Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json)
Hash identifier: OJiO723FetFEETZ/qdwIVURxWHZCJYChyauxCB7WTjw=
Subject key identifier: 28:EA:E5:45:43:E0:1C:AF:E3:AE:05:4A:EF:3C:C7:B1:44:35:0C:0E
Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Certificate serial: 019873E352830917D3B94AAAA777EF993992
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
Manifest number: 0AD0
Signing time: Mon 04 Aug 2025 07:02:14 +0000
Manifest this update: Mon 04 Aug 2025 07:02:14 +0000
Manifest next update: Tue 05 Aug 2025 07:02:14 +0000
Files and hashes: 1: 1-VdOr1FUP7HNxfqfhOHB4LyOJ2Y.roa (hash: QB9LyYahw6voR06UwItPSAyVLMKgN6beiVidIvS+Rxs=)
2: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: EYi0NTSBVtSVFrUVsmm5d6ppFQbNNaSrGNZAiCU/1c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:52:83:09:17:d3:b9:4a:aa:a7:77:ef:99:39:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Validity
Not Before: Aug 4 07:02:14 2025 GMT
Not After : Aug 5 07:02:14 2025 GMT
Subject: CN=28eae54543e01cafe3ae054aef3cc7b144350c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:36:17:94:09:70:29:9d:b4:7e:d6:17:c6:d2:
59:6e:2a:2a:35:97:ca:9b:9d:18:c7:89:ef:6c:40:
2b:06:b9:3f:c4:70:9c:bd:04:98:e3:f2:af:1c:ee:
e7:d4:c4:1a:66:98:6e:83:25:f9:c9:d8:a6:9f:de:
26:92:61:eb:ec:fa:67:aa:30:39:41:c3:c7:28:65:
a0:3a:38:f1:f7:f5:a0:6b:6b:14:f8:e5:b0:1a:f8:
b1:1f:76:89:9f:8f:03:be:70:e7:59:61:16:39:32:
46:fa:5e:8a:ad:b3:2f:d9:6f:21:87:ec:f4:d3:7d:
53:35:69:c7:fb:50:a7:cb:ef:6a:13:bc:56:4b:dc:
fc:5a:3e:b2:d7:28:d2:c8:11:c0:f6:dc:c6:3b:c4:
bf:44:1b:be:b6:c6:ea:98:73:fe:d6:8d:ab:b4:77:
fb:bd:12:53:c6:61:07:c5:28:10:9c:eb:62:85:53:
bd:bb:7c:a6:df:97:6e:f0:fa:ef:d7:de:af:5c:80:
3d:d3:3c:85:b2:ff:1c:67:e2:67:9a:e6:1c:36:f5:
21:8d:45:ff:fe:8e:f1:88:7a:df:af:83:7f:f1:d8:
6b:e0:4c:9b:68:e6:ef:99:e6:45:03:c6:04:0c:85:
ed:1d:8e:7f:30:94:dd:d0:4b:93:47:17:f9:b5:da:
3d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:EA:E5:45:43:E0:1C:AF:E3:AE:05:4A:EF:3C:C7:B1:44:35:0C:0E
X509v3 Authority Key Identifier:
keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:c6:e9:a5:f7:44:a2:fb:02:19:1a:53:b5:84:84:d6:9d:bf:
2b:1a:a7:67:f5:30:4c:a9:d3:87:6b:1a:8b:5b:6a:d7:f0:5e:
67:cf:0e:43:22:16:8d:b4:06:e1:e2:ef:46:72:bd:17:1d:b0:
a1:44:b1:45:f6:e1:46:66:5b:64:b6:e6:7f:2b:f0:14:7b:eb:
5c:d1:80:e3:ab:2a:35:74:2c:71:82:e1:4b:99:af:c5:19:e0:
ce:a9:0b:bd:95:2f:5c:d5:5e:f8:57:eb:c1:70:1f:4a:d2:be:
6f:f9:3d:5d:93:7b:48:57:96:a2:ff:55:5c:bb:39:aa:3d:46:
33:20:a7:ba:a9:d5:87:91:00:f0:54:43:81:e7:9d:62:82:23:
ac:e9:54:eb:f1:00:f9:92:e6:8d:65:65:c3:cb:5d:15:4e:15:
d5:c2:a2:c5:74:c7:d7:4a:c4:fb:79:97:cd:ab:0e:04:87:e3:
9b:ef:76:fa:04:d0:25:92:b2:53:ed:11:35:e5:24:aa:01:de:
22:cb:aa:a4:56:31:c9:04:3f:ce:77:f0:a0:8a:04:75:5f:91:
69:50:92:85:7c:2f:cb:b1:2b:7c:a9:20:f0:f8:35:06:dd:9f:
84:9f:75:ef:1c:b3:4f:bf:c0:c2:83:a1:78:e1:bd:b2:30:c1:
a0:97:62:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:16:45 2025 by rpki-client