Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: eHVdppmdnxn6jKmt0VobB0ncrytHjjPMJ/jltfNneeE=
Subject key identifier: 69:BD:E9:51:F4:9C:3C:E6:85:C3:AD:EB:8F:73:85:63:45:F2:A2:F8
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 0197808E83123115E04994CBCEAD6722BA87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 1597
Signing time: Wed 18 Jun 2025 01:01:52 +0000
Manifest this update: Wed 18 Jun 2025 01:01:52 +0000
Manifest next update: Thu 19 Jun 2025 01:01:52 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: q5n+jhsYwf6dUHQJl3FbhNNQpTtStndYx4RHEGOkOiw=)
2: uPPSCEPI-zYe8c4juKISlbYTsmI.roa (hash: ItdA3QN2L+hecSiCaaiQJ/fE6U5Bp5eLGhZQrMhDtVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:80:8e:83:12:31:15:e0:49:94:cb:ce:ad:67:22:ba:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: Jun 18 01:01:52 2025 GMT
Not After : Jun 19 01:01:52 2025 GMT
Subject: CN=69bde951f49c3ce685c3adeb8f73856345f2a2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7a:b3:f8:54:9c:7d:ba:74:32:87:a3:4f:a3:
6c:32:3d:3b:70:5d:99:f9:50:09:f8:26:8e:e5:6a:
cc:79:70:dc:15:f8:d4:c6:32:4d:a9:91:5d:be:2d:
2b:30:7f:bc:d5:38:f3:60:da:b1:fb:bb:77:d7:6f:
c5:52:3b:7a:b2:77:65:16:64:c3:53:91:4b:50:8e:
92:81:0b:94:46:13:cb:7f:4d:28:a4:7a:a7:a4:c2:
53:bc:dc:0e:63:69:7f:2a:b5:3a:7b:22:ea:26:bd:
fa:da:15:5f:b2:94:2e:44:bd:71:cc:98:23:52:d0:
76:ae:c8:a0:a3:82:7c:10:99:63:ab:25:34:4a:55:
2d:0a:7c:47:f7:42:23:1b:d2:56:ec:27:6c:5d:ca:
3d:3e:2a:f5:0a:b8:41:9d:f9:0c:7b:3f:53:8a:7f:
52:46:32:c7:40:f7:eb:f9:47:f7:18:9e:bc:63:41:
db:09:57:9f:08:3e:2b:b6:7d:f4:fd:ed:de:e4:0d:
5f:0d:06:9b:1a:14:70:47:08:7f:f9:0c:9a:cd:9e:
62:08:45:21:cb:9f:4d:7d:7e:ef:0d:8b:33:e0:27:
84:1f:e5:65:0f:93:ea:bd:f8:12:69:70:5e:0f:28:
f5:ca:bf:25:bb:0f:18:b7:d2:57:80:20:26:1f:6b:
4e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:BD:E9:51:F4:9C:3C:E6:85:C3:AD:EB:8F:73:85:63:45:F2:A2:F8
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:c5:bc:6f:c3:6c:81:6f:d2:80:88:67:87:58:57:85:7e:e4:
a1:64:30:8b:fa:69:cf:3c:43:ad:1f:fc:8c:1d:07:b6:c9:b1:
4b:65:cd:b2:1d:c4:80:f6:62:81:a9:cc:d3:28:81:28:85:ab:
6a:f8:10:2e:ee:0e:1c:b9:ce:ad:1f:6a:fb:d3:11:3a:4a:b5:
92:10:28:ea:9a:a9:bd:0e:fc:99:84:f0:87:d7:8f:da:2b:54:
4d:71:45:32:52:27:5e:25:f6:f3:79:96:7d:3a:c5:8b:48:40:
14:74:32:a7:c7:01:0f:c3:8e:ed:80:32:4e:6f:7a:bd:b6:0b:
a1:20:b8:3b:4b:b6:90:0a:e7:11:f3:7b:f0:67:43:27:a7:71:
4f:6a:70:41:0d:2b:02:f8:73:0d:39:36:f6:49:65:59:70:ff:
46:aa:ed:7e:5d:9e:2c:63:2c:d2:fd:da:04:e9:60:8f:35:7d:
19:50:54:01:66:82:70:ce:93:37:68:33:e3:00:52:10:4b:2a:
be:38:80:9a:7f:a8:8e:31:c3:24:72:7e:f1:8b:71:d7:80:c4:
6a:72:8d:97:bb:10:ff:d6:a5:93:7e:76:cb:0a:0c:e9:fb:78:
80:0e:79:b0:8e:17:2a:72:c8:53:74:fd:62:a2:87:53:ed:38:
46:67:55:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 05:16:54 2025 by rpki-client