Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: 4d1DU/hIAoYvB3fBUFQTlejfGgSEEFSQrM6DjUvCDd4=
Subject key identifier: 68:80:39:60:96:EA:F5:16:CF:75:ED:EC:04:EC:0A:2F:78:45:B8:E6
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 0198D473E9FC35CCFB671ED34E9EDD324FCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 01:03:43 +0000
Manifest this update: Sat 23 Aug 2025 01:03:43 +0000
Manifest next update: Sun 24 Aug 2025 01:03:43 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: MCWEm0jJNZicl9CPpJ9LN4z1wbqeJjSHIxbdenGOyWI=)
2: uPPSCEPI-zYe8c4juKISlbYTsmI.roa (hash: ItdA3QN2L+hecSiCaaiQJ/fE6U5Bp5eLGhZQrMhDtVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:e9:fc:35:cc:fb:67:1e:d3:4e:9e:dd:32:4f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: Aug 23 01:03:43 2025 GMT
Not After : Aug 24 01:03:43 2025 GMT
Subject: CN=6880396096eaf516cf75edec04ec0a2f7845b8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ec:52:ab:34:6e:65:9f:e8:6f:bf:f1:e1:d2:
a8:ce:82:cb:97:38:ea:55:d3:3a:ee:7a:94:49:ee:
85:de:d5:95:d2:c1:09:43:33:13:f8:1c:12:45:94:
da:d8:f5:8c:1b:e7:4b:82:2e:55:40:80:4c:30:cb:
58:bf:f2:aa:5d:10:09:9b:9f:e4:ee:43:0c:b5:c5:
17:8d:db:bb:87:1f:3e:54:92:4d:1b:62:ec:82:98:
19:e4:61:0c:c6:3b:2f:42:fe:b3:fd:96:b7:ed:a0:
96:7f:ab:5d:86:fc:5a:95:c2:67:4a:9c:a5:22:57:
bf:2c:df:9e:aa:19:32:2a:a6:4d:29:fd:6b:26:76:
b1:a2:fb:5a:85:19:55:f7:8a:62:59:50:c8:6f:b8:
4c:79:bc:86:ad:a7:46:86:43:95:fb:6b:42:e8:f7:
6e:8c:26:d0:1b:15:86:73:39:40:d1:c2:ca:78:16:
49:9a:9f:15:cd:60:76:d5:d2:25:1a:ca:73:87:b6:
ea:4e:07:ba:ef:bb:78:54:02:d0:b2:2d:fb:71:2b:
38:0b:87:58:39:2b:da:ce:b8:42:58:39:04:03:c0:
33:78:67:1b:fb:31:88:29:1c:09:55:19:b6:fc:4f:
b4:7b:71:b8:e7:64:60:67:fe:20:1e:e5:38:64:9f:
15:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:80:39:60:96:EA:F5:16:CF:75:ED:EC:04:EC:0A:2F:78:45:B8:E6
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:f0:ae:82:6f:40:76:e2:f2:8f:a1:92:0b:c8:ae:32:b3:cc:
d1:e0:1e:5e:ae:67:dc:9d:7c:32:4d:04:ec:4b:ab:96:f7:a4:
16:9f:32:da:b6:0d:00:19:33:13:dc:15:1e:b5:04:ea:46:62:
e1:fc:6d:b0:73:2f:04:90:bc:92:53:f4:77:fe:62:41:81:47:
44:d1:ee:8f:95:63:d7:48:9c:34:e3:b7:89:bb:02:11:f4:d5:
fc:03:ce:f6:67:14:f0:b3:04:7a:9f:25:82:bd:68:93:96:3f:
a8:0e:21:4d:f3:45:72:fc:1f:15:89:cb:87:18:bf:39:8d:e4:
51:7f:97:39:55:c0:21:7a:25:e2:c6:03:77:2b:b3:77:e9:95:
71:b6:5c:61:3c:6b:a6:b5:5a:6a:59:56:82:9d:4e:bb:7a:06:
b6:2f:c4:e7:37:e6:19:c3:f4:6d:66:b6:8e:d3:67:1c:23:40:
22:bd:d3:2d:ec:18:f7:83:8c:92:a8:f6:21:e6:74:b8:fe:26:
c4:e4:07:3b:18:28:4c:72:47:2f:cc:48:ff:87:c9:49:65:9f:
61:8c:f5:71:4c:9f:94:b1:87:76:14:14:98:6e:f3:6a:37:3f:
45:d8:3f:f4:65:a9:27:39:61:20:2e:93:8f:c9:27:a6:ef:e9:
31:fc:a4:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:56 2025 by rpki-client