Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
File: CeVm4OteXiEQflX8lg-x7iGHRHQ.mft (raw, json)
Hash identifier: y3wMtyrZdOay6y72b4StFxXe594mS23vi34NOdj8Mt8=
Subject key identifier: 56:2B:FE:9E:68:35:50:7C:A1:40:BE:02:84:A9:38:B0:35:FC:B7:66
Authority key identifier: 09:E5:66:E0:EB:5E:5E:21:10:7E:55:FC:96:0F:B1:EE:21:87:44:74
Certificate issuer: /CN=09e566e0eb5e5e21107e55fc960fb1ee21874474
Certificate serial: 0199FDDA6867AD941E4E28CE943AFFF55336
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVm4OteXiEQflX8lg-x7iGHRHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
Manifest number: 152A
Signing time: Sun 19 Oct 2025 19:02:53 +0000
Manifest this update: Sun 19 Oct 2025 19:02:53 +0000
Manifest next update: Mon 20 Oct 2025 19:02:53 +0000
Files and hashes: 1: CeVm4OteXiEQflX8lg-x7iGHRHQ.crl (hash: m+CW9oOMPBn1DmAH49LSB+qklpCx+cIqxsnnbS0yb38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CeVm4OteXiEQflX8lg-x7iGHRHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:68:67:ad:94:1e:4e:28:ce:94:3a:ff:f5:53:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e566e0eb5e5e21107e55fc960fb1ee21874474
Validity
Not Before: Oct 19 19:02:53 2025 GMT
Not After : Oct 20 19:02:53 2025 GMT
Subject: CN=562bfe9e6835507ca140be0284a938b035fcb766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7d:c3:6b:cd:2f:ef:c8:c8:ef:9f:78:05:35:
4f:f6:b8:e0:c9:b7:56:27:66:f6:fc:40:db:84:06:
7e:4b:52:d1:e0:e9:16:4c:70:08:bc:5c:fa:9d:2f:
40:be:a2:a7:16:b6:ff:46:d8:17:e9:71:3c:14:fe:
8e:3c:0c:f1:08:01:08:63:86:c3:81:d5:4f:9f:ac:
b1:63:8a:28:e8:7f:55:32:af:14:cc:7f:e5:06:12:
2b:f7:8a:24:a3:3c:f2:73:fd:c2:25:52:41:ba:78:
f6:40:31:49:04:a8:25:e9:3e:63:7c:f0:eb:04:1e:
9e:6b:12:8b:08:0f:61:14:24:fe:17:88:af:4d:cc:
b1:5d:aa:0e:cb:36:b4:c2:0b:b1:ed:86:e2:c6:78:
76:17:cc:9b:a0:b5:93:6c:c7:47:c4:06:4b:13:d4:
a4:13:c1:51:51:c3:ab:18:6d:89:6e:3a:58:3b:ac:
87:3c:00:cd:8e:12:82:9d:23:be:35:ed:61:06:b6:
bc:31:bb:49:9d:ab:07:be:69:5b:3b:f1:6a:1e:da:
6c:64:fc:e3:1f:00:8f:69:b5:74:7e:a6:d8:9c:56:
e6:a3:5e:7f:60:74:ce:48:d8:7a:e4:ab:e8:37:aa:
ee:07:3b:85:d9:d4:2e:df:a0:58:cf:a5:ee:98:c7:
6e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:2B:FE:9E:68:35:50:7C:A1:40:BE:02:84:A9:38:B0:35:FC:B7:66
X509v3 Authority Key Identifier:
keyid:09:E5:66:E0:EB:5E:5E:21:10:7E:55:FC:96:0F:B1:EE:21:87:44:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVm4OteXiEQflX8lg-x7iGHRHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:94:b7:3e:79:34:c2:4e:14:c5:be:09:a0:5f:2f:8b:73:86:
