Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
File: 70AaUuP95plIbplnjb9Ih1Mpwz0.mft (raw, json)
Hash identifier: 66uQbEi8tuvXvTyIJOfdaa/9nJlJWd+/FvSPc83qbRE=
Subject key identifier: A9:E8:86:04:43:A3:32:CD:11:40:EE:A3:D3:A0:15:5A:C4:4A:9F:1B
Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d
Certificate serial: 0199FBEAF799998736F80600F7D1487264E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
Manifest number: 0E4D
Signing time: Sun 19 Oct 2025 10:01:44 +0000
Manifest this update: Sun 19 Oct 2025 10:01:44 +0000
Manifest next update: Mon 20 Oct 2025 10:01:44 +0000
Files and hashes: 1: 70AaUuP95plIbplnjb9Ih1Mpwz0.crl (hash: O78w8fLV+41eKkHU6up6kwxCvhce7Rza23zLKYvy5F4=)
2: S4KhO_-8xzMvt1B6k_-GK_XNTGs.roa (hash: 298ot3rN9ux+k96S6A3kz+LkCwnTR/d/qtOX4jSeeqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:f7:99:99:87:36:f8:06:00:f7:d1:48:72:64:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d
Validity
Not Before: Oct 19 10:01:44 2025 GMT
Not After : Oct 20 10:01:44 2025 GMT
Subject: CN=a9e8860443a332cd1140eea3d3a0155ac44a9f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2f:e6:50:01:32:3b:94:7c:17:55:b1:2e:a8:
1d:78:08:47:eb:6c:ed:cd:30:ed:94:44:1a:85:20:
ec:c2:c3:f6:c5:f7:49:2d:0a:d5:af:af:6a:aa:7c:
b6:fa:16:49:f7:db:a5:0c:c3:d9:38:13:d2:d6:dc:
04:f6:d3:4c:e5:45:cb:cf:a7:a7:5c:f9:e2:56:a5:
3a:93:f4:1b:1e:79:89:97:c2:f2:7c:76:c1:ed:8b:
ee:49:69:3e:01:f2:37:6b:d2:0d:8d:f0:b9:f4:39:
78:1c:f8:97:e7:7c:bb:bc:eb:bd:8b:2d:37:7a:f7:
e9:8a:ba:d6:f8:2f:8b:03:ac:47:1b:33:61:dd:35:
43:c7:d5:de:02:b2:83:d5:88:59:e6:40:da:58:d1:
1e:87:6e:63:4e:5a:be:e9:0d:81:c5:f8:a9:78:b9:
84:ec:a5:49:8f:64:52:f0:7f:1e:07:3c:d0:4f:05:
6a:08:d3:51:d6:ad:05:51:2e:f9:58:40:7f:f2:3d:
54:a6:4d:bf:cc:98:7d:79:f6:c2:a6:41:ad:cd:31:
fd:80:89:48:8c:d9:c2:80:bb:ac:c9:93:fe:5b:f9:
13:41:5d:ee:f9:fb:07:86:de:53:47:4c:a3:79:aa:
29:51:5a:82:64:90:76:6c:a5:a3:46:dc:f9:6e:76:
a4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E8:86:04:43:A3:32:CD:11:40:EE:A3:D3:A0:15:5A:C4:4A:9F:1B
X509v3 Authority Key Identifier:
keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:39:d2:61:86:10:01:68:0d:8d:64:72:49:1f:f8:61:54:07:
6a:cf:2e:f0:01:0e:2e:90:f9:d2:29:23:14:79:44:35:91:53:
87:41:49:71:94:00:67:9e:74:fb:7f:52:37:24:61:12:99:ac:
4a:24:d0:3a:c0:21:06:27:f3:62:8f:c4:ee:fb:7a:61:8f:40:
ce:a6:d5:e2:5f:a3:4e:5b:1a:d2:64:60:32:f8:96:ac:b0:ff:
c5:f6:ad:55:b4:09:64:3b:06:41:41:98:d4:00:8d:cd:03:22:
e0:23:77:3e:1a:2c:db:53:e6:6a:23:4f:f2:e6:d0:5f:de:0a:
1d:55:f9:1f:cf:55:53:e2:60:2b:bb:ec:ed:53:2f:36:e8:4b:
e7:c7:62:93:40:db:59:ee:f0:23:2e:24:b6:c8:8c:37:dc:c3:
bc:38:62:ea:93:41:5b:07:12:c8:40:10:fe:ab:3f:d6:ac:a4:
b2:7c:c7:06:72:15:83:f6:b1:34:fd:a5:35:e4:c1:2d:d8:0b:
6a:56:21:62:14:b9:d2:b7:19:b5:35:67:7b:bd:72:ae:18:41:
5a:30:a8:45:68:4a:24:87:66:29:d1:67:a9:66:e3:3d:ab:a2:
21:24:a3:e7:17:e8:77:a6:6a:b0:66:d5:aa:37:55:86:c7:3b:
54:a0:63:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:33 2025 by rpki-client