Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: 5AuimbSRzU9TZY7l6b+2Cv8+tG0vki2+KZC/PoEQgh4=
Subject key identifier: B2:AF:F5:69:94:CC:D7:81:A4:4C:CC:5D:A3:A2:FB:F9:83:A0:E8:57
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 0197B8906846DAE30D236E2F0381649FC27E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 22:02:41 +0000
Manifest this update: Sat 28 Jun 2025 22:02:41 +0000
Manifest next update: Sun 29 Jun 2025 22:02:41 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: 7XBqKIOlDDAhQIsHRTzbByPAKcsKSQ9g1BFZKvF5wBI=)
2: uPPSCEPI-zYe8c4juKISlbYTsmI.roa (hash: ItdA3QN2L+hecSiCaaiQJ/fE6U5Bp5eLGhZQrMhDtVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:68:46:da:e3:0d:23:6e:2f:03:81:64:9f:c2:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: Jun 28 22:02:41 2025 GMT
Not After : Jun 29 22:02:41 2025 GMT
Subject: CN=b2aff56994ccd781a44ccc5da3a2fbf983a0e857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c9:7e:34:fa:f3:a0:8f:d8:97:04:f9:84:2b:
17:83:92:02:10:d9:22:ae:be:ce:4e:32:21:80:c3:
3b:37:ed:2f:85:af:3c:a8:7c:1a:17:c3:8a:4b:58:
f6:35:99:ca:d1:6f:f0:71:e9:91:08:63:da:ac:13:
55:d5:0c:a2:da:32:95:fb:a9:5e:51:04:a4:7e:92:
7d:a7:c0:b9:7c:6e:8d:bc:5f:b8:88:e2:4e:d6:5f:
0f:e1:c9:d1:21:be:15:ee:2a:5c:ba:43:a1:fb:03:
51:c6:c3:aa:6c:da:91:37:5f:51:db:14:d7:6c:53:
d3:d5:fd:20:8b:88:98:01:b1:e4:e6:06:24:9a:ed:
2f:73:31:a7:94:8b:49:f5:ff:b2:61:77:d2:43:bf:
b8:8e:4e:db:50:a4:b3:3e:b0:1e:c6:73:7d:56:23:
39:a5:39:5c:59:cf:b5:ca:3a:17:ca:2d:52:e4:58:
9f:75:73:17:24:07:9c:1a:03:e0:59:7a:34:62:ca:
76:5d:05:be:6c:7f:44:ff:39:47:51:fa:9d:28:5c:
41:b1:fb:98:60:4d:fe:40:0e:17:59:85:81:05:14:
31:89:46:21:33:5c:c1:65:c2:eb:59:19:9d:b8:b2:
c0:28:eb:a2:3c:e0:ff:5f:b7:cf:58:6b:d7:d3:54:
0e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AF:F5:69:94:CC:D7:81:A4:4C:CC:5D:A3:A2:FB:F9:83:A0:E8:57
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:a9:43:3e:a3:08:62:1a:10:1e:c9:0e:bb:86:50:06:6c:00:
fc:4f:23:5a:33:47:68:23:7b:74:28:66:e7:69:d0:25:25:4f:
a2:a6:5b:5c:c8:54:fb:bf:7e:0a:4a:ee:24:0b:bd:57:5a:cd:
34:1c:7e:7a:94:7e:91:2c:3c:36:11:7a:c1:8e:28:57:57:a2:
c1:ce:87:db:6f:f6:67:13:f8:7e:3c:bb:d4:1d:39:12:52:37:
e1:13:b4:55:5a:4a:a7:9c:63:ec:83:b1:b8:a5:33:44:df:aa:
24:60:62:cb:7e:2c:3b:00:2d:ea:e8:41:b5:c2:0c:09:7c:ef:
f5:d2:49:b3:a4:45:bf:fb:53:86:0f:b7:4e:1d:f5:86:e3:85:
d2:b2:aa:e6:4c:eb:6a:65:52:a5:ae:53:68:3b:8a:57:cc:c0:
4d:4e:13:cc:74:cd:97:b5:04:40:d9:c2:f4:37:a7:02:82:62:
2a:6d:39:91:ef:c7:27:33:66:f6:a9:3f:34:df:99:c3:cd:dc:
d0:17:0f:36:8d:3b:3f:cb:32:cf:98:19:a3:80:4b:22:2e:41:
0e:be:8b:3e:25:29:43:86:cc:e9:f3:f1:35:5f:e7:f2:cc:26:
67:fc:06:6f:9c:d6:4e:81:61:76:68:fc:26:61:42:0a:c2:8c:
5a:4e:e6:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:11 2025 by rpki-client