Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: 5H9yLKimY7BSVLCF9oabiuK79PSuCrfQzIzuY5/Dwfk=
Subject key identifier: 77:88:3E:19:D3:B8:85:81:95:38:92:07:FC:20:3D:23:F4:50:BC:93
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 019D25838281659423ED09539CD03BC49270
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 0BB1
Signing time: Wed 25 Mar 2026 15:01:08 +0000
Manifest this update: Wed 25 Mar 2026 15:01:08 +0000
Manifest next update: Thu 26 Mar 2026 15:01:08 +0000
Files and hashes: 1: HBecOjtWbDhPtARPUUTLEgbUp6g.roa (hash: ZUGOFV89K06s4uTeXxt/3j8cGsfgNWnfAk2/FK+XmzA=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: Kiy5BkEDlvZkdJ1AlloMKUezsJu+ZMDz2OYCSkEVMAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:82:81:65:94:23:ed:09:53:9c:d0:3b:c4:92:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Mar 25 15:01:08 2026 GMT
Not After : Mar 26 15:01:08 2026 GMT
Subject: CN=77883e19d3b8858195389207fc203d23f450bc93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:13:c4:dd:f4:9a:81:76:81:ca:8b:da:6d:d6:
e0:60:50:90:19:72:51:8c:fd:0e:63:ee:1d:40:79:
70:50:11:64:33:00:d9:5a:57:8c:94:d5:6d:2f:40:
89:5a:a5:21:80:71:32:70:a4:a7:d0:2d:25:bd:c9:
a8:5c:39:46:c3:8a:10:c7:14:7c:3c:4b:22:2b:a7:
3f:49:8e:76:21:9a:83:21:d6:f2:16:48:31:be:e6:
86:ac:ca:ee:e4:d7:71:05:be:fb:ab:fc:10:4d:1f:
6c:ac:47:0d:a8:12:ed:e3:93:dd:c1:83:50:9c:38:
95:1a:31:7b:40:f0:19:00:d9:e8:f8:ec:c0:08:36:
e4:c8:87:c9:b8:b6:94:6e:76:23:18:3a:73:88:9b:
27:0e:84:74:5c:8c:be:bf:5f:8c:81:c0:cd:43:98:
29:e4:b5:54:3f:a9:74:fb:f7:de:ce:ad:a6:41:2d:
53:1d:95:77:23:c1:34:a5:60:b2:e7:cc:0d:40:d9:
93:1f:2a:ce:9f:2f:87:64:79:b2:d6:87:2d:78:de:
17:6b:76:72:85:75:8d:88:3e:9a:97:73:be:6b:83:
20:1b:52:19:81:1c:3d:fa:46:2f:27:6a:d0:bd:47:
8c:44:12:cc:d8:a1:bd:81:66:94:98:b2:1f:f8:2e:
87:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:88:3E:19:D3:B8:85:81:95:38:92:07:FC:20:3D:23:F4:50:BC:93
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:62:42:e9:32:12:95:91:7a:23:44:c2:35:d3:9f:43:7d:0d:
4a:3d:3c:bc:23:48:a9:b5:ac:a8:52:34:20:60:ca:40:53:b3:
80:ff:e5:79:d2:9b:b2:d2:c6:f7:4e:a3:1a:d9:af:fa:57:c7:
4f:42:3f:1f:ef:0c:c4:e5:7a:bf:42:74:b2:b0:23:2c:e8:ab:
a6:19:51:f7:e0:67:3f:06:4b:24:34:2b:79:f6:86:5e:03:bf:
a2:a3:7e:76:5e:4a:9c:27:c1:0d:3b:72:f4:d8:f4:56:79:0e:
22:32:0b:47:32:b6:af:55:75:b3:8b:8b:7d:06:19:54:aa:b6:
bf:80:74:24:ac:8a:77:33:d7:c5:67:4d:19:d1:f7:20:c2:4c:
ef:c0:05:8b:03:6e:a1:f2:c8:41:23:70:53:0d:18:bf:e0:e8:
8a:57:9b:51:bd:ed:c5:ed:cb:08:9d:4f:6c:31:bb:0d:2e:dc:
b3:a3:9a:ba:cd:c6:66:b4:0b:07:e7:01:6e:57:71:4b:40:2a:
18:0a:5e:bb:1b:f4:7c:54:f0:b4:a5:d0:eb:c1:eb:41:90:6e:
5d:f0:11:c0:f1:63:1b:a8:1d:38:c7:6d:8b:82:dc:3d:26:f9:
36:c7:05:87:4f:99:2c:5e:20:fc:c9:17:0a:2b:bf:a2:e0:00:
b6:72:28:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:08 2026 by rpki-client