Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
File: 70AaUuP95plIbplnjb9Ih1Mpwz0.mft (raw, json)
Hash identifier: 7aX5NoLPvhXBz5Kow955AtPOfP3l8DXNoUp59wpdfLA=
Subject key identifier: B0:50:EE:FB:06:00:4B:7B:2C:46:CD:9B:8C:D6:59:CD:CD:26:70:00
Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d
Certificate serial: 019921B0634E669CE431E584032EC71CAD22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
Manifest number: 0DDC
Signing time: Sun 07 Sep 2025 01:00:31 +0000
Manifest this update: Sun 07 Sep 2025 01:00:31 +0000
Manifest next update: Mon 08 Sep 2025 01:00:31 +0000
Files and hashes: 1: 70AaUuP95plIbplnjb9Ih1Mpwz0.crl (hash: pNtBgXmwno17YfswHfr2OXuKnqWS++QQY50Yoq8pDwg=)
2: S4KhO_-8xzMvt1B6k_-GK_XNTGs.roa (hash: 298ot3rN9ux+k96S6A3kz+LkCwnTR/d/qtOX4jSeeqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:63:4e:66:9c:e4:31:e5:84:03:2e:c7:1c:ad:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d
Validity
Not Before: Sep 7 01:00:31 2025 GMT
Not After : Sep 8 01:00:31 2025 GMT
Subject: CN=b050eefb06004b7b2c46cd9b8cd659cdcd267000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5f:e2:55:67:0b:3f:03:75:a5:48:4b:b6:28:
21:91:b1:85:38:23:7c:7c:af:1a:97:11:a7:81:8c:
33:65:37:26:5e:c2:ee:29:d1:5d:31:a1:9f:e3:36:
35:24:f6:a5:db:7c:3f:07:9e:9b:7a:f1:40:77:80:
43:b1:7b:dc:e3:0d:88:51:86:f0:cc:75:9a:07:5a:
c9:09:ba:aa:f7:19:fd:e5:49:3f:ef:3a:ba:1b:d6:
b0:f0:5c:d1:6b:b1:93:be:99:be:21:02:00:fa:7e:
d6:e2:f6:8b:48:ae:48:6c:28:8d:1d:68:ea:da:4e:
45:8b:5f:5c:02:ec:f7:9f:07:43:eb:f9:11:77:fb:
c6:89:09:ff:f7:cd:09:3b:44:6b:dd:8f:e8:49:b7:
83:6d:d2:ad:60:7c:ce:6e:8a:c2:f3:19:31:69:77:
74:73:26:34:ca:33:40:bf:d5:9a:cf:fb:26:97:b4:
b9:64:ef:63:de:b9:25:50:cd:83:97:fa:a9:cc:98:
f9:4c:a4:f3:2b:6e:e7:2c:94:be:3a:ee:89:a5:ec:
f8:1b:ec:3b:01:da:d7:92:ac:a8:46:4d:e0:3f:52:
39:f8:bb:03:bd:d6:8d:97:62:94:4e:54:6f:b2:61:
99:b9:18:63:e4:a1:fa:17:6c:93:ee:2f:b3:37:58:
55:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:50:EE:FB:06:00:4B:7B:2C:46:CD:9B:8C:D6:59:CD:CD:26:70:00
X509v3 Authority Key Identifier:
keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:12:6c:52:28:15:be:ad:09:d2:c0:ae:88:70:b4:ce:57:8a:
06:55:fa:91:a5:63:59:0f:65:76:7b:46:94:20:8e:48:fa:b6:
e1:06:45:9a:05:2c:6a:16:b3:e8:bf:2b:96:6f:3e:5e:08:5e:
9a:b8:c9:7e:32:49:2b:ed:0a:fd:41:00:97:5a:22:da:b9:50:
92:f0:8b:c7:7d:4d:17:4a:05:f6:c0:91:fd:3b:6b:90:df:a7:
4a:d1:84:a3:aa:56:6f:6e:e6:e2:bf:6f:06:bc:75:5d:95:4e:
47:3f:1d:94:8b:0e:55:66:0d:6c:0a:27:c6:3c:7c:b4:e3:54:
96:d7:8b:09:bb:cd:94:87:63:be:9e:ce:b1:9a:b0:db:ef:2d:
19:7f:82:46:73:5e:c9:2b:f4:79:39:6e:ba:9e:59:c0:9d:89:
cf:df:23:46:de:73:d6:02:28:47:b9:30:cb:3d:0e:71:79:e7:
11:c7:9f:ff:43:1d:6f:c9:8d:6a:0d:7d:7c:91:a3:90:d0:ed:
c0:bd:52:43:8d:02:b9:40:4d:05:6f:16:6e:01:a3:6e:a8:4e:
33:3f:ac:70:17:85:47:3e:c6:12:8b:97:02:b9:b3:5b:73:79:
b1:7b:21:24:2a:39:46:46:6a:d4:db:a9:5b:9f:f0:7d:97:29:
51:cb:97:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:00 2025 by rpki-client