Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
File: 70QOE80mESzLWVF2D8-y1JFtcSc.mft (raw, json)
Hash identifier: Hp9WG4TXIaDEa3lchg21AfRvy0oNYvNdqJTTIIzI3Mc=
Subject key identifier: 28:6F:CB:E7:03:42:DA:36:D1:B6:0A:40:A4:04:BB:37:72:12:2A:D8
Authority key identifier: EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27
Certificate issuer: /CN=ef440e13cd26112ccb5951760fcfb2d4916d7127
Certificate serial: 01974DB2A12CE84865560EF9149DF477CACC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
Manifest number: 157F
Signing time: Sun 08 Jun 2025 04:00:41 +0000
Manifest this update: Sun 08 Jun 2025 04:00:41 +0000
Manifest next update: Mon 09 Jun 2025 04:00:41 +0000
Files and hashes: 1: 70QOE80mESzLWVF2D8-y1JFtcSc.crl (hash: bLJl6I6kfTdYuImZi/zOBIMX5DfW0BhMI4/bZLVrm/c=)
2: W0KEQ42eAsjOaTiDlKrXfXSH1aw.roa (hash: MjWN2D0Y+IB6RDhAWue+MqeEjuWUWzQKaH29Oe4TfRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:a1:2c:e8:48:65:56:0e:f9:14:9d:f4:77:ca:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef440e13cd26112ccb5951760fcfb2d4916d7127
Validity
Not Before: Jun 8 04:00:41 2025 GMT
Not After : Jun 9 04:00:41 2025 GMT
Subject: CN=286fcbe70342da36d1b60a40a404bb3772122ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c7:e1:e9:1a:62:36:e5:5c:6d:3d:48:44:44:
0b:5c:3a:cf:72:96:47:ae:52:06:29:dc:6c:90:0b:
fe:c4:af:4f:73:d9:67:0b:af:bb:26:ee:29:2b:95:
47:04:d4:58:2d:42:79:a3:d7:87:03:d6:4e:32:28:
56:bd:21:c4:40:64:ff:f6:b2:8d:02:fb:6c:cf:f8:
72:c5:60:ce:ef:a5:b1:34:d3:80:89:2e:9c:70:f0:
bf:46:d0:cb:52:45:65:b4:70:65:16:e6:86:05:62:
42:d0:1f:14:8f:d5:2e:d7:21:16:79:c0:fe:eb:e4:
2b:6f:35:fd:76:70:f3:13:1c:bf:b2:1a:a9:45:a6:
51:3d:72:86:3f:98:97:4a:5f:41:15:ca:b0:43:15:
81:72:83:66:e5:65:4f:0b:9a:0d:ad:d7:9b:95:1d:
0d:c3:96:3a:4d:ba:ed:e2:4b:7f:47:38:0c:17:2e:
33:78:3e:05:d3:87:fc:aa:97:b5:cd:1b:18:18:ba:
0c:4c:67:f4:80:c0:a7:b7:f1:12:ea:2d:60:19:1f:
2a:e4:b6:63:ac:4a:b1:23:22:b5:8e:41:52:28:ee:
13:ce:90:ce:26:e9:00:96:4e:f0:17:32:0d:36:08:
3a:39:bf:8c:64:f0:19:96:87:2a:26:95:75:32:44:
98:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:6F:CB:E7:03:42:DA:36:D1:B6:0A:40:A4:04:BB:37:72:12:2A:D8
X509v3 Authority Key Identifier:
keyid:EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:f7:56:34:9a:dc:69:67:c3:96:bd:e6:27:c3:b7:6f:4f:b8:
3a:bc:01:9a:18:ed:73:bd:9f:c4:4c:13:6c:70:dc:74:aa:17:
61:c0:d7:bc:b6:15:f0:3d:15:28:54:55:1b:a7:72:85:27:f5:
6c:34:f8:80:8d:50:0e:a8:50:85:f8:6f:db:f4:3e:50:c8:e6:
f3:c6:02:ff:bc:02:c4:1e:fd:df:f0:5d:c9:2f:1c:c2:12:4b:
67:50:fc:9a:94:a3:ac:1a:02:a2:2d:9e:27:87:13:a6:ab:6c:
6a:49:08:67:0e:ea:c5:92:5c:55:af:11:99:59:cf:a9:be:9a:
b0:a6:88:24:75:33:b1:b7:62:f5:72:56:fb:b5:0a:78:88:9b:
29:ee:a4:51:e9:ba:5b:48:0b:81:37:e8:bd:e5:10:69:3d:28:
f0:b3:42:9e:a6:bd:08:28:42:74:5b:24:bd:75:f1:ab:8c:cc:
cf:49:41:53:9a:a5:38:f7:88:29:73:fe:e4:a7:b9:f1:7d:14:
4c:fa:5b:71:48:43:99:ee:61:a4:5d:c7:53:fc:19:9c:12:e6:
20:8a:17:49:df:24:76:7e:5f:ef:d6:73:7b:11:56:98:18:47:
df:e6:29:de:31:20:1f:96:ef:c5:7f:c8:cc:d1:aa:67:27:b9:
27:be:24:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:01:10 2025 by rpki-client