Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: D7zUQcvN7M/46OSxFVfj5icINrxMDMWvdWuMVpbuRJM=
Subject key identifier: 7D:09:91:E5:96:2F:51:68:60:8F:24:09:B9:52:48:BC:D0:3D:0E:61
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 0196BE9353CF4817945458FA804A9EDB02B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 0860
Signing time: Sun 11 May 2025 09:00:48 +0000
Manifest this update: Sun 11 May 2025 09:00:48 +0000
Manifest next update: Mon 12 May 2025 09:00:48 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: pHVse9S8RUoy7wSTtVAsX7+8wb2VHMb1NS/fjw+A7vY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 09:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:93:53:cf:48:17:94:54:58:fa:80:4a:9e:db:02:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: May 11 09:00:48 2025 GMT
Not After : May 12 09:00:48 2025 GMT
Subject: CN=7d0991e5962f5168608f2409b95248bcd03d0e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:64:01:0e:d4:9b:b2:3a:f4:df:30:be:29:e3:
7e:c6:ae:ac:e7:9c:65:b0:4f:e6:b9:0c:0a:22:64:
ad:4c:6f:76:79:aa:87:bb:d6:bc:58:1e:a6:a1:58:
94:3f:b5:6b:2e:d5:10:43:f4:cb:d3:14:59:96:68:
27:ba:78:57:e1:4d:48:a6:7b:58:02:5d:6a:75:45:
ef:02:43:85:43:ef:5b:e6:3b:24:a8:f9:da:6e:e5:
b6:a5:a5:b0:fd:3a:70:31:e7:c4:92:4c:c4:21:93:
45:cf:dc:db:3a:d4:b2:55:2c:e7:29:45:a1:c5:d8:
ef:cc:09:64:fe:a5:d4:50:3a:3e:a6:b5:c2:20:58:
30:29:c7:87:4f:57:56:22:5d:7d:d6:9d:a3:19:e1:
ee:f5:8a:95:ab:40:1f:ce:77:68:97:31:27:fb:b8:
fd:7e:89:50:c8:53:19:10:ed:5a:17:91:21:d4:b9:
5b:d5:24:9e:54:bf:97:96:d7:af:cf:51:ed:26:28:
3a:50:84:37:4f:b4:83:38:29:12:af:ae:44:ea:cb:
3e:ed:89:1d:2a:55:be:20:53:92:45:4f:7f:76:41:
4b:42:7a:f0:74:c7:d7:30:6e:d7:c5:0e:d5:29:0d:
dd:d6:b0:1a:f6:f1:0a:3c:3c:e8:67:8e:25:7d:5a:
25:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:09:91:E5:96:2F:51:68:60:8F:24:09:B9:52:48:BC:D0:3D:0E:61
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:26:e8:61:13:87:a5:85:ff:f7:26:bf:c9:8d:ac:8d:a8:ee:
37:31:e4:a6:89:af:5e:ee:f0:b1:a2:a1:ac:f1:64:b2:d6:47:
fc:04:36:1b:26:56:24:3f:b1:87:bc:0d:35:96:8a:43:3a:7e:
67:2e:6f:24:b0:9e:02:d8:a0:fb:07:7d:77:1f:2c:53:40:a0:
3c:e0:a4:46:a9:2e:5a:dc:3a:0f:16:ea:50:45:28:b8:82:ff:
cd:f3:ee:d2:0d:8f:15:0a:58:aa:54:d6:1c:4f:45:a3:57:11:
6d:98:87:cb:30:0d:f1:e5:40:dd:8e:80:21:37:c1:80:95:43:
1b:87:9f:78:bf:a5:b2:fa:b9:7e:0e:c4:0e:ca:ec:1e:0e:ca:
f1:d2:49:68:bd:d7:e6:42:d6:f7:2c:85:63:fe:18:14:c0:91:
32:c9:e6:e2:e4:75:74:4a:4b:57:1c:c2:f9:ed:6a:4a:c9:2c:
89:d5:58:6b:fd:d9:4f:79:f0:5e:1e:c5:78:61:36:69:8b:25:
6a:23:58:89:47:cb:2c:f9:ff:b3:8d:42:99:a8:e0:a4:92:3b:
12:25:87:fe:5a:c3:4f:5e:6d:8a:17:ed:69:7c:89:41:e9:a8:
03:c6:f4:52:42:a8:41:23:6f:f2:a3:83:af:26:7f:ef:0b:c9:
cc:35:46:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 19:01:41 2025 by rpki-client