Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: MNgwGiGt8UgAaGpBuBnFwsOPIrd+tIz7uS51pNwhJ/I=
Subject key identifier: B9:63:67:33:89:FE:62:0B:28:3E:B9:63:39:2B:D9:F7:E9:28:0C:66
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 019A01B668F37BF977D437571FA2A674592D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 16E3
Signing time: Mon 20 Oct 2025 13:02:02 +0000
Manifest this update: Mon 20 Oct 2025 13:02:02 +0000
Manifest next update: Tue 21 Oct 2025 13:02:02 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: yUUGUILwAz4OqcP7uWApydkFUWYTgiG/zrEzHHGyf0A=)
2: uPPSCEPI-zYe8c4juKISlbYTsmI.roa (hash: ItdA3QN2L+hecSiCaaiQJ/fE6U5Bp5eLGhZQrMhDtVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b6:68:f3:7b:f9:77:d4:37:57:1f:a2:a6:74:59:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: Oct 20 13:02:02 2025 GMT
Not After : Oct 21 13:02:02 2025 GMT
Subject: CN=b963673389fe620b283eb963392bd9f7e9280c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:27:a9:ff:cb:d6:51:e0:90:ce:85:8c:73:b0:
12:a5:fd:7a:13:36:4e:4d:b4:47:a4:bc:1c:be:c2:
5d:c9:e5:98:78:cc:34:61:8d:d0:4f:38:bf:0a:96:
94:fa:40:55:15:6e:2b:ce:a0:7d:2c:b7:bc:a3:5b:
38:c9:c9:63:ae:ef:d0:ae:2e:84:22:66:a6:58:11:
41:84:3a:89:2c:34:5e:e4:f5:4d:9a:ab:7f:d4:1e:
3c:b7:91:18:4d:c9:2e:35:e5:9f:76:ec:ad:26:29:
95:51:89:24:8d:7f:c5:0e:7c:ad:c6:7b:60:5e:87:
d2:ee:54:f1:b2:72:d6:d8:fb:f6:38:a3:f9:93:d3:
30:7f:cb:a6:64:3c:ef:bf:75:82:15:6e:81:9e:b7:
8d:64:85:c9:c0:70:1b:3e:c4:8f:89:5c:7f:8a:23:
ee:01:bd:39:71:a1:12:68:a4:89:35:ba:45:94:30:
e8:63:5e:96:90:09:ce:f7:60:e0:6e:8c:71:b1:93:
fa:11:5c:e0:0b:89:25:f7:5f:5c:37:2e:3d:c5:28:
1b:45:b5:81:20:99:78:b8:ed:87:d3:52:b6:02:41:
5e:4e:db:2d:22:40:1a:dc:5b:d1:d6:68:d4:87:8c:
b9:b2:dd:c2:4a:7c:4a:60:59:b4:7b:d0:4a:de:fc:
de:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:63:67:33:89:FE:62:0B:28:3E:B9:63:39:2B:D9:F7:E9:28:0C:66
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:c1:eb:b2:ea:42:ed:a2:a0:f8:80:db:e9:30:2d:58:fa:eb:
2d:51:b5:4f:dc:69:b0:ae:72:f1:ef:91:f2:5f:19:ac:8a:98:
72:ab:b1:01:a2:5d:f6:d8:e9:35:6c:02:c7:d4:ca:26:10:f9:
c0:be:da:f7:05:2a:4a:ea:91:75:3f:99:59:51:8e:6d:15:54:
f1:c6:40:10:d3:77:03:b2:65:b4:0a:bd:ee:93:48:6a:0c:1c:
71:d4:c2:7b:17:be:f8:b3:9b:03:90:f4:98:28:b7:4e:48:cf:
3c:52:e7:a0:12:4f:74:67:47:45:20:97:42:93:d7:db:23:50:
69:16:e5:39:87:75:56:42:48:c3:3d:bc:03:fc:f5:7c:73:e8:
f5:5b:99:8b:82:fe:93:f4:4a:5d:ac:33:7f:6a:1a:d1:63:26:
51:91:5d:b3:a8:be:92:82:d8:67:64:ce:28:60:99:14:64:bf:
b6:c8:0b:cc:75:14:bc:45:06:a8:cb:4d:c8:65:14:d1:61:cf:
76:cb:65:87:48:af:e5:56:8c:07:2d:97:4c:0f:dc:a0:90:72:
a3:36:e6:1e:eb:64:14:ce:fa:68:75:2f:b0:a8:ea:ee:bf:96:
b7:3d:13:1e:70:22:62:7b:5d:40:55:75:3b:67:18:db:b9:97:
24:fa:d2:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:34:42 2025 by rpki-client