Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: hDVnvd/luq9ORsBNHgjlNeZU0qcjElS5plSFwR51Pr8=
Subject key identifier: 00:ED:97:17:8E:AB:69:1D:32:89:79:C3:E1:B7:CA:13:1D:DF:62:AD
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 0197838E67173E37080F435C361F20F07C77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 08C6
Signing time: Wed 18 Jun 2025 15:00:37 +0000
Manifest this update: Wed 18 Jun 2025 15:00:37 +0000
Manifest next update: Thu 19 Jun 2025 15:00:37 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: h08Dwg2iZb3k7fSEcylOh/NrotRbqNpqzAlNqZg6TaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 14:10:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:83:8e:67:17:3e:37:08:0f:43:5c:36:1f:20:f0:7c:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Jun 18 15:00:37 2025 GMT
Not After : Jun 19 15:00:37 2025 GMT
Subject: CN=00ed97178eab691d328979c3e1b7ca131ddf62ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0f:50:e4:c9:9d:ed:84:77:dc:27:59:f7:28:
01:38:a7:b3:e2:7b:35:e7:5b:36:75:58:bc:35:e6:
98:c7:34:09:3a:b1:31:75:7b:63:22:ce:15:8a:9c:
1d:31:9e:51:6b:11:f4:4e:74:b4:af:49:46:f8:72:
c1:4b:6f:fb:8b:5a:c1:05:35:75:7c:e2:6c:43:aa:
4f:75:dd:34:80:36:97:6e:1b:61:1b:4a:45:57:fd:
94:70:21:a8:ac:d5:55:2b:95:a5:76:ac:ad:3a:ea:
5d:0d:19:23:01:e7:5a:93:c7:29:87:42:b6:74:6a:
ac:5f:95:ce:f8:d3:09:2b:ae:e9:be:40:62:03:cd:
c6:13:13:65:d2:77:10:04:64:cc:06:8f:c4:e9:ad:
41:3c:1a:97:a5:4d:0d:e3:c2:fc:eb:27:cd:73:fc:
46:2e:bc:65:15:a7:f4:de:ae:bb:fa:fe:0f:7c:7a:
8e:44:0f:05:a6:2d:75:bc:a4:34:ec:47:41:96:72:
0e:67:05:1f:d5:37:8f:99:0a:12:40:16:ad:ff:6c:
d4:e9:1e:4a:d4:7a:0d:47:0e:33:58:d2:6f:b2:53:
36:da:be:13:03:39:a1:b9:46:3a:cb:d3:12:7f:17:
91:83:62:18:ee:17:70:d2:01:b7:2f:70:08:48:92:
fc:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:ED:97:17:8E:AB:69:1D:32:89:79:C3:E1:B7:CA:13:1D:DF:62:AD
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:27:3e:b2:c6:35:b6:96:1c:9b:2d:10:7b:92:3e:9e:53:50:
2d:a1:6f:90:fc:4d:fb:1f:44:43:0d:2e:d4:b6:f1:49:3d:75:
4e:c5:21:7c:03:6e:25:21:20:1c:a5:84:e5:39:bd:b1:cb:af:
9c:0c:26:58:2b:6d:2f:b4:b9:ab:85:f4:d6:2c:9f:18:25:e1:
36:55:42:9f:53:12:ca:bb:53:29:29:3f:c2:09:72:ab:89:d7:
5c:61:69:45:4e:84:e3:a8:bc:6d:7d:b5:29:ad:b6:b9:a8:7e:
42:32:8f:b3:97:17:3f:09:85:25:64:7c:a1:19:9f:96:a7:42:
c2:b0:5d:e9:56:e8:f9:94:5a:0a:f6:47:48:7f:0f:12:dc:10:
c1:63:25:91:ce:29:5d:89:02:8f:43:3d:f9:33:25:d1:57:cf:
5c:1f:41:66:58:37:c7:c7:34:e9:b6:c1:7a:55:82:bc:75:87:
ba:ff:06:f3:bc:b3:6e:20:7a:e6:3f:ec:69:c1:68:f0:4b:5e:
b1:57:ca:86:e0:fc:34:f1:b4:a9:ec:dd:b9:38:e1:86:2e:a9:
3b:30:05:fe:26:03:86:67:a1:94:bc:89:2b:43:66:bd:c9:94:
12:c3:bc:14:36:b6:1b:e3:0e:05:fe:2e:80:e4:30:6e:61:03:
03:ce:a8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 18:15:47 2025 by rpki-client