Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
File: CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft (raw, json)
Hash identifier: CgjAWB1WhYN1OCFFYVz848c2DNEc0bYzqB915vTf39U=
Subject key identifier: 17:F6:B6:FA:BA:79:F0:12:AC:30:AC:F9:00:7B:6B:68:F2:AF:1E:F3
Authority key identifier: 08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
Certificate issuer: /CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Certificate serial: 019749317459BB504F8EDA46508EDB8021D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
Manifest number: 1180
Signing time: Sat 07 Jun 2025 07:01:07 +0000
Manifest this update: Sat 07 Jun 2025 07:01:07 +0000
Manifest next update: Sun 08 Jun 2025 07:01:07 +0000
Files and hashes: 1: CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl (hash: gnhIXLZF3iH2gNoUhMcRC2cNJpjmmw3gYDSb1R62jYU=)
2: NSQQr0dchBVb5NqeR8z3x_MXCeI.roa (hash: XPvSVq5h7mPPG5QqR8bg1ZJJPL/y/MfsW5VYh5EY4C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:74:59:bb:50:4f:8e:da:46:50:8e:db:80:21:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Validity
Not Before: Jun 7 07:01:07 2025 GMT
Not After : Jun 8 07:01:07 2025 GMT
Subject: CN=17f6b6faba79f012ac30acf9007b6b68f2af1ef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fd:26:96:8c:88:20:93:0a:29:65:c9:f7:02:
c0:3f:86:e4:37:4b:64:1b:67:76:ef:e2:45:8f:e4:
6b:ef:e8:5d:e9:fb:c5:f8:54:8d:15:89:0c:01:3d:
a0:49:00:83:64:68:76:27:9a:f9:1f:d9:91:a8:a7:
8d:2d:9b:a8:9c:b9:be:30:e5:1d:5f:07:a9:77:de:
ac:92:cf:8a:1a:2b:43:67:74:fd:f6:0a:d0:4d:21:
07:bb:9e:54:f3:a6:b5:46:bb:d3:62:e5:e5:d2:19:
07:13:d0:6e:4d:e2:3f:b9:b4:ce:c9:14:27:c4:ef:
54:b9:fd:41:06:21:c1:cf:9b:19:9d:d4:65:6a:43:
3b:0f:41:26:ba:04:b2:72:75:d6:cc:a8:bc:50:ec:
37:1f:48:89:f4:61:22:e8:b9:9c:8b:d8:b0:e5:a8:
1c:2e:86:3c:f5:0f:df:29:7f:ce:21:dc:45:cc:51:
28:26:f5:4b:f5:a9:0a:f7:32:75:f9:b8:ee:98:98:
93:56:16:9b:11:02:56:d2:32:ac:84:59:f7:6d:6d:
8b:cf:70:cd:5d:20:ea:4a:eb:71:da:80:50:3a:a0:
43:6b:7b:a3:5e:be:aa:22:97:c5:67:92:55:3d:f7:
67:35:f9:04:8c:95:c6:3a:fa:3b:9f:1c:40:af:f2:
6b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F6:B6:FA:BA:79:F0:12:AC:30:AC:F9:00:7B:6B:68:F2:AF:1E:F3
X509v3 Authority Key Identifier:
keyid:08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:0d:48:ac:3e:4c:ef:e3:34:e6:0a:f1:78:35:2d:01:8c:a8:
5e:f0:14:cb:a7:f7:fc:41:b0:30:07:d8:5a:c6:99:c3:42:b6:
a9:64:fc:89:c1:aa:f8:f9:16:91:45:9b:11:6b:e1:e2:10:13:
c1:22:ec:77:90:e6:75:10:ca:45:e9:f4:a1:46:87:6b:cf:1d:
a4:10:81:a0:91:16:09:c6:8e:78:e8:44:d2:83:9b:3e:46:f0:
e0:45:e5:16:c1:28:99:d6:ac:ab:0f:bb:1d:40:b3:2a:4c:2c:
f4:3b:58:6e:5d:6f:dc:1e:a3:ee:63:5e:0a:b0:6b:f8:eb:62:
f5:5d:14:11:42:a3:88:4a:8d:8f:21:95:91:2e:ee:58:dc:30:
7d:2b:e4:06:80:6a:05:a6:3d:78:96:c9:6b:0f:4c:10:d4:8f:
da:9c:92:94:0c:c9:3c:51:72:c0:d7:0a:74:32:cb:ed:40:6a:
89:01:ac:a6:ef:aa:37:ad:b3:77:df:53:2c:b2:54:a8:ef:bf:
45:00:07:2f:e0:5a:aa:08:7f:61:04:3f:18:7a:1a:d2:f7:a3:
f6:b0:f8:a4:7c:91:05:54:12:8b:d4:b2:95:1f:4c:ac:b2:da:
e7:ac:1e:ec:71:cc:82:1b:8d:da:10:23:a0:e1:1c:c8:24:28:
12:8c:4b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:28:48 2025 by rpki-client