Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: 7Kf13wkKMyusYeAtyLnWVk4wRUt6iz+rwNIBBeMB7S8=
Subject key identifier: E1:57:EF:B1:E1:A8:69:A6:FE:6A:D8:1A:7B:7B:F0:C0:15:E4:22:4A
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 019CADC806603A0AE9760916FC58B3972C77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 0B73
Signing time: Mon 02 Mar 2026 09:01:33 +0000
Manifest this update: Mon 02 Mar 2026 09:01:33 +0000
Manifest next update: Tue 03 Mar 2026 09:01:33 +0000
Files and hashes: 1: HBecOjtWbDhPtARPUUTLEgbUp6g.roa (hash: ZUGOFV89K06s4uTeXxt/3j8cGsfgNWnfAk2/FK+XmzA=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: nxYI+4+nnBGP4H2i+aaSEKXb/DLEZncSRaV4Kdp0N68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:06:60:3a:0a:e9:76:09:16:fc:58:b3:97:2c:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Mar 2 09:01:33 2026 GMT
Not After : Mar 3 09:01:33 2026 GMT
Subject: CN=e157efb1e1a869a6fe6ad81a7b7bf0c015e4224a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:65:8d:ea:5b:29:03:82:f8:1f:bc:39:22:f2:
aa:48:90:f6:a8:e5:6a:c1:ce:75:bb:59:45:25:e8:
8b:4b:38:f8:bc:53:36:5b:51:80:07:94:03:60:6c:
ac:e3:70:94:ed:65:3c:f4:6a:44:cd:05:16:b8:30:
4e:c8:db:cf:ce:ad:31:de:53:bd:05:4c:e2:fb:54:
ca:f6:bd:dd:37:d6:91:da:31:71:11:26:d0:19:ef:
4c:6b:a5:1a:f2:74:ac:6d:47:85:3a:ca:8f:5d:c7:
0f:44:6a:8b:dc:a2:d9:93:8a:05:3c:0d:b3:7c:82:
f9:d2:e1:1c:9c:c4:a8:89:d1:19:6a:fd:22:75:9a:
2c:35:4e:25:bd:56:0d:36:64:a1:6a:42:ed:05:53:
65:5f:de:b1:d8:67:48:69:d8:0f:3f:be:6a:0e:e6:
62:dd:6f:37:0e:c2:a5:b3:78:97:a5:68:8f:a5:4d:
ab:28:97:b6:40:19:5b:3d:f7:7c:c6:f7:f5:3e:57:
ff:75:05:ee:d0:9a:85:32:a3:cc:13:e2:ad:f8:f6:
ef:1a:24:07:00:d9:31:84:4d:5f:4a:8c:0b:65:e8:
b3:e2:4c:32:c6:25:f4:e6:1c:9c:d4:54:c8:96:e4:
70:52:57:e1:07:99:5a:9c:b9:3b:3d:34:b6:3d:59:
c5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:57:EF:B1:E1:A8:69:A6:FE:6A:D8:1A:7B:7B:F0:C0:15:E4:22:4A
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:74:ba:dd:83:36:e5:16:60:75:7b:20:9a:5e:a1:d5:c1:2a:
7b:fb:07:96:87:9c:d4:7d:74:1b:43:35:86:47:99:a4:e3:72:
42:2a:1d:d7:7c:71:c8:a2:23:61:b8:3c:16:21:9f:78:85:10:
4b:9e:62:db:3e:db:1f:6e:8e:94:03:fc:61:fe:09:18:f9:ef:
72:26:a8:62:54:01:3e:55:8f:9c:92:73:ef:f8:55:c0:95:57:
91:b6:70:2f:2a:0c:50:f1:e7:b7:f4:d1:20:51:10:53:bd:80:
ba:c2:a5:af:ef:22:9e:64:83:a2:e9:4c:fb:56:c0:e5:0d:68:
e0:c8:c3:71:ce:ea:42:5c:de:4a:11:7d:b9:38:c0:4b:cc:d8:
fc:c6:77:c8:01:68:1b:2b:ff:d9:c8:d8:a3:d9:b3:af:7f:af:
bb:c0:a9:09:01:2f:b5:9f:d9:a0:09:da:02:da:53:8d:ff:fc:
47:72:3b:a1:87:af:12:fe:82:4e:ca:e1:ab:54:6c:5b:de:5c:
d9:55:30:87:19:d9:b8:5f:92:5f:44:7a:e8:65:cd:a2:6a:31:
59:b0:34:1a:b3:12:c4:e0:db:47:cd:63:5c:3d:16:52:45:c1:
bf:26:f3:eb:6b:30:d7:f3:43:40:5c:c6:f2:91:34:fc:76:75:
14:8c:ff:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:49:55 2026 by rpki-client