Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
File: 70QOE80mESzLWVF2D8-y1JFtcSc.mft (raw, json)
Hash identifier: UcMoZy8SaL0pD+i0UTtFWE38GbfMwtHkuxcvpfWAa7c=
Subject key identifier: E7:91:12:35:4A:CF:04:5B:22:30:8F:9B:1D:B3:01:04:8F:D9:5B:DB
Authority key identifier: EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27
Certificate issuer: /CN=ef440e13cd26112ccb5951760fcfb2d4916d7127
Certificate serial: 019922FAFAB32E95D2469ABF28647F5DCA7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 07:01:37 +0000
Manifest this update: Sun 07 Sep 2025 07:01:37 +0000
Manifest next update: Mon 08 Sep 2025 07:01:37 +0000
Files and hashes: 1: 70QOE80mESzLWVF2D8-y1JFtcSc.crl (hash: WpVFzp/r01xXiSIQ6tdxuUhHL60ybRSS8KAuhxv2q1Q=)
2: W0KEQ42eAsjOaTiDlKrXfXSH1aw.roa (hash: MjWN2D0Y+IB6RDhAWue+MqeEjuWUWzQKaH29Oe4TfRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:fa:b3:2e:95:d2:46:9a:bf:28:64:7f:5d:ca:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef440e13cd26112ccb5951760fcfb2d4916d7127
Validity
Not Before: Sep 7 07:01:37 2025 GMT
Not After : Sep 8 07:01:37 2025 GMT
Subject: CN=e79112354acf045b22308f9b1db301048fd95bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:23:fd:5f:2f:94:da:b8:27:93:26:c8:58:dc:
7c:96:40:0d:ea:c7:67:59:fc:fc:07:34:c4:bd:de:
bb:9e:95:a0:50:38:4c:97:1d:9c:59:e3:91:36:e3:
a4:3f:b2:82:2f:a2:1a:9f:e3:47:9c:d6:44:c9:6e:
97:02:16:a5:b8:0c:91:9c:bf:eb:cc:dd:8c:16:39:
a8:33:40:3e:77:40:8d:8c:40:aa:01:9e:80:ec:f7:
94:8b:c2:6d:1a:c9:27:2e:d9:e8:3c:1e:5f:3b:29:
5b:fb:70:61:94:8e:03:ca:d6:5f:1b:b4:07:a6:f9:
f2:41:3e:e7:50:6c:b1:79:74:d2:ac:42:f7:2f:c3:
a0:9c:89:3b:b6:c1:b6:5a:00:56:ff:29:2b:bb:d3:
7b:04:41:15:f8:db:bc:f1:4a:68:70:5f:8d:80:ec:
4d:21:12:71:33:b2:92:72:50:c4:c6:16:82:8a:69:
fe:17:1a:b2:3c:19:fd:f0:a3:80:a6:3c:a2:43:d5:
d7:c0:98:3e:ff:f8:e4:3a:9f:71:60:f7:e4:fb:8d:
bf:87:79:57:53:08:4f:fb:89:b6:36:b2:8a:54:e1:
6b:08:b6:ff:7c:4b:8a:12:ab:37:66:03:1e:89:2c:
be:d8:a6:79:f3:40:d2:33:c1:d7:f2:73:5f:48:7a:
79:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:91:12:35:4A:CF:04:5B:22:30:8F:9B:1D:B3:01:04:8F:D9:5B:DB
X509v3 Authority Key Identifier:
keyid:EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:62:a1:9c:da:19:51:80:b1:77:23:de:14:dd:50:85:bb:1d:
ba:40:09:f3:a4:71:ef:1d:f3:43:86:23:e5:4c:8c:97:39:25:
