Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: LUAWxr5Z4HeCLMTtZOGi2jEGzVuofaoqv+MjklaCtI4=
Subject key identifier: AC:35:F3:E6:D8:72:84:5D:10:33:CA:C3:C9:EC:0B:C6:46:51:EA:D1
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 01988A334C1AD6E9A05FB9CD4111379ED2E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 094E
Signing time: Fri 08 Aug 2025 15:01:14 +0000
Manifest this update: Fri 08 Aug 2025 15:01:14 +0000
Manifest next update: Sat 09 Aug 2025 15:01:14 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: GIcv+Gtc77nWm9q7RERt1zKCtyX/DoXbFY1dN9xtAig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:33:4c:1a:d6:e9:a0:5f:b9:cd:41:11:37:9e:d2:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Aug 8 15:01:14 2025 GMT
Not After : Aug 9 15:01:14 2025 GMT
Subject: CN=ac35f3e6d872845d1033cac3c9ec0bc64651ead1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:21:42:c1:16:08:2c:c0:f8:29:07:2d:ba:6f:
12:cf:54:c5:dc:b8:91:83:48:a1:c6:17:8b:06:96:
87:1f:65:17:9c:9a:53:3d:a6:4d:1e:7c:d4:e5:b1:
d1:3f:6d:2f:cc:1e:a9:79:11:8d:00:3d:3d:ee:27:
52:73:a7:64:92:ad:d0:a3:c3:2e:70:f5:c0:9a:e6:
09:bc:27:53:e8:5a:6b:0d:c2:5a:72:7d:3c:67:36:
50:f5:5d:0b:42:72:ec:27:1a:71:01:fb:c9:fb:98:
5d:84:10:81:ce:0e:3f:25:76:f2:5f:bb:ad:80:25:
2f:70:d1:c7:f7:4c:e5:c7:e2:60:5b:2d:aa:cc:8b:
6c:a8:dc:63:87:15:bc:8b:a8:2b:26:d8:27:a0:a8:
ae:3c:05:c3:d3:d5:54:64:07:d2:bc:7f:1b:7d:26:
97:cd:ce:26:b1:84:73:55:15:87:99:0e:8b:3c:34:
cf:eb:3c:87:11:52:6e:4e:cc:6c:8d:a2:80:fa:f7:
4f:6a:62:16:c9:b1:3a:07:1c:b7:5d:32:dc:43:db:
c2:94:2a:e7:4e:63:be:ff:22:9c:b2:75:f1:0c:79:
3e:85:23:c2:28:3e:0c:19:fd:70:eb:c8:61:d1:ca:
d7:4b:bf:53:ca:e1:d6:4d:c2:23:31:f2:fa:e2:fd:
f0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:35:F3:E6:D8:72:84:5D:10:33:CA:C3:C9:EC:0B:C6:46:51:EA:D1
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:30:42:40:e9:c5:fc:29:03:29:f0:4f:b7:90:15:16:38:5d:
cb:03:f3:1d:51:05:ca:c2:3e:e1:bd:bb:b6:3b:08:57:02:1a:
8b:00:26:34:38:18:d1:09:f3:0c:7d:56:bb:8e:2b:76:e4:6c:
76:98:3c:fa:78:13:a1:c8:2d:76:df:fb:3d:eb:1f:2b:96:35:
c0:c7:85:6b:61:71:47:63:89:5d:e8:43:f9:13:29:f6:cd:cd:
76:9d:6d:d7:dd:25:5a:a6:50:84:7c:d8:be:57:91:1e:7a:9a:
28:b1:8c:98:d9:d4:11:11:38:07:af:80:f8:68:1f:23:4f:c8:
60:be:e1:79:1c:22:c5:14:aa:b1:db:58:f2:2a:1f:3c:24:f6:
11:7b:80:21:f9:cf:55:cd:60:d1:d9:8c:a0:4c:da:a4:a1:cd:
0f:c4:8f:28:e7:f3:ea:90:3c:8a:4e:3e:74:4b:46:a3:bf:72:
53:6e:b4:d1:25:fc:02:e5:a4:9e:96:83:92:28:16:80:44:a7:
40:5b:00:0c:83:df:4c:ef:27:7e:76:73:00:bc:3d:38:6a:53:
5c:0c:74:3d:fe:56:fa:66:c2:31:ee:a7:83:5f:8d:1c:93:dd:
59:dc:15:9f:07:cc:56:d5:42:c3:17:57:74:5e:e2:be:53:91:
58:f5:0a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:35:02 2025 by rpki-client