Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: fdrjltwceqGa++p4cXEymtzupzrUY4zigL7Eoe4rj1E=
Subject key identifier: 60:DC:51:09:BD:BF:D3:E4:9C:4F:C1:20:A7:E5:68:5F:F5:2E:0E:7D
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 019922C39BE8BF93C978AFB5CF8CB2B9AEAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 099D
Signing time: Sun 07 Sep 2025 06:01:08 +0000
Manifest this update: Sun 07 Sep 2025 06:01:08 +0000
Manifest next update: Mon 08 Sep 2025 06:01:08 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: +R8el1hduNZGaEiCN2VZfsZChNJRjZs65nrVt7KYwZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:9b:e8:bf:93:c9:78:af:b5:cf:8c:b2:b9:ae:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Sep 7 06:01:08 2025 GMT
Not After : Sep 8 06:01:08 2025 GMT
Subject: CN=60dc5109bdbfd3e49c4fc120a7e5685ff52e0e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c6:c6:db:5f:10:6a:4b:7e:b0:6c:ef:4e:de:
d5:5a:94:ac:46:2a:df:02:52:cd:f7:7c:d0:54:01:
36:80:ad:ff:07:7f:c4:ea:26:e7:33:74:37:df:21:
94:9c:05:3e:c7:01:09:03:22:47:15:e8:94:8a:86:
3d:8f:43:8e:3b:f1:8e:65:70:07:aa:cc:5c:5d:c4:
b2:87:93:48:7a:f2:e1:35:bf:6c:57:98:ad:6d:85:
cc:f5:52:18:93:33:83:41:8a:4a:62:de:63:31:6b:
c6:92:8f:04:7e:e4:4e:2a:96:c0:bc:91:6e:92:c7:
42:d5:1f:0b:b6:9d:7b:95:37:89:08:cf:14:ea:e0:
89:e4:f2:09:47:a1:34:53:68:4c:d6:1a:45:dc:93:
a4:ac:f3:a9:ff:f6:42:58:d4:7b:26:4e:a0:8d:58:
e6:5a:f6:56:62:44:8f:2d:c0:e9:96:2b:6b:51:1e:
8d:d1:66:c9:a4:b0:ab:a1:8d:52:ab:d3:bc:e1:59:
da:17:d1:3e:51:9b:82:11:82:b4:a7:77:d7:7c:5d:
f4:20:20:02:a3:b2:64:e2:95:59:f6:ae:2f:41:50:
c0:9d:4e:bf:b4:9e:85:8d:4d:f8:bd:ea:71:b0:d1:
c8:e5:24:3b:52:d5:40:98:59:96:5d:3f:94:df:51:
59:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:DC:51:09:BD:BF:D3:E4:9C:4F:C1:20:A7:E5:68:5F:F5:2E:0E:7D
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:42:11:ba:da:95:ba:a7:61:4e:a1:c0:5f:74:a4:87:cb:10:
c3:f2:25:c0:30:8b:7c:5f:31:11:b6:a9:2a:06:ac:94:ab:f5:
09:25:c5:c5:e9:d0:a6:42:6a:f7:f1:c5:92:c3:9f:e5:f5:ea:
29:ad:d3:44:a5:21:23:54:95:3e:70:ad:f0:2f:93:d1:08:1b:
b4:3c:83:e8:33:3d:26:d4:52:a2:f8:39:e6:31:28:9e:ef:38:
04:0e:fa:96:70:5d:9d:d3:04:09:ff:e3:08:f6:9b:66:44:95:
a7:ba:1a:fd:7f:0d:61:df:a9:f3:de:83:af:ce:1e:56:e0:34:
19:f3:c3:7a:5a:f4:f9:b1:b3:f4:48:14:ea:27:0c:b0:cd:40:
2c:da:59:22:b9:e9:12:a3:98:0f:fd:c2:f2:2c:d9:55:3c:71:
b4:8e:71:b0:e4:69:35:94:f6:97:c0:11:dd:e4:a1:f4:b5:fa:
1a:d4:6d:6c:c7:2a:73:e4:c1:13:64:81:53:a8:27:45:36:ed:
7c:74:85:ee:f0:9a:45:05:20:f5:da:f6:c6:78:93:b2:e7:69:
78:a1:3f:e9:a9:02:3f:96:c1:bb:ed:00:00:01:10:27:17:8e:
aa:db:13:70:4d:7a:08:0c:34:2d:f2:d7:ea:56:7d:1c:e8:cc:
d5:ea:42:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:57 2025 by rpki-client