89:12:04:e9:47:a7:3e:b1:01:97:5c:10:0b:bd:66:60:56:fd:
90:c0:87:98:2d:ae:06:60:01:4e:0f:41:c5:be:3e:8c:fa:33:
1e:bb:87:e7:ec:d0:09:f5:dd:18:07:1b:b9:53:b2:49:0b:e8:
48:9f:5d:0d:9c:1e:ec:06:a6:5f:27:db:be:1f:d2:6e:c8:f6:
05:85:20:7a:99:76:a1:96:67:e3:b8:3e:7c:a3:76:e2:2c:1f:
7c:e1:22:92:8f:86:24:d1:b8:4a:60:a8:a4:06:ec:ff:68:4c:
f3:d9:b5:3e:87:4b:fb:ab:4b:e5:95:2e:fb:5c:c6:23:57:99:
cf:d2:09:a3:7a:59:28:0d:a0:c8:42:b6:87:c6:4f:a4:8c:2f:
55:78:dd:f4:64:05:d6:db:70:c0:0c:0f:ff:22:d8:42:f8:26:
4d:bf:c4:87:9d:f5:2d:a1:4e:a9:31:ad:80:40:f7:ec:ef:30:
97:93:52:bd:b6:8d:6e:65:8a:92:25:b9:91:0a:d2:d6:1f:00:
06:cf:94:14:4b:77:b7:72:a0:df:d5:fe:3b:e2:76:98:4f:8a:
91:ab:fc:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+vqzLpXSRpq/KGR/Xcp+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNDQwZTEzY2QyNjExMmNjYjU5NTE3NjBmY2ZiMmQ0OTE2
ZDcxMjcwHhcNMjUwOTA3MDcwMTM3WhcNMjUwOTA4MDcwMTM3WjAzMTEwLwYDVQQD
EyhlNzkxMTIzNTRhY2YwNDViMjIzMDhmOWIxZGIzMDEwNDhmZDk1YmRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSP9Xy+U2rgnkybIWNx8lkAN6sdn
Wfz8BzTEvd67npWgUDhMlx2cWeORNuOkP7KCL6Ian+NHnNZEyW6XAhaluAyRnL/r
zN2MFjmoM0A+d0CNjECqAZ6A7PeUi8JtGsknLtnoPB5fOylb+3BhlI4DytZfG7QH
pvnyQT7nUGyxeXTSrEL3L8OgnIk7tsG2WgBW/ykru9N7BEEV+Nu88UpocF+NgOxN
IRJxM7KSclDExhaCimn+FxqyPBn98KOApjyiQ9XXwJg+//jkOp9xYPfk+42/h3lX
UwhP+4m2NrKKVOFrCLb/fEuKEqs3ZgMeiSy+2KZ580DSM8HX8nNfSHp5uwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOeREjVKzwRbIjCPmx2zAQSP2VvbMB8GA1UdIwQY
MBaAFO9EDhPNJhEsy1lRdg/PstSRbXEnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzBRT0U4MG1FU3pMV1ZGMkQ4LXkxSkZ0Y1NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS81OTgzMWItZGU4YS00MGFjLWE5NDkt
N2E4MzY4MDBlOWY3LzEvNzBRT0U4MG1FU3pMV1ZGMkQ4LXkxSkZ0Y1NjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS81OTgzMWItZGU4YS00MGFjLWE5NDktN2E4MzY4MDBlOWY3
LzEvNzBRT0U4MG1FU3pMV1ZGMkQ4LXkxSkZ0Y1NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW2KhnNoZ
UYCxdyPeFN1QhbsdukAJ86Rx7x3zQ4Yj5UyMlzkliRIE6UenPrEBl1wQC71mYFb9
kMCHmC2uBmABTg9Bxb4+jPozHruH5+zQCfXdGAcbuVOySQvoSJ9dDZwe7AamXyfb
vh/Sbsj2BYUgepl2oZZn47g+fKN24iwffOEiko+GJNG4SmCopAbs/2hM89m1PodL
+6tL5ZUu+1zGI1eZz9IJo3pZKA2gyEK2h8ZPpIwvVXjd9GQF1ttwwAwP/yLYQvgm
Tb/Eh531LaFOqTGtgED37O8wl5NSvbaNbmWKkiW5kQrS1h8ABs+UFEt3t3Kg39X+
O+J2mE+Kkav84Q==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:51:19 2025 by rpki-client