Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: EwfA9Nu3pihosITtQbIdlnhnIYU41I0RPtbxEuyHbq4=
Subject key identifier: 34:50:3A:C2:0E:CB:58:13:FB:2C:40:5A:01:6B:C8:7C:AC:08:42:1A
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 0198D73B2EFF3C4C62CF20AE1393D26C2EA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 0977
Signing time: Sat 23 Aug 2025 14:00:36 +0000
Manifest this update: Sat 23 Aug 2025 14:00:36 +0000
Manifest next update: Sun 24 Aug 2025 14:00:36 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: F0hlkiIz9PXUd3GXHhwqfVEigXKUD+DWz4co/skwqFc=)
2: eTuN91J09OBNoZtxEtruVhH4DbY.roa (hash: F1iOkNAfZrkXFWgz/sdsk9Ul6Wkc9BDyHiaUC1recQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:2e:ff:3c:4c:62:cf:20:ae:13:93:d2:6c:2e:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: Aug 23 14:00:36 2025 GMT
Not After : Aug 24 14:00:36 2025 GMT
Subject: CN=34503ac20ecb5813fb2c405a016bc87cac08421a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6b:47:cd:1e:39:bb:ac:35:18:20:5d:b7:e9:
7b:5e:4e:ba:dd:66:81:53:73:6c:72:43:25:79:fb:
d9:fa:dc:6a:2f:66:bd:9d:77:5c:bf:55:fb:3b:41:
64:37:3d:bd:29:7c:53:0b:af:b5:01:b8:30:4d:ce:
72:50:dd:25:5a:52:48:26:c0:fc:23:6b:50:0d:df:
2c:60:c1:8f:54:76:2d:73:e2:32:0e:fd:11:f5:ba:
90:46:1a:ec:27:19:20:91:c6:50:5a:0f:c7:2f:66:
e7:23:f1:49:9e:cc:68:04:80:3b:ff:3e:23:e9:b8:
00:4e:18:aa:77:da:f2:e8:62:a3:f1:6e:47:33:cc:
d1:49:0f:03:27:7e:a1:9d:f6:1d:a2:3b:5f:dd:e9:
76:9d:3c:10:69:d5:45:7a:38:fb:60:02:e5:ad:17:
ac:48:cf:2f:b7:51:39:63:5a:d5:44:f4:20:56:5c:
99:03:a6:91:8e:4e:b9:77:94:91:63:c7:a3:9b:5d:
f4:58:0e:14:7b:4b:5a:12:7b:4c:20:a3:87:df:46:
ec:c5:ae:7c:ce:ef:ee:8a:d7:e7:d2:79:1f:b0:86:
c7:3a:6e:8a:8b:16:44:3c:94:9d:b3:21:9e:14:89:
4d:64:1e:23:f7:82:e2:38:ae:8b:08:17:f4:1c:98:
76:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:50:3A:C2:0E:CB:58:13:FB:2C:40:5A:01:6B:C8:7C:AC:08:42:1A
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:95:68:e5:f0:e6:e6:a7:78:72:06:ec:c7:f4:31:0e:f9:11:
de:a7:94:ae:a9:4e:2e:1e:90:d2:01:37:b9:0f:8f:eb:43:8d:
68:1a:ff:79:8c:11:fc:74:0d:85:1b:53:89:69:0c:51:6c:f1:
a6:30:80:19:20:53:cc:34:93:33:40:33:52:3b:93:4f:03:b1:
15:d2:f7:bd:6d:ba:b0:49:4e:69:71:49:ba:60:4c:d5:ca:1b:
46:fd:79:0d:5a:6e:df:09:73:74:d2:f9:c1:3f:79:1e:88:28:
82:4b:d0:e9:5e:eb:28:16:88:1e:22:49:a6:00:f8:38:65:8b:
42:b4:70:11:c7:09:0f:e2:43:6a:6b:89:ab:1c:13:31:d4:e4:
c1:b9:17:e6:10:03:45:53:8b:7e:f0:22:d6:35:46:56:d1:08:
8c:1f:4b:f2:6e:d6:ad:11:96:55:b1:21:b1:13:08:42:55:ca:
8b:8c:d3:16:b0:5d:89:63:0a:6b:cd:d2:2c:1f:2e:15:98:8e:
64:e5:82:20:72:b8:53:f3:92:3d:cd:af:44:f1:cb:2c:cf:a2:
c5:7e:d4:87:3b:2b:12:73:bb:37:42:03:39:d5:6e:e8:01:f4:
c4:3e:90:0a:38:ea:cd:a9:87:fd:85:fc:63:80:ab:8f:a4:24:
61:09:f3:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:58:08 2025 by rpki-client