Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json)
Hash identifier: uL05OnrcvALfgtcsmC5hrSxp1rrB7lNoXdS73vc0XR0=
Subject key identifier: 39:C1:BC:C3:C1:F2:43:43:42:8C:E8:61:F1:A7:1C:4E:80:3F:42:59
Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Certificate serial: 0199239F760EF94E3E10932AB90F3C7A5F74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
Manifest number: 0B2B
Signing time: Sun 07 Sep 2025 10:01:16 +0000
Manifest this update: Sun 07 Sep 2025 10:01:16 +0000
Manifest next update: Mon 08 Sep 2025 10:01:16 +0000
Files and hashes: 1: 1-VdOr1FUP7HNxfqfhOHB4LyOJ2Y.roa (hash: QB9LyYahw6voR06UwItPSAyVLMKgN6beiVidIvS+Rxs=)
2: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: KKXaGuq3X4SI8yo5yx5F+dankgkbY9Tbbp/yLHEBUp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:76:0e:f9:4e:3e:10:93:2a:b9:0f:3c:7a:5f:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Validity
Not Before: Sep 7 10:01:16 2025 GMT
Not After : Sep 8 10:01:16 2025 GMT
Subject: CN=39c1bcc3c1f24343428ce861f1a71c4e803f4259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b7:16:8c:97:c0:65:4c:a3:9e:f1:e9:52:51:
aa:e8:21:15:24:73:81:7e:3e:70:fb:86:bd:7f:d4:
43:4a:3b:e5:41:54:e8:e5:5a:cb:20:3c:d9:97:57:
c7:a2:4d:e8:12:65:2d:3e:b8:79:95:f7:97:ac:da:
49:d3:b2:ec:b9:31:92:aa:25:1d:cb:a0:9c:e2:fc:
37:bd:f9:89:94:f7:bc:5f:85:68:de:82:3b:84:14:
68:27:57:ec:04:ed:a4:41:ec:04:d1:54:5e:3a:d8:
f4:54:05:45:ba:69:80:fc:76:b2:41:69:b8:33:7c:
5f:9c:47:27:fe:d0:1f:75:6d:c5:c1:4c:2e:76:9f:
b5:1b:a6:92:29:5d:e8:c8:5c:da:c1:2c:95:70:7b:
d3:1d:18:aa:d7:b9:8d:d9:90:1d:38:f7:9f:b8:b7:
b8:9d:bd:28:b0:36:62:1d:9f:cd:91:15:37:ef:d1:
eb:a8:a8:6f:67:4e:33:7e:bb:5f:84:ec:a9:07:de:
75:f4:b4:c0:44:c5:44:ab:5b:cd:e0:2b:ab:ed:41:
fc:bc:2c:a4:37:5a:09:c0:47:f8:f6:b6:df:f4:1f:
f3:60:43:5d:ee:ea:d9:32:21:37:dd:8e:64:22:11:
b3:af:7e:98:0a:d9:1a:34:86:dd:bb:7e:2b:50:4f:
95:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C1:BC:C3:C1:F2:43:43:42:8C:E8:61:F1:A7:1C:4E:80:3F:42:59
X509v3 Authority Key Identifier:
keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:91:6d:22:88:28:a2:09:d4:25:6d:ca:55:d4:4f:48:55:4a:
ca:dc:11:11:25:68:ef:8b:05:b7:0c:98:ad:6a:9a:91:a1:e8:
e4:85:0b:bc:89:0c:d6:9a:f7:62:95:8c:95:77:85:31:3a:95:
06:09:4e:71:b1:67:78:cd:0b:c3:02:10:a6:90:86:b3:ee:bb:
d3:76:67:7b:fd:65:e0:4d:26:f2:b4:c1:79:36:e0:08:54:20:
d7:9a:ae:ac:8d:5d:7d:98:78:1a:e4:2c:2e:aa:fe:d2:17:9a:
3b:4a:de:8d:d5:90:f3:0e:3e:25:e5:cd:51:52:58:fc:8a:17:
58:44:9a:7a:00:c5:c1:e3:22:14:be:d9:ce:42:63:74:fd:ff:
f6:fd:b8:9e:51:8d:46:6e:c1:ce:15:f1:b3:1b:5d:21:c6:36:
7b:e1:03:64:cf:32:57:6e:db:3c:dd:49:7a:8a:14:44:22:20:
1c:8a:e9:f3:94:bd:54:08:3c:93:ac:03:56:d2:46:d4:7e:44:
c9:ec:b4:3d:70:34:80:dd:04:75:b0:8b:4e:ac:14:d7:6d:24:
8c:e2:2a:53:e0:45:6c:f1:b6:9c:cc:4f:ec:88:76:9f:a3:35:
03:7e:52:a7:d6:7d:f1:69:26:7e:b9:f6:0e:a1:76:5f:1f:ac:
2e:d1:56:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:21:25 2025 by rpki-client