Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: Vs13sihRWWpBqNl/l1/TkOmL/HXrwPTMC/LW96P7BL8=
Subject key identifier: DA:DC:49:86:8E:6E:BE:0C:0E:9A:F1:3F:27:BE:A1:31:14:7D:CE:BB
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 019747B0AB117801C5E8DEA90488C692D3D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 08A7
Signing time: Sat 07 Jun 2025 00:00:49 +0000
Manifest this update: Sat 07 Jun 2025 00:00:49 +0000
Manifest next update: Sun 08 Jun 2025 00:00:49 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: o9qp4v+b6FmmMIoutONm9gxIMq3Rzavbbu8PLYBA/lE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:ab:11:78:01:c5:e8:de:a9:04:88:c6:92:d3:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Jun 7 00:00:49 2025 GMT
Not After : Jun 8 00:00:49 2025 GMT
Subject: CN=dadc49868e6ebe0c0e9af13f27bea131147dcebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3e:4a:cc:14:b8:fc:cf:cb:d8:ea:23:36:62:
29:a4:f5:3c:63:6d:b1:fa:2c:a8:97:a0:ad:dd:17:
2e:98:a4:e9:ee:c6:0a:65:d0:a5:09:b8:c7:0d:d6:
e3:32:1f:3c:de:c0:d4:d8:4b:2e:f4:3a:38:e6:cf:
6a:bc:95:05:89:d9:da:e7:43:f0:f9:db:63:54:fa:
74:c3:bf:b9:35:19:39:f3:ed:0c:13:50:5e:af:87:
57:39:ab:04:16:8e:9d:c0:00:ee:b0:da:57:af:b4:
87:dd:75:a0:65:a9:a1:49:0d:1b:06:40:9c:e8:60:
e8:c8:8c:92:8c:ca:3d:e5:32:df:40:78:e0:c9:df:
7f:57:85:f1:98:bb:0a:37:6b:00:22:91:98:37:ce:
4a:f5:4f:e8:d2:65:3e:59:86:ca:65:e3:35:19:fd:
ce:b3:45:28:51:0b:10:49:6d:83:32:73:eb:a7:a8:
35:34:e9:a2:8c:15:2a:0e:9a:f7:f4:3c:46:6c:d9:
cc:26:56:98:15:f3:dc:bb:a9:4d:40:05:27:1e:d6:
9f:e0:7e:97:9d:fd:d3:57:43:c5:e0:27:0b:bc:7d:
b5:3d:a1:be:14:ff:b1:fd:ab:7c:33:df:0b:1d:14:
29:2e:e3:31:db:c5:f9:e5:fa:5b:bc:7a:25:c6:f2:
d2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:DC:49:86:8E:6E:BE:0C:0E:9A:F1:3F:27:BE:A1:31:14:7D:CE:BB
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:50:b4:81:ea:8a:2a:94:4b:cb:71:9c:e6:96:ec:9e:f0:1e:
30:56:54:09:ca:6c:30:78:9e:6a:6a:d2:87:6f:21:73:72:15:
13:a8:92:f7:7f:d6:e5:83:7f:9e:c6:a3:fc:99:8e:72:29:c2:
7d:1b:a2:3a:dd:90:ee:52:e7:00:6e:96:46:95:3c:d1:79:c8:
0b:f1:08:24:4f:33:88:53:30:c5:18:b3:37:6e:62:a0:c8:a2:
40:4b:08:a8:9d:05:81:24:ec:7d:4f:01:36:58:94:79:00:6f:
e9:5e:cd:bb:45:53:c5:a2:15:cb:94:55:74:c0:0b:8c:14:50:
3f:1b:56:d3:d9:b8:04:3a:ff:19:1a:f5:c8:6f:19:5f:de:db:
4d:0d:92:0a:04:80:eb:9a:9b:03:82:cf:6b:2c:e4:a8:ff:f3:
80:bc:dd:ef:43:70:56:4f:0a:4a:cb:61:70:bb:c1:3d:84:65:
03:ab:c4:ef:8d:51:d6:88:05:70:e8:64:de:38:97:f8:15:f5:
63:a4:a5:03:83:0d:38:da:39:f5:bc:c2:bd:c5:da:e1:3b:e4:
83:dc:e5:e0:c6:1e:71:36:1e:54:e6:ab:42:cf:c9:71:6b:51:
88:c6:ec:97:dc:0b:0c:76:b3:a9:cf:53:f5:1e:5f:bc:44:9b:
b9:b4:04:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:33:03 2025 by rpki-client