Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: /XT8sVvePCRgOP6Cu/raGxKNtB8gv6s4XKfJo6E7Jkg=
Subject key identifier: FC:DD:4B:AF:FA:D2:55:33:1C:AD:F1:87:EC:86:BD:BA:17:AE:4B:FF
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 0197B7B31FD75F6B05B9956DBDC0B5B28A1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 08E1
Signing time: Sat 28 Jun 2025 18:00:58 +0000
Manifest this update: Sat 28 Jun 2025 18:00:58 +0000
Manifest next update: Sun 29 Jun 2025 18:00:58 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: 4Iaducm7E1jLW7adFtzh5brsMbkW20RMTcgqYb1gYi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:1f:d7:5f:6b:05:b9:95:6d:bd:c0:b5:b2:8a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Jun 28 18:00:58 2025 GMT
Not After : Jun 29 18:00:58 2025 GMT
Subject: CN=fcdd4baffad255331cadf187ec86bdba17ae4bff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:36:90:dd:b8:cc:a8:f2:7a:88:a1:8e:41:56:
32:8a:31:ea:61:dc:f9:8b:fa:5f:83:fd:54:65:1d:
f6:5a:7d:1b:bb:f9:4b:e2:83:a7:00:42:52:55:eb:
e6:a4:0f:29:b7:74:0c:37:54:69:cc:5c:80:e6:7f:
ff:93:93:e0:02:9d:3c:e3:bd:b1:59:62:27:cf:6d:
c3:9b:31:91:17:62:54:f5:7e:c2:61:e0:90:33:92:
02:54:67:ff:aa:3b:de:76:56:bc:55:ca:13:8d:fa:
da:47:63:f1:76:1b:36:b0:bb:09:4f:9e:a0:80:e2:
fc:a8:9b:40:a7:41:c0:8e:05:75:21:b6:6b:4a:aa:
d3:51:cf:2d:31:f8:81:41:59:b5:95:91:2c:bb:53:
7d:f0:7d:9e:1c:72:4c:07:4e:12:e2:6e:33:e0:1c:
19:77:3b:b4:63:7d:60:3d:e4:f8:fa:53:7a:07:19:
b1:db:6d:43:fd:7c:c0:e5:07:8c:f9:6a:3a:e7:78:
71:f3:bc:56:15:89:56:11:63:fb:83:81:b8:2c:bc:
28:8d:66:fe:3e:29:5b:2e:91:de:98:e6:8d:95:5e:
ae:5c:f0:82:94:2f:f3:c3:5f:bd:f1:e8:14:8d:7e:
83:2a:8a:73:aa:04:ed:b0:d9:22:b1:05:02:5a:21:
b3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:DD:4B:AF:FA:D2:55:33:1C:AD:F1:87:EC:86:BD:BA:17:AE:4B:FF
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:4c:1f:cb:07:46:92:cc:24:e8:01:e9:71:9a:43:a7:c5:70:
42:1c:90:34:e9:fb:d6:33:6d:fd:98:3e:c1:ed:b3:84:0e:9b:
5c:df:d2:8b:35:c7:6b:a2:4d:76:ed:57:1f:c7:cd:65:50:63:
5b:66:3e:9f:98:62:82:48:12:98:4b:6f:4d:e6:30:f8:31:82:
69:d6:12:e8:4b:6d:00:e3:78:d6:55:84:f9:e3:34:94:b4:52:
8e:9b:06:29:49:f6:49:2c:41:18:d9:2f:3b:fe:56:1a:0b:c8:
87:b4:df:a1:16:33:f8:47:e9:4e:c8:77:f5:57:16:1b:c2:ab:
71:7a:b4:84:0e:a8:91:a9:94:be:e7:ce:32:77:4e:36:7c:14:
5d:4a:5a:d2:24:94:01:e1:2d:79:f9:89:54:d9:f5:16:26:6e:
c7:4a:92:c0:65:b3:89:29:8c:7f:68:1e:55:ba:61:0f:14:0f:
b5:b8:8e:19:aa:95:44:ba:83:23:0c:04:cd:b7:91:cf:d1:1d:
32:82:3f:46:4c:13:c1:6f:8b:17:c4:7a:6d:5f:62:a8:d2:ae:
22:ca:17:71:03:68:06:ff:35:49:ed:0c:0e:03:48:a0:ca:62:
39:aa:8d:db:59:4d:d7:c5:70:04:4e:c2:b3:63:93:f8:37:29:
a0:32:6d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:25 2025 by rpki-client