Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: oEaa5q/0jWoETwHY6eCFN31s/OaVDJbC/Yh06pSj+PE=
Subject key identifier: 00:1D:01:0C:BE:13:67:A1:90:D7:23:29:94:7C:4C:50:07:D6:C7:02
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 0198D583CA8744DA91F93459AD5B30360A2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 0975
Signing time: Sat 23 Aug 2025 06:00:40 +0000
Manifest this update: Sat 23 Aug 2025 06:00:40 +0000
Manifest next update: Sun 24 Aug 2025 06:00:40 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: Xd1GH47NI8cxPswAo1lzPZYCEPergm1C4hAo2tRtlg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:ca:87:44:da:91:f9:34:59:ad:5b:30:36:0a:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Aug 23 06:00:40 2025 GMT
Not After : Aug 24 06:00:40 2025 GMT
Subject: CN=001d010cbe1367a190d72329947c4c5007d6c702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:44:46:92:af:3f:99:d4:63:36:57:0e:84:bc:
da:27:f6:6d:0d:f5:f2:be:47:ff:85:23:b7:13:a3:
ce:da:d6:0c:08:7e:aa:e3:a3:e9:35:d7:68:d9:f5:
e3:63:67:e1:5d:eb:37:37:e6:86:9e:d7:78:39:dd:
87:d4:69:30:ea:26:19:7b:0f:25:35:9c:2f:1f:01:
01:e5:48:58:7d:50:b3:f2:a0:df:09:38:e4:b3:5e:
3d:60:2a:11:54:d4:0c:cb:c0:ee:cb:a2:42:01:52:
f3:6a:0a:a8:c9:25:1a:6f:68:c8:64:b7:de:e0:e7:
6d:cf:5f:14:77:bd:77:0c:2a:c8:af:8d:e4:32:70:
a5:a7:8c:76:ca:e3:d5:88:38:73:ba:e6:8c:c1:37:
97:9a:52:f6:b8:97:30:50:cb:e8:1c:76:52:d2:24:
c7:3e:4a:10:82:f5:40:d9:1a:90:b1:8e:20:20:8e:
c1:37:15:b7:9d:95:bf:b9:7a:87:09:48:82:15:4b:
ed:c5:92:f1:a0:5a:f3:d1:50:00:90:9f:d1:9b:a5:
92:b9:ed:54:0f:ef:61:38:11:06:1b:43:23:c0:9e:
a0:90:ef:94:a1:05:c8:a6:f2:d7:57:7d:51:c4:45:
2e:29:da:d9:09:89:bc:59:0d:c3:ed:ed:33:39:e6:
5c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:1D:01:0C:BE:13:67:A1:90:D7:23:29:94:7C:4C:50:07:D6:C7:02
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:6a:e2:b8:ec:13:a5:b3:51:95:95:14:15:5d:20:1f:c0:7a:
c4:43:87:e4:bd:1b:80:ae:32:3b:90:fc:b1:0b:27:64:33:9d:
30:04:e3:83:a9:2c:45:d3:16:ed:11:5f:d9:4d:2a:3f:97:28:
55:1c:47:85:58:9b:ad:f9:a6:72:36:89:3f:8d:a2:4d:c8:72:
9b:4a:98:e5:1c:69:14:72:b3:39:21:03:ad:19:24:e9:33:14:
1f:9b:d8:d7:43:01:8f:1d:ed:8f:aa:98:f6:ca:cb:b5:da:26:
cf:41:06:91:0a:d0:70:f9:60:57:18:1e:11:6b:f8:94:66:33:
a5:d9:9a:2e:9d:89:69:f2:c0:f9:a4:2a:9e:1b:1b:c1:df:38:
ad:61:01:6a:ea:2c:c4:2e:fb:53:0e:2e:4e:a8:6d:92:42:2b:
a5:fe:c5:c5:f1:e2:25:ea:ca:e9:31:50:65:c6:04:a8:23:a0:
6f:e1:8a:6f:a1:c2:cf:74:b6:65:ee:41:f7:5c:46:5e:6b:f1:
ab:47:70:10:37:33:0d:0c:e9:35:a5:13:d9:6f:cf:2b:83:25:
41:5e:64:f2:0b:d0:15:d0:fa:58:32:a1:bb:51:00:9a:bc:0a:
56:fc:fd:cd:37:ad:ec:2c:cb:3e:78:5a:15:bb:c2:31:40:c8:
b1:50:47:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:45:49 2025 by rpki-client