Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json)
Hash identifier: jifPgaDYdn46slrZMLgPgz60uVkE3NfoO4Fc00LTcOM=
Subject key identifier: 4F:2F:F5:64:1D:2C:8B:C4:FD:3D:20:79:97:10:83:E2:8B:3E:C8:74
Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e
Certificate serial: 019748FABA4365AA7955C35C6BF2A69E088B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
Manifest number: 0550
Signing time: Sat 07 Jun 2025 06:01:20 +0000
Manifest this update: Sat 07 Jun 2025 06:01:20 +0000
Manifest next update: Sun 08 Jun 2025 06:01:20 +0000
Files and hashes: 1: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: Z4A+HV00P817yQ8W+KB8aqtDiN9WAoaxcKk3nOEDYpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:ba:43:65:aa:79:55:c3:5c:6b:f2:a6:9e:08:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e
Validity
Not Before: Jun 7 06:01:20 2025 GMT
Not After : Jun 8 06:01:20 2025 GMT
Subject: CN=4f2ff5641d2c8bc4fd3d2079971083e28b3ec874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c9:65:bb:d5:7b:53:af:8f:99:68:ad:27:9f:
01:5e:26:48:e1:c8:b6:01:5e:fe:57:15:34:6f:68:
37:a6:55:e7:a3:4d:41:dc:02:ea:c8:ac:5f:71:f6:
75:4f:7c:a7:61:6d:86:6b:a9:36:d0:2a:62:36:49:
c5:0b:92:ec