Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
File: 70QOE80mESzLWVF2D8-y1JFtcSc.mft (raw, json)
Hash identifier: PwMyFLKm3kytDt9ZYTrriRkQGdexLs6fFvdOwpjUe4w=
Subject key identifier: EA:22:A9:44:3C:11:D4:2E:8F:BB:D8:ED:5D:70:63:B3:20:63:9A:27
Authority key identifier: EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27
Certificate issuer: /CN=ef440e13cd26112ccb5951760fcfb2d4916d7127
Certificate serial: 019A7112BFBA505C1C6EB1ED70B212F0E7A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 04:00:45 +0000
Manifest this update: Tue 11 Nov 2025 04:00:45 +0000
Manifest next update: Wed 12 Nov 2025 04:00:45 +0000
Files and hashes: 1: 70QOE80mESzLWVF2D8-y1JFtcSc.crl (hash: y+os9BddvbH9x1/4cFH88aL+k04XkjM05/+BQXeFheo=)
2: W0KEQ42eAsjOaTiDlKrXfXSH1aw.roa (hash: MjWN2D0Y+IB6RDhAWue+MqeEjuWUWzQKaH29Oe4TfRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:bf:ba:50:5c:1c:6e:b1:ed:70:b2:12:f0:e7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef440e13cd26112ccb5951760fcfb2d4916d7127
Validity
Not Before: Nov 11 04:00:45 2025 GMT
Not After : Nov 12 04:00:45 2025 GMT
Subject: CN=ea22a9443c11d42e8fbbd8ed5d7063b320639a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c2:7a:9b:9c:56:b6:24:72:d1:c3:dd:53:eb:
40:37:50:4c:2f:38:42:dc:bf:89:fc:9e:b9:2d:8a:
73:dc:65:e2:53:94:0c:a1:36:32:12:78:77:44:92:
19:22:55:ff:b1:2f:62:9e:c5:bd:f7:d0:df:2d:07:
3c:27:28:2f:a9:ab:f7:50:dd:77:53:3e:1c:88:90:
a1:ed:b5:6f:80:64:0c:41:8c:e0:12:93:24:aa:2c:
81:1e:74:f3:ca:65:6f:fc:d6:2e:b1:79:9d:a3:ed:
01:f4:d7:ab:a7:34:56:53:6a:27:10:49:a1:d4:47:
44:36:4d:45:b9:6e:20:01:0e:0a:85:b8:01:d7:72:
a8:8c:bf:ff:a5:e8:6f:58:a1:a8:11:37:07:85:2e:
3f:4d:a5:1e:31:69:91:43:5e:f4:9d:96:2f:b6:c5:
c7:d8:82:e8:1d:30:c9:dc:65:83:4c:98:71:fa:57:
b1:30:02:fb:a7:55:92:7a:8d:7f:81:55:22:43:c3:
e6:15:5d:97:ad:35:ee:b4:a7:20:7e:f1:d8:f8:53:
48:32:95:ae:b8:0f:39:da:1f:08:bb:e1:90:7d:cd:
96:48:a8:38:1f:89:0a:5f:8e:5b:2b:c6:93:ef:54:
3b:d3:aa:26:57:e7:6c:23:f7:4c:a0:b7:43:aa:75:
4d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:22:A9:44:3C:11:D4:2E:8F:BB:D8:ED:5D:70:63:B3:20:63:9A:27
X509v3 Authority Key Identifier:
keyid:EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f8:98:ff:d0:f4:04:b0:0b:81:55:89:5d:89:72:e2:65:03:
f7:c0:cb:5c:00:45:c0:bb:c6:72:f1:3f:80:5f:9e:86:c5:2b:
53:3e:ae:49:26:fb:bc:87:4c:37:4c:e8:80:aa:76:b5:12:80:
1f:64:2a:fc:a3:14:06:41:46:16:ae:82:7c:30:77:0d:87:14:
35:16:2f:b4:9d:03:5e:78:79:2e:7d:1d:0b:86:46:15:1f:2e:
0f:0b:ae:9f:56:40:e7:4c:43:5f:6a:cc:30:c9:35:e7:ac:31:
06:63:33:97:8b:fc:b7:95:21:55:1d:24:07:17:ae:5f:53:07:
8b:aa:1b:c2:0e:87:c0:76:7a:6b:84:92:f0:75:7e:9e:1b:d5:
3b:81:ac:d5:81:69:42:7c:03:04:14:3d:50:1a:b9:31:d3:ee:
c4:5b:c8:8d:40:dc:14:22:76:64:23:f0:b2:a0:e8:08:05:54:
ca:7e:95:6e:ae:b2:5a:61:7b:22:31:74:ef:d1:cc:bf:39:6b:
b7:3e:06:30:53:f3:8c:6b:35:fc:86:60:f2:d5:45:23:f5:b9:
42:1a:c4:aa:39:37:08:15:7a:33:fb:5f:d2:f7:e8:ca:70:c7:
80:08:cf:e7:e3:12:e1:8c:cd:5f:1b:57:fd:cd:a3:ac:62:0b:
84:ff:45:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:33 2025 by rpki-client