ouz7AABrEoB2nE=)
2: ESQpVAiSLlfE8UMM75aY_vsPDNc.roa (hash: ubyXNF+odFgCxSHtSbasAdaDvs7x7Wh5p2HTa/QrZgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:9f:ce:bd:1b:1b:64:c0:47:7a:a0:45:d6:c9:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: Aug 23 15:02:15 2025 GMT
Not After : Aug 24 15:02:15 2025 GMT
Subject: CN=fbb6843fe37c60c828ca64b96eb830c3b8c61338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4c:fe:2b:8e:b0:a4:4b:8a:50:3e:a5:f4:72:
07:58:3c:00:77:98:cd:62:c4:d9:10:ac:59:bf:84:
f3:ae:d4:02:09:70:27:19:f8:46:4f:ca:f0:aa:67:
cd:33:dd:74:16:d9:8e:06:76:40:ae:2a:83:9e:39:
38:67:d0:a6:10:a4:09:8b:4d:8f:eb:ff:eb:d0:09:
14:b5:1e:e8:a0:9e:d7:79:20:71:15:87:9a:61:e5:
41:b4:c8:08:88:c6:d3:ce:a2:32:9d:ba:55:fc:64:
75:66:e1:0e:c7:99:b9:60:f8:0b:ef:15:0a:99:f7:
4e:af:6b:bd:14:0c:7e:db:ba:c4:08:73:a2:f4:b1:
4a:da:33:f2:57:79:d3:03:16:66:c8:04:c8:99:8d:
d6:dd:b0:03:f2:61:72:74:24:91:b4:51:05:a5:cf:
f1:36:5c:8d:06:6f:ce:99:2d:ed:78:e7:8c:3f:13:
01:b6:5c:8f:06:84:c3:fe:38:5c:0c:c0:a1:79:09:
68:1d:34:07:b4:aa:ad:e3:1b:13:c7:16:4d:8e:e6:
0e:df:90:c6:34:b0:b2:b9:da:c8:69:ce:9d:88:75:
c1:5f:59:96:f2:4c:b4:de:08:20:5f:ef:9d:f6:bf:
1c:c9:04:f6:00:ec:86:30:b8:02:10:49:f1:1f:be:
16:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B6:84:3F:E3:7C:60:C8:28:CA:64:B9:6E:B8:30:C3:B8:C6:13:38
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:d8:b6:03:1a:12:85:05:c6:e1:81:a7:f6:ae:5d:c5:e3:bc:
14:df:84:a1:3e:88:0a:01:c3:2a:2b:41:13:d6:74:ca:fe:c4:
a6:c9:fc:8c:99:de:39:17:c6:95:d1:d1:85:31:e6:47:e9:f7:
f0:47:f3:0a:9a:1b:87:7d:63:01:ec:b0:cd:7c:04:ab:d2:a4:
2d:13:b3:c2:13:dc:59:6f:b0:0d:14:da:f4:66:e8:ad:b0:5b:
a4:a0:47:b1:aa:6d:41:61:a0:a9:14:bf:1d:a9:9c:ba:1c:19:
8c:b8:b5:af:2a:77:a3:ef:34:6e:d9:1f:28:87:70:73:85:b7:
bd:73:ba:3d:d3:f5:8a:16:c9:87:d0:f4:7e:9e:b7:28:bc:fd:
d8:97:14:11:a7:af:9b:95:d9:e9:0f:6a:52:e9:e2:3f:1b:82:
f5:ae:2d:8b:dc:fc:e3:88:eb:dc:86:98:6c:b4:fb:69:24:d7:
6c:68:52:91:d4:c6:d3:e3:24:41:8d:0f:6f:94:bc:5b:de:6d:
9c:13:a4:09:f3:74:8e:10:02:31:a6:0d:a1:cd:c7:17:7a:63:
78:c2:b6:48:4b:03:11:6b:84:c6:71:f8:26:83:73:fe:73:65:
c1:9c:bd:20:7c:24:f6:a0:b9:98:58:dc:56:de:db:b6:7c:6a:
c3:d0:5c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:08:58 2025 by rpki-client