Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json)
Hash identifier: U5ajGvY2B5rfJQN4g8cE1dUo+RuSNSdGbvk31qTlrc0=
Subject key identifier: B2:07:D9:6C:AF:C1:3A:10:4C:F8:5A:96:6A:EF:AD:8C:C8:56:A6:7B
Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e
Certificate serial: 0199FBEB95301C3CAC4C8F60361D94F60E86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
Manifest number: 06B7
Signing time: Sun 19 Oct 2025 10:02:24 +0000
Manifest this update: Sun 19 Oct 2025 10:02:24 +0000
Manifest next update: Mon 20 Oct 2025 10:02:24 +0000
Files and hashes: 1: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: q0+bWc3v1e1IhvsNin/ODqGD9VQRcLCB+THSrhLwlFg=)
2: t0ukQ5CSEan3v8t7w6xA6LKAlPA.roa (hash: 0NRhgZITCHjsjwAYQth1zntdOiq0gcrilmGiiV4E8WI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:95:30:1c:3c:ac:4c:8f:60:36:1d:94:f6:0e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e
Validity
Not Before: Oct 19 10:02:24 2025 GMT
Not After : Oct 20 10:02:24 2025 GMT
Subject: CN=b207d96cafc13a104cf85a966aefad8cc856a67b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2a:6c:25:e1:82:e6:0f:5d:9b:4b:64:3c:a3:
8b:c3:a8:b5:4a:cb:b8:95:37:56:d5:3a:5b:de:bb:
fb:80:9e:5f:86:27:f6:23:96:fb:7d:f6:ed:38:78:
3f:ec:e0:0c:39:69:4e:f1:44:71:7b:3b:34:84:46:
68:48:76:8d:ad:35:f2:26:b2:ab:5c:8e:d2:e1:46:
c5:d0:35:d5:30:95:31:0c:5a:a4:5d:ff:c7:bb:1f:
ef:b8:0f:f8:69:45:1b:7d:5e:ac:90:6f:f2:c3:a9:
76:4f:eb:b3:83:ef:9f:52:c1:0f:97:74:7b:f8:59:
3a:ff:08:ae:fb:b1:1a:e3:d1:30:5c:55:0e:8e:a9:
0b:34:38:15:60:1b:68:7e:32:e7:81:ca:4d:bd:49:
03:55:d8:e7:4b:54:75:cc:4a:60:5d:ab:cf:c3:8e:
cd:ff:91:a6:92:0f:d4:f7:1d:4f:81:29:6a:3d:d1:
72:52:bf:ad:82:00:15:28:94:8f:8b:7a:3d:23:67:
64:ed:47:18:bd:ac:0f:17:e6:a0:c5:bb:7e:a5:e8:
13:aa:b2:95:40:bd:10:a0:35:c1:e8:c5:49:43:a2:
4a:dc:25:1c:cb:b1:39:bc:39:7b:88:6c:5b:80:7c:
92:7b:00:b3:48:09:32:e0:bc:3b:ba:e2:53:1f:59:
9f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:07:D9:6C:AF:C1:3A:10:4C:F8:5A:96:6A:EF:AD:8C:C8:56:A6:7B
X509v3 Authority Key Identifier:
keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:fd:c0:4c:fe:60:de:58:6b:1a:27:f0:a3:d9:b6:c3:f3:71:
29:54:f8:36:39:15:42:2c:d8:c5:41:7d:37:5d:8f:f7:06:cc:
47:d6:2e:72:91:49:e1:f2:9c:05:d6:70:fa:35:29:45:5d:cb:
ad:65:fb:de:56:54:8a:95:6f:9f:33:89:6e:14:02:f8:90:b7:
f0:67:c9:4d:10:44:fc:69:63:4c:5a:78:1f:90:02:af:62:1a:
3c:8d:1d:1b:2f:f2:f3:7b:45:95:ad:c0:7b:b5:7a:89:68:c3:
fb:80:fa:61:d2:26:fb:7f:a4:7f:56:72:2e:b0:7a:6b:87:f5:
7e:9d:4b:e5:e3:89:09:d3:e6:d6:5c:76:51:12:a2:0e:c1:4a:
6e:df:78:2b:bc:e8:3c:fb:8e:ff:2a:92:09:97:53:50:15:94:
3b:2a:4d:89:1f:d4:24:e2:0c:91:64:49:77:e6:5f:b0:cb:11:
53:8f:fa:03:eb:dc:aa:37:2f:97:8b:ea:8d:31:24:81:d4:db:
77:85:40:96:ac:ef:09:cf:1a:a2:27:62:fa:67:39:d2:2f:b7:
cb:6b:cb:53:b6:b1:92:f1:06:c6:4c:00:78:a9:98:41:13:1b:
b1:cc:a4:70:5b:d7:f3:a2:38:30:6c:f7:02:9a:67:e6:01:e4:
a9:dd:33:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn765UwHDysTI9gNh2U9g6GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZTZmZDIyNzFkZGUxMDg4NmQ5N2ZmMTQ3MDNlNTgxYTIw
NGI2NWUwHhcNMjUxMDE5MTAwMjI0WhcNMjUxMDIwMTAwMjI0WjAzMTEwLwYDVQQD
EyhiMjA3ZDk2Y2FmYzEzYTEwNGNmODVhOTY2YWVmYWQ4Y2M4NTZhNjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoipsJeGC5g9dm0tkPKOLw6i1Ssu4
lTdW1Tpb3rv7gJ5fhif2I5b7ffbtOHg/7OAMOWlO8URxezs0hEZoSHaNrTXyJrKr
XI7S4UbF0DXVMJUxDFqkXf/Hux/vuA/4aUUbfV6skG/yw6l2T+uzg++fUsEPl3R7
+Fk6/wiu+7Ea49EwXFUOjqkLNDgVYBtofjLngcpNvUkDVdjnS1R1zEpgXavPw47N
/5Gmkg/U9x1PgSlqPdFyUr+tggAVKJSPi3o9I2dk7UcYvawPF+agxbt+pegTqrKV
QL0QoDXB6MVJQ6JK3CUcy7E5vDl7iGxbgHySewCzSAky4Lw7uuJTH1mfowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLIH2WyvwToQTPhalmrvrYzIVqZ7MB8GA1UdIwQY
MBaAFHLm/SJx3eEIhtl/8UcD5YGiBLZeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgt
NmFmMjE1YmZmMWNlLzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgtNmFmMjE1YmZmMWNl
LzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUf3ATP5g
3lhrGifwo9m2w/NxKVT4NjkVQizYxUF9N12P9wbMR9YucpFJ4fKcBdZw+jUpRV3L
rWX73lZUipVvnzOJbhQC+JC38GfJTRBE/GljTFp4H5ACr2IaPI0dGy/y83tFla3A
e7V6iWjD+4D6YdIm+3+kf1ZyLrB6a4f1fp1L5eOJCdPm1lx2URKiDsFKbt94K7zo
PPuO/yqSCZdTUBWUOypNiR/UJOIMkWRJd+ZfsMsRU4/6A+vcqjcvl4vqjTEkgdTb
d4VAlqzvCc8aoidi+mc50i+3y2vLU7axkvEGxkwAeKmYQRMbscykcFvX86I4MGz3
Appn5gHkqd0zEQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:55:51 2025 by rpki-client