Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json)
Hash identifier: He7af554yEqVsVxbpmM7qasbCsCPNFeG2KbFVOlxJPc=
Subject key identifier: 9A:B0:39:74:99:44:30:EF:D1:B1:71:85:06:47:51:DB:E9:03:9B:1B
Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e
Certificate serial: 0197B6A228BA6CFC2C69CDEAB891ECCF3117
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
Manifest number: 0589
Signing time: Sat 28 Jun 2025 13:02:49 +0000
Manifest this update: Sat 28 Jun 2025 13:02:49 +0000
Manifest next update: Sun 29 Jun 2025 13:02:49 +0000
Files and hashes: 1: bfk_MR19Wkt9P8nZBnMSgF6MsRU.roa (hash: 0hszlwIo4wu2t5VGtUVdAEdA9lm13yBTsn0Utr0zB2A=)
2: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: 88cQeHCKlkhqIpEcFs9zft01buOfX6v2iLZGEs3msC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:28:ba:6c:fc:2c:69:cd:ea:b8:91:ec:cf:31:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e
Validity
Not Before: Jun 28 13:02:49 2025 GMT
Not After : Jun 29 13:02:49 2025 GMT
Subject: CN=9ab03974994430efd1b17185064751dbe9039b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:49:3a:fd:dd:0f:0d:a2:8c:9c:98:49:5f:67:
75:6f:24:12:94:50:92:62:7c:26:7d:c2:0f:94:af:
e8:90:14:9c:da:c0:22:20:a3:33:0c:ec:8b:30:84:
ae:d7:b3:fa:a2:78:ee:a7:9d:b5:3f:a2:68:ce:66:
64:fb:5c:2d:7a:ec:cf:89:64:07:fb:5c:78:61:3d:
1c:cf:59:1c:c5:fa:20:30:2b:59:81:24:b9:47:58:
fc:07:a5:50:8d:bd:c2:fb:9d:67:90:34:3d:32:cf:
a6:bb:fa:d7:2a:0d:5d:37:89:fb:2d:1e:04:81:a6:
8f:3b:86:9a:aa:58:b2:f6:ab:c7:a7:9b:c5:35:34:
53:c6:ba:ae:91:a8:0c:3a:93:95:d3:0c:e5:c9:94:
6a:b2:f3:a0:a0:36:80:43:63:08:e0:ef:e1:27:1f:
9a:9d:10:a8:fb:40:98:36:c1:86:e9:12:1e:8e:e4:
ff:3a:f2:4a:02:58:a3:63:8a:31:d9:e6:04:1d:56:
d6:03:8f:99:74:ed:8f:cb:ba:fe:47:69:c5:00:d1:
fa:6f:f7:43:a7:bd:b7:33:39:9c:8a:18:49:68:78:
34:b3:db:bc:72:9b:55:5a:77:ac:7f:96:c3:cf:20:
d5:41:5f:4e:3b:32:a6:16:51:fe:3a:74:2c:11:44:
d9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B0:39:74:99:44:30:EF:D1:B1:71:85:06:47:51:DB:E9:03:9B:1B
X509v3 Authority Key Identifier:
keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:be:85:3b:f6:ae:d6:1e:6e:8f:96:06:63:c8:e8:5b:69:4c:
bb:15:97:fb:1b:56:0d:76:b4:ea:c1:a2:42:06:e9:0a:83:91:
22:70:63:8c:f2:88:cb:72:65:28:cd:dd:53:8b:53:6c:ab:42:
a4:eb:08:5a:af:51:f5:cd:29:51:56:f1:e3:f2:13:fd:4d:93:
90:2a:3b:d7:96:3e:fe:27:1b:d6:3a:16:5d:22:bf:3e:23:ba:
88:aa:6b:98:81:35:d5:bb:43:3b:17:62:ec:a7:66:a6:80:f9:
db:cd:a3:26:81:f5:14:21:b4:a3:bd:88:68:d9:60:bd:2a:31:
63:80:64:b9:ce:59:cd:86:37:2f:a9:8c:ae:e2:cc:40:25:d8:
a5:8a:ee:8a:05:9d:c9:2c:12:9a:20:f2:77:b9:a2:57:ee:62:
8e:a1:68:25:31:b4:f8:de:c1:0b:78:ee:a5:0e:5f:39:22:16:
67:f9:8c:a5:43:2b:22:37:50:e2:9f:9d:19:b8:5b:02:d1:01:
7e:9b:6a:e7:f5:e2:3e:93:f0:3b:32:cc:78:9a:9b:e2:87:ca:
a7:f6:d1:51:d5:85:cf:02:0c:2a:c4:02:30:85:b8:74:b1:69:
96:2b:d7:18:8a:e0:96:03:83:2e:cc:39:85:6d:29:b0:ca:bd:
f7:f9:f2:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:49:19 2025 by rpki-client