Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
File: cnegKqVG3RoKaoLQXZCwkX4VRe0.mft (raw, json)
Hash identifier: V9ZT/W0paltPJhyJFXu5J7aAcAcC/Tn58LuSz0Sngbw=
Subject key identifier: 3D:C7:4F:11:FD:7C:C8:A4:D7:27:1C:3B:5B:DC:48:77:52:AE:99:EE
Authority key identifier: 72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED
Certificate issuer: /CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed
Certificate serial: 0199345BCEF4F0E7C24B5C09793D13269B76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
Manifest number: 1286
Signing time: Wed 10 Sep 2025 16:00:55 +0000
Manifest this update: Wed 10 Sep 2025 16:00:55 +0000
Manifest next update: Thu 11 Sep 2025 16:00:55 +0000
Files and hashes: 1: 30-4U9nQ-D0aJwZBJ1-bMuclPkc.roa (hash: B7rpxNi8g0T+2AMmv+mqO6f85+SxNjEeES2xtaw9X3k=)
2: cnegKqVG3RoKaoLQXZCwkX4VRe0.crl (hash: tT2Po8nQSP2BCu7/e5Lr8gaCPpO6v3VxMN/rxlmz8t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 16:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:5b:ce:f4:f0:e7:c2:4b:5c:09:79:3d:13:26:9b:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed
Validity
Not Before: Sep 10 16:00:55 2025 GMT
Not After : Sep 11 16:00:55 2025 GMT
Subject: CN=3dc74f11fd7cc8a4d7271c3b5bdc487752ae99ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a0:f6:73:0b:33:2d:8f:9b:6f:98:d6:ba:f9:
83:0d:fb:d7:0c:e5:4b:40:11:79:2a:18:8f:d5:d7:
79:b0:21:cc:cc:a9:1c:97:f2:86:5f:22:71:0b:b3:
ab:e9:86:3b:fa:2a:fd:a4:84:f9:5e:28:88:b0:cf:
83:99:6c:68:45:a1:83:75:64:03:42:9d:96:af:37:
b3:a8:c6:82:09:86:50:b3:6e:b5:cf:1e:58:4c:7f:
51:f6:9e:c2:f0:5f:33:e2:2a:81:80:31:50:a9:6c:
ee:cd:33:aa:67:3e:1d:e6:e7:c4:74:ed:c3:6c:c7:
68:95:8a:75:96:78:47:fa:95:58:fa:07:39:22:1c:
83:6e:4a:2b:72:99:2e:25:d8:ed:82:cb:26:7e:dd:
4c:47:d7:9f:d4:80:c4:d2:ef:5e:74:47:ae:89:04:
86:16:f1:cc:f0:23:92:dc:bc:5a:b8:df:6c:1b:66:
66:bb:2a:73:d7:18:31:e8:cd:dc:92:39:bc:0c:23:
f2:e4:24:8b:8b:8b:06:97:29:84:1f:cf:e1:6a:9a:
b6:17:0a:e1:bd:d5:17:f9:a8:18:65:6f:02:af:da:
41:25:fc:61:ca:34:dd:7d:cb:68:3c:32:98:ec:e5:
5b:53:2f:2b:c4:19:fe:66:e5:46:0e:fa:49:8c:96:
77:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C7:4F:11:FD:7C:C8:A4:D7:27:1C:3B:5B:DC:48:77:52:AE:99:EE
X509v3 Authority Key Identifier:
keyid:72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:01:09:32:ed:fc:9d:8a:ff:aa:8d:73:7c:58:20:e2:81:38:
95:62:7b:13:4f:6f:5d:29:4e:db:1f:d2:a3:96:37:cc:7e:b2:
1f:22:6f:e2:2a:2e:c9:84:87:00:52:8a:1c:5f:16:d3:71:cc:
a1:57:a5:29:41:b9:bf:55:46:4c:19:e8:3e:41:4a:d8:e3:77:
a4:c6:da:e0:1d:6b:c3:92:5c:20:19:2b:3e:55:f2:12:4d:99:
26:6a:e7:13:25:09:f9:74:b3:b6:0a:75:7b:a1:e5:d2:bd:07:
d5:49:e0:79:1f:06:c6:ba:69:f7:b0:2a:a7:a0:84:26:0b:f4:
19:f7:83:58:a2:bc:3a:1b:f7:71:91:82:a9:9e:fb:dc:eb:ed:
5f:e5:f7:ad:b4:c8:a7:36:26:60:04:d9:c4:0f:7a:e2:59:d0:
3e:df:1e:89:c9:b1:79:78:3c:15:e2:04:fd:c5:55:31:75:10:
d4:37:70:c5:67:a2:5f:15:fb:9c:61:aa:30:96:f4:af:d0:53:
f8:6b:a7:be:d7:ee:6f:06:3c:32:98:dd:3a:01:ce:c3:d7:c9:
d7:4f:fe:46:60:33:33:6f:c9:e3:f4:a8:d4:ac:55:6e:13:43:
02:86:7d:6b:09:85:ca:40:c7:12:2c:0f:c5:4a:49:8f:dc:f1:
11:5c:25:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 01:09:06 2025 by rpki-client