Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: X9u581xvTPZGrD4bGIIKcbuL4iB2Y8a+X30E5pUW7Oc=
Subject key identifier: 45:A9:F3:76:DE:46:24:60:8D:CC:60:4F:B1:D5:00:54:51:FF:23:C6
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 01989E5F0A50F2B0A72DAB3A57B17B9CCFD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 162B
Signing time: Tue 12 Aug 2025 13:01:25 +0000
Manifest this update: Tue 12 Aug 2025 13:01:25 +0000
Manifest next update: Wed 13 Aug 2025 13:01:25 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: Yvma7/Tdd9d5BpgBQvTGZ/NwdVfmNlRWnyItR9NRoos=)
2: uPPSCEPI-zYe8c4juKISlbYTsmI.roa (hash: ItdA3QN2L+hecSiCaaiQJ/fE6U5Bp5eLGhZQrMhDtVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:5f:0a:50:f2:b0:a7:2d:ab:3a:57:b1:7b:9c:cf:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: Aug 12 13:01:25 2025 GMT
Not After : Aug 13 13:01:25 2025 GMT
Subject: CN=45a9f376de4624608dcc604fb1d5005451ff23c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b9:59:2c:24:61:e8:0d:09:a8:28:4d:ea:2a:
1e:12:1a:8d:64:31:1c:4e:ea:ca:09:2b:28:18:ad:
dd:5a:c2:e4:31:24:8e:c3:ef:32:64:1f:55:4d:80:
17:ab:df:66:4f:5b:ca:fe:6a:12:c4:d2:f1:31:88:
ea:7b:36:02:c2:92:42:a2:60:7f:51:db:66:91:dc:
ff:6e:a3:87:0f:8e:b6:aa:7f:0c:31:01:52:15:13:
5a:27:b2:f9:a9:c0:c5:b9:69:82:ff:8f:e9:a7:44:
31:c5:9a:0c:bd:03:d5:19:42:85:cd:c2:af:d7:ed:
41:3c:bf:b0:ab:3b:39:c6:74:41:a3:b3:06:59:5e:
26:5d:58:ea:09:cd:1a:3e:d4:a3:b8:fe:73:90:e2:
01:0d:18:13:75:22:62:f2:05:a2:99:61:d8:41:94:
e4:5c:03:2a:5d:0e:43:23:83:9f:11:1d:dc:35:7a:
70:0f:3a:3a:f1:8a:da:db:10:d7:27:7f:14:c3:50:
60:97:4e:3d:ab:23:d8:c4:e8:54:81:5d:81:e4:b8:
84:36:0c:1e:5b:02:37:ad:92:7f:eb:23:fc:fd:27:
81:d5:15:c9:01:42:3e:cb:af:6b:d1:ee:76:d7:c8:
1a:6c:3f:72:b4:58:f6:1c:70:5c:2f:08:0a:88:69:
fe:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A9:F3:76:DE:46:24:60:8D:CC:60:4F:B1:D5:00:54:51:FF:23:C6
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:7a:55:ac:11:50:00:c4:d1:ca:90:53:fd:ad:22:76:56:46:
89:c5:f9:4b:fe:46:f5:f5:17:9f:7d:bd:05:36:36:d4:7d:4b:
57:fa:92:d1:a8:d2:f2:88:e0:a8:d3:db:17:b3:a9:c7:aa:b3:
88:71:da:69:81:dd:f6:9a:46:75:32:16:b4:0f:57:3d:37:95:
23:c5:f6:24:0f:7b:ee:c1:37:d4:84:5b:80:da:34:3f:94:f2:
9f:78:e3:94:2f:5e:44:59:97:15:81:6e:97:62:8c:62:14:f5:
f4:8f:78:82:fc:e5:0b:0e:b4:64:2a:f1:ec:d9:ea:ea:10:9f:
8f:50:2d:0e:8e:0e:86:1e:fa:f6:e8:19:1e:c1:1d:94:b0:9c:
06:a4:9a:3f:42:03:56:8c:43:c5:12:0b:f6:99:94:c5:da:17:
3d:7b:47:eb:73:5c:3c:99:98:bc:21:03:18:e7:88:b1:d0:da:
15:5e:6b:9f:e0:46:94:55:28:68:c1:2d:37:63:ec:37:44:77:
ac:0f:71:07:02:81:c0:70:9f:d5:09:9d:60:a8:0c:94:5e:db:
74:57:b8:62:87:53:47:5f:dc:1e:15:e0:3e:8b:ef:50:2a:2b:
f1:13:8c:ca:74:48:1d:b3:51:da:3e:03:26:1f:4e:e5:12:70:
a8:25:02:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:46:28 2025 by rpki-client