Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: KG/GkSmyNLzEstGU3JnTFDTTbVuGTW8MpccUQLcHqVc=
Subject key identifier: 23:98:6A:90:35:34:0A:32:E4:EA:18:5F:3D:1B:3F:66:1F:79:A8:7B
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 0199FAD7BACD5F77238F7542C9CD48AF2CFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 0A0D
Signing time: Sun 19 Oct 2025 05:01:05 +0000
Manifest this update: Sun 19 Oct 2025 05:01:05 +0000
Manifest next update: Mon 20 Oct 2025 05:01:05 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: JOR4gvgRjPRdwKlRRBUj+itjSZgO1K38FjQ2fmMrCnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:ba:cd:5f:77:23:8f:75:42:c9:cd:48:af:2c:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Oct 19 05:01:05 2025 GMT
Not After : Oct 20 05:01:05 2025 GMT
Subject: CN=23986a9035340a32e4ea185f3d1b3f661f79a87b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d5:38:af:b5:f9:93:4d:16:60:20:3b:62:76:
25:8c:89:b0:58:80:04:48:91:b5:6a:84:f7:00:c2:
fa:d3:ce:6b:74:44:20:6e:1d:01:3e:66:e1:35:29:
1c:be:8d:44:a5:e1:01:34:b2:9c:52:50:9a:d9:71:
3f:d5:95:17:be:c4:a5:fe:9c:d3:f2:83:de:c4:af:
46:3d:7c:85:64:71:b3:cf:17:10:5c:4b:d8:fe:73:
32:2b:71:65:3a:2c:86:96:1c:a0:94:1f:5e:af:84:
a0:db:2e:83:fb:8f:f1:50:1b:0d:d8:be:f3:5f:89:
73:98:6c:36:39:b7:51:5c:3a:ac:8b:3e:b8:35:41:
1a:7d:18:96:c4:d7:7c:f9:8a:41:46:48:c0:d3:c0:
4e:3b:f7:27:9d:e9:0b:2f:4e:9a:02:9f:c6:2a:a0:
2b:78:b4:fc:c3:09:0c:0b:af:85:81:60:87:66:65:
58:fe:38:7c:34:1d:e3:da:33:65:77:43:77:23:72:
2a:8a:56:f3:40:d7:38:80:4c:7f:cd:d7:02:25:c2:
ad:aa:7f:0c:c6:88:c3:01:be:16:67:d1:1f:1a:1b:
30:25:4e:65:39:01:1d:92:ec:04:ab:f7:60:03:05:
68:5c:4b:d0:26:0a:19:f6:3c:1c:01:66:d0:c5:86:
dd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:98:6A:90:35:34:0A:32:E4:EA:18:5F:3D:1B:3F:66:1F:79:A8:7B
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:2b:77:8f:8b:d4:10:c3:af:61:61:72:cd:59:dd:1e:9c:38:
96:8b:41:ab:23:ec:62:1e:9e:d0:b8:fc:4a:3d:b5:14:7a:01:
a4:6f:8e:33:8b:d0:8d:d6:86:e3:d0:c4:69:d5:43:b5:5f:be:
db:5c:6a:f8:13:88:0f:a0:7f:7f:59:b3:55:31:66:6f:94:22:
14:8a:60:4c:b7:4c:2f:eb:cc:f4:32:a5:35:ec:c5:90:86:a2:
dd:b8:d0:64:03:3b:c0:50:4d:e2:a1:77:54:9e:aa:a9:da:42:
0f:db:1d:91:9e:db:28:9a:e5:a2:5c:ec:9e:db:f2:9f:00:44:
6c:0f:ce:c9:6e:a9:6b:55:92:2d:62:d6:99:c0:29:22:10:75:
3c:d3:89:12:1d:9c:c7:b8:5d:c9:6f:37:59:d4:0f:48:91:6c:
ab:bb:37:67:4a:0f:ae:34:95:bb:e1:7f:51:82:ba:43:56:7a:
a9:e2:df:49:63:63:27:23:76:07:e3:76:1d:7d:3b:06:c7:6e:
1b:bb:b0:dd:26:7f:0b:6b:02:fa:74:01:e6:41:e0:00:a9:d3:
23:d3:ce:ae:79:3b:9d:71:9b:33:90:8d:1e:88:51:d2:a1:65:
fd:84:69:dd:91:e4:78:53:53:b4:fe:3d:e6:c6:2e:01:41:cb:
1c:47:31:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:34 2025 by rpki-client