c7:a5:da:3b:e9:f3:f2:95:04:72:c6:ee:31:2d:36:6b:48:89:
a0:8d:47:b9:5e:f8:4b:9c:9c:d2:6f:71:f8:1a:13:50:8c:1e:
09:92:d5:e8:83:9e:23:f5:27:a6:54:9a:4d:9e:35:88:41:00:
ca:8e:93:0c:21:61:bc:7b:60:05:23:19:ef:f1:91:6c:f3:2c:
d2:3f:09:39:a7:8f:27:c2:f8:ac:52:ce:67:e4:67:14:cc:45:
a0:44:81:12:c9:2a:bc:6b:0b:00:80:b3:2a:7a:66:3c:e9:64:
24:b9:ef:73:21:df:bb:ab:d7:4b:d7:10:5d:70:d2:27:5f:de:
32:c9:4b:38:aa:3a:fd:10:43:e2:54:2a:4f:19:a9:82:cf:21:
ad:50:12:5e:86:af:43:73:82:31:7c:79:0e:a0:63:f2:df:60:
a0:d6:ff:13:f2:1a:d7:9b:60:26:0d:23:dc:e4:43:23:9e:b6:
1f:04:71:6f:04:88:29:e3:c8:af:c1:2b:b8:e6:a3:52:a4:39:
35:c9:e7:d8:5c:32:3b:a8:65:ca:02:39:64:09:52:f4:60:13:
6b:f8:05:7d:1c:db:3d:9f:ee:95:0c:bd:b1:b3:27:d4:ff:9f:
bc:43:2d:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92mhnrZQeTijOlDr/9VM2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZTU2NmUwZWI1ZTVlMjExMDdlNTVmYzk2MGZiMWVlMjE4
NzQ0NzQwHhcNMjUxMDE5MTkwMjUzWhcNMjUxMDIwMTkwMjUzWjAzMTEwLwYDVQQD
Eyg1NjJiZmU5ZTY4MzU1MDdjYTE0MGJlMDI4NGE5MzhiMDM1ZmNiNzY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyH3Da80v78jI7594BTVP9rjgybdW
J2b2/EDbhAZ+S1LR4OkWTHAIvFz6nS9AvqKnFrb/RtgX6XE8FP6OPAzxCAEIY4bD
gdVPn6yxY4oo6H9VMq8UzH/lBhIr94okozzyc/3CJVJBunj2QDFJBKgl6T5jfPDr
BB6eaxKLCA9hFCT+F4ivTcyxXaoOyza0wgux7Ybixnh2F8yboLWTbMdHxAZLE9Sk
E8FRUcOrGG2JbjpYO6yHPADNjhKCnSO+Ne1hBra8MbtJnasHvmlbO/FqHtpsZPzj
HwCPabV0fqbYnFbmo15/YHTOSNh65KvoN6ruBzuF2dQu36BYz6XumMdutQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFYr/p5oNVB8oUC+AoSpOLA1/LdmMB8GA1UdIwQY
MBaAFAnlZuDrXl4hEH5V/JYPse4hh0R0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2VWbTRPdGVYaUVRZmxYOGxnLXg3aUdIUkhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8wMDA4Y2QtZTEyOS00MjRjLWI1YWYt
MGFmMWRlOGYxZmYxLzEvQ2VWbTRPdGVYaUVRZmxYOGxnLXg3aUdIUkhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8wMDA4Y2QtZTEyOS00MjRjLWI1YWYtMGFmMWRlOGYxZmYx
LzEvQ2VWbTRPdGVYaUVRZmxYOGxnLXg3aUdIUkhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoZS3Pnk0
wk4Uxb4JoF8vi3OGx6XaO+nz8pUEcsbuMS02a0iJoI1HuV74S5yc0m9x+BoTUIwe
CZLV6IOeI/UnplSaTZ41iEEAyo6TDCFhvHtgBSMZ7/GRbPMs0j8JOaePJ8L4rFLO
Z+RnFMxFoESBEskqvGsLAICzKnpmPOlkJLnvcyHfu6vXS9cQXXDSJ1/eMslLOKo6
/RBD4lQqTxmpgs8hrVASXoavQ3OCMXx5DqBj8t9goNb/E/Ia15tgJg0j3ORDI562
HwRxbwSIKePIr8EruOajUqQ5Ncnn2FwyO6hlygI5ZAlS9GATa/gFfRzbPZ/ulQy9
sbMn1P+fvEMtCg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:43:56 2025 by rpki-client