Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json)
Hash identifier: jidQM5l0WkOLTWFNJHst4/XIFeQ8hqtPzKeuAmoZTXQ=
Subject key identifier: 88:50:62:76:F0:FB:F4:E7:DD:47:2C:6D:67:F0:4D:7C:FA:E7:23:20
Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e
Certificate serial: 0198D4747251E16BE775031BD26A81D8DAC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
Manifest number: 061E
Signing time: Sat 23 Aug 2025 01:04:17 +0000
Manifest this update: Sat 23 Aug 2025 01:04:17 +0000
Manifest next update: Sun 24 Aug 2025 01:04:17 +0000
Files and hashes: 1: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: BL/8ZC5qmRJoglX9pM+7y03HCfMw1tWybznObc42Oz4=)
2: t0ukQ5CSEan3v8t7w6xA6LKAlPA.roa (hash: 0NRhgZITCHjsjwAYQth1zntdOiq0gcrilmGiiV4E8WI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:72:51:e1:6b:e7:75:03:1b:d2:6a:81:d8:da:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e
Validity
Not Before: Aug 23 01:04:17 2025 GMT
Not After : Aug 24 01:04:17 2025 GMT
Subject: CN=88506276f0fbf4e7dd472c6d67f04d7cfae72320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6e:fd:5d:7d:c4:d1:06:f8:5a:73:dd:01:b6:
36:47:b9:08:f6:e3:3f:52:4b:54:fa:56:a2:a6:ae:
ee:f9:86:c9:ed:70:c4:26:c6:c4:8a:92:68:be:f4:
f9:b1:ad:28:7d:7e:a3:cf:99:94:28:93:66:1d:f5:
26:03:29:f6:a3:c0:3b:a4:9d:24:68:8e:6e:8c:cb:
b2:ab:20:f2:92:4f:63:0d:c6:59:65:04:62:a8:ee:
e7:34:98:67:0f:8a:ea:84:08:d9:29:29:7a:29:94:
b3:16:b1:2f:61:a8:3c:d1:81:83:89:2a:a8:ed:5d:
15:93:ad:4e:c8:7f:71:3b:39:55:7a:01:9c:7f:bc:
b6:cb:16:b2:ca:51:99:9c:bf:29:84:54:03:88:51:
48:61:1d:72:f6:f8:79:7c:7c:14:c5:f0:92:52:d9:
01:e2:ea:ee:99:51:e6:0b:78:cb:48:75:4e:d4:6c:
22:f8:39:53:97:99:95:cc:fd:be:34:31:e4:e3:f1:
1c:33:c8:b2:fa:76:68:44:96:ff:55:c0:ef:30:43:
08:be:99:7b:bc:ad:8a:55:fa:69:35:2b:fd:91:79:
a9:17:f9:85:fb:9d:5e:62:b4:4b:57:29:25:ec:df:
52:b3:77:97:22:da:a6:8b:08:f8:8c:85:bc:3d:51:
47:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:50:62:76:F0:FB:F4:E7:DD:47:2C:6D:67:F0:4D:7C:FA:E7:23:20
X509v3 Authority Key Identifier:
keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:e3:8a:4d:0c:5a:9c:22:ac:d2:c2:75:b1:e4:6b:f1:00:c2:
47:7f:4e:cd:cd:b3:ca:35:96:1b:dc:37:73:eb:51:44:72:1c:
2c:58:16:75:33:77:bd:88:74:bf:db:21:70:50:fc:5e:22:d4:
5b:73:ee:80:0d:36:e6:1f:d6:e1:39:04:dd:0c:0e:ba:e3:cf:
d0:8c:c3:9e:d1:79:69:1f:54:0d:49:81:77:a9:84:c0:bd:09:
79:20:b7:d9:2e:81:81:7f:e1:a2:a1:1b:5c:d5:12:77:23:d4:
a7:7d:51:70:c0:f8:ad:7b:47:18:1a:cf:15:61:aa:be:6b:e0:
90:d2:9f:7c:cd:6a:ae:78:02:47:e3:f1:3e:46:0e:c3:2d:0f:
20:ff:04:0d:97:f0:0a:3a:6d:5c:2e:34:af:fb:3b:96:b4:0a:
58:2b:5b:df:16:d8:6d:26:6c:a2:1a:a4:cd:97:14:18:75:08:
5d:6a:e6:b3:bf:bb:b1:9e:7b:f5:9a:25:ad:2d:6d:d2:b1:bf:
ab:85:7f:d2:08:8f:29:a9:94:47:d4:7a:fc:f4:3e:cf:f9:45:
07:ff:20:e2:9c:a1:b5:f5:2e:bf:4b:d2:43:ae:15:0a:2a:44:
78:78:6b:1b:c9:a2:ad:34:70:09:e1:4e:8c:6b:ce:da:00:d0:
01:d8:57:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUdHJR4WvndQMb0mqB2NrAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZTZmZDIyNzFkZGUxMDg4NmQ5N2ZmMTQ3MDNlNTgxYTIw
NGI2NWUwHhcNMjUwODIzMDEwNDE3WhcNMjUwODI0MDEwNDE3WjAzMTEwLwYDVQQD
Eyg4ODUwNjI3NmYwZmJmNGU3ZGQ0NzJjNmQ2N2YwNGQ3Y2ZhZTcyMzIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs279XX3E0Qb4WnPdAbY2R7kI9uM/
UktU+laipq7u+YbJ7XDEJsbEipJovvT5sa0ofX6jz5mUKJNmHfUmAyn2o8A7pJ0k
aI5ujMuyqyDykk9jDcZZZQRiqO7nNJhnD4rqhAjZKSl6KZSzFrEvYag80YGDiSqo
7V0Vk61OyH9xOzlVegGcf7y2yxayylGZnL8phFQDiFFIYR1y9vh5fHwUxfCSUtkB
4urumVHmC3jLSHVO1Gwi+DlTl5mVzP2+NDHk4/EcM8iy+nZoRJb/VcDvMEMIvpl7
vK2KVfppNSv9kXmpF/mF+51eYrRLVykl7N9Ss3eXItqmiwj4jIW8PVFHYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIhQYnbw+/Tn3UcsbWfwTXz65yMgMB8GA1UdIwQY
MBaAFHLm/SJx3eEIhtl/8UcD5YGiBLZeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgt
NmFmMjE1YmZmMWNlLzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgtNmFmMjE1YmZmMWNl
LzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIeOKTQxa
nCKs0sJ1seRr8QDCR39Ozc2zyjWWG9w3c+tRRHIcLFgWdTN3vYh0v9shcFD8XiLU
W3PugA025h/W4TkE3QwOuuPP0IzDntF5aR9UDUmBd6mEwL0JeSC32S6BgX/hoqEb
XNUSdyPUp31RcMD4rXtHGBrPFWGqvmvgkNKffM1qrngCR+PxPkYOwy0PIP8EDZfw
CjptXC40r/s7lrQKWCtb3xbYbSZsohqkzZcUGHUIXWrms7+7sZ579ZolrS1t0rG/
q4V/0giPKamUR9R6/PQ+z/lFB/8g4pyhtfUuv0vSQ64VCipEeHhrG8mirTRwCeFO
jGvO2gDQAdhXSA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:34:51 2025 by rpki-client