Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
File: 70AaUuP95plIbplnjb9Ih1Mpwz0.mft (raw, json)
Hash identifier: Eqmua85CtucL+9FaKYIGeFR423uZNgIjO//afsFSJT8=
Subject key identifier: 8C:DB:F7:A4:A6:E2:18:70:66:E4:32:66:F5:A1:CB:51:E4:FD:ED:B4
Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d
Certificate serial: 0197B6A083811174E67CEDD2088C9F080625
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
Manifest number: 0D20
Signing time: Sat 28 Jun 2025 13:01:02 +0000
Manifest this update: Sat 28 Jun 2025 13:01:02 +0000
Manifest next update: Sun 29 Jun 2025 13:01:02 +0000
Files and hashes: 1: 70AaUuP95plIbplnjb9Ih1Mpwz0.crl (hash: slHLkGU0fVUU+QloMAtQ1pdm606uaw+LfJ5AoXQ6XE4=)
2: S4KhO_-8xzMvt1B6k_-GK_XNTGs.roa (hash: 298ot3rN9ux+k96S6A3kz+LkCwnTR/d/qtOX4jSeeqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:83:81:11:74:e6:7c:ed:d2:08:8c:9f:08:06:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d
Validity
Not Before: Jun 28 13:01:02 2025 GMT
Not After : Jun 29 13:01:02 2025 GMT
Subject: CN=8cdbf7a4a6e2187066e43266f5a1cb51e4fdedb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:29:7a:1a:5f:26:33:ad:c1:eb:b6:f9:47:
be:34:e7:66:42:08:c8:fa:70:5c:9e:5e:8c:5c:46:
60:62:54:21:8b:e5:c6:1a:71:cf:da:f4:27:ff:8c:
d1:07:dc:0d:5a:c7:9a:20:52:14:08:66:45:66:ea:
44:f4:03:0d:51:73:d2:60:9f:2a:6d:67:8b:2c:a7:
e3:23:6a:89:9c:f1:21:0e:b3:13:0a:76:79:3a:30:
47:a0:cf:5d:f8:7a:5d:1f:46:e7:ca:c7:24:59:65:
94:00:52:f6:a8:b3:82:bc:d1:0c:b5:ce:8b:6b:64:
d4:07:39:f9:9e:ca:67:6b:23:7b:c2:04:e6:eb:05:
9d:05:28:f3:90:2d:ea:9d:1f:39:37:f3:80:dc:b9:
e2:c1:e8:d6:39:e9:0c:bc:f1:1f:1c:9a:3c:1b:82:
de:b3:af:2a:a5:a5:46:09:16:31:f5:4f:29:3d:6d:
8d:42:57:91:79:5b:49:cc:05:c7:18:46:5b:f9:e2:
8a:34:b2:27:7f:da:29:8f:29:11:fb:eb:57:c1:1f:
de:fa:72:b8:bf:10:f8:60:90:57:8d:c5:8b:c9:fa:
40:24:36:de:44:6f:ea:8d:d4:d6:35:e9:3a:90:57:
1d:72:36:b4:05:1c:2b:a0:c6:14:46:00:c5:53:80:
e1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:DB:F7:A4:A6:E2:18:70:66:E4:32:66:F5:A1:CB:51:E4:FD:ED:B4
X509v3 Authority Key Identifier:
keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:54:94:86:36:f3:97:f8:9c:d1:48:8e:6d:1e:f4:60:0c:3a:
9c:7d:28:d7:2a:32:1b:d8:5f:ad:ee:73:37:08:c6:43:8b:c7:
9b:f0:19:1c:be:f6:07:6d:bf:9a:00:37:90:c6:70:2d:8f:9f:
db:a2:9e:bf:85:54:08:3a:96:94:88:ea:ad:e1:5b:4b:61:e0:
bf:36:0c:d6:40:15:20:73:52:58:24:83:cc:a3:2a:7d:d8:36:
28:29:aa:72:0b:7f:2d:6a:59:68:be:0d:6d:c8:73:52:f6:c1:
d8:4f:78:7c:a4:03:7b:95:07:8c:d6:1c:a3:aa:ee:29:41:f6:
8e:01:8d:92:a1:8b:ea:2c:f6:47:39:dc:2d:58:58:aa:3b:4c:
fd:06:bb:de:77:87:5f:62:38:07:e9:63:8a:04:40:b6:ae:ed:
95:d4:50:18:95:d6:28:1f:77:ba:c5:fa:96:7f:a9:0e:2a:31:
ea:00:f9:fc:8a:b3:96:b0:3d:b5:ea:bd:3c:70:e3:04:d8:02:
79:b1:e8:69:67:7f:dd:e1:19:bd:01:b8:21:c9:8a:78:aa:75:
f7:4e:ff:63:94:ba:05:06:94:e8:0e:17:9b:04:8e:a5:15:22:
ff:c9:62:d4:72:f4:ce:72:5a:2f:cb:06:a1:d9:af:c8:2c:42:
90:c3:45:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:59:10 2025 by rpki-client