Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: erDm2GTQyO7J/nQ7Uq9scOPf0xfIohEMWmsvlefhqxg=
Subject key identifier: A9:21:0D:08:43:16:A4:66:22:6E:73:DB:6A:D5:14:1F:ED:A8:39:F0
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 019688807B0E7A53ACFA723773B8CF9FC226
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 0844
Signing time: Wed 30 Apr 2025 21:00:43 +0000
Manifest this update: Wed 30 Apr 2025 21:00:43 +0000
Manifest next update: Thu 01 May 2025 21:00:43 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: FwP4iqf4cKp4pUsPdLG/HJv30aMaCnZM7aoHp176s2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:80:7b:0e:7a:53:ac:fa:72:37:73:b8:cf:9f:c2:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Apr 30 21:00:43 2025 GMT
Not After : May 1 21:00:43 2025 GMT
Subject: CN=a9210d084316a466226e73db6ad5141feda839f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:56:89:3c:66:f0:d8:93:7f:ad:f4:98:4e:eb:
e3:1e:9d:0f:0e:d6:66:16:a0:8f:95:76:7e:e0:c1:
59:6d:8a:34:4c:33:09:56:d0:e0:cb:ca:93:e7:b2:
bc:2d:25:fe:2a:28:22:fc:61:43:8e:b2:44:ca:87:
c7:12:bd:38:a3:cf:78:1c:6a:dd:b3:eb:cc:56:a6:
d0:47:4e:16:84:a9:48:85:59:1f:c2:db:18:59:82:
f0:93:aa:28:4b:44:de:16:f4:ae:23:6c:cd:55:6a:
b1:ee:2a:4b:c9:a3:ba:47:66:f7:38:8f:93:13:fb:
cd:60:c8:9d:e2:25:1e:0b:f7:a5:19:5e:87:7e:4f:
0a:36:98:bc:3b:2e:33:f4:28:5f:63:20:07:61:fc:
12:c9:90:c5:f3:b7:ea:e6:f7:fd:a3:d8:1d:75:aa:
d1:ac:67:e1:0e:22:31:df:f0:d6:ad:23:66:d9:37:
1c:ce:20:5d:2e:33:c0:30:f9:f5:4f:54:b4:39:79:
df:0f:eb:9c:7c:da:b7:5d:d7:a0:ce:43:d2:bd:b8:
6a:8e:f5:45:ed:c5:e1:67:96:a9:d0:4d:2c:25:26:
c9:b7:7f:bd:1f:6c:9f:80:ec:ba:5f:92:f3:ab:d6:
50:9c:74:b6:68:72:7b:51:d2:aa:7e:d1:21:96:59:
4a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:21:0D:08:43:16:A4:66:22:6E:73:DB:6A:D5:14:1F:ED:A8:39:F0
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:a2:d0:48:02:13:17:07:60:57:85:73:6b:74:61:6c:40:f2:
5a:f4:f1:a2:c7:0a:a3:83:6c:d3:48:a2:94:95:6c:13:a4:f8:
22:dd:08:9d:7b:7d:91:d1:3d:17:49:a8:d0:3b:11:7f:f3:4d:
68:a3:26:c5:9d:bd:26:66:fe:e2:d5:a5:73:ee:05:63:c8:89:
02:b8:24:00:44:c1:f5:89:bf:a2:f8:d5:02:f2:62:b6:66:80:
74:25:90:21:52:dc:0a:d3:8f:8a:a5:59:31:5a:93:08:ac:a7:
c9:6f:87:18:74:c3:14:70:d7:bd:2a:ef:28:3f:02:1c:05:44:
4a:57:7e:5b:a0:18:98:5a:7c:b4:b9:ff:20:a6:88:fb:2e:4c:
24:9d:dd:63:8f:e8:23:3b:9c:f5:39:92:8f:1d:45:75:e2:b0:
2c:9a:e1:36:04:c8:44:c9:33:20:a3:b5:5b:57:4f:af:d0:ca:
d9:2f:11:7e:46:c7:d3:01:b1:50:31:7d:88:cc:05:11:e1:f0:
a0:87:f5:0c:cc:8a:b3:e1:e8:e8:af:f6:95:1b:c5:23:2d:d5:
89:86:15:bb:3f:db:8e:b2:36:26:f2:55:15:a7:ed:dd:d1:ad:
2d:39:da:7b:32:f5:5c:9a:b4:1c:db:ac:75:47:85:e3:cc:e5:
87:df:be:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 05:51:29 2025 by rpki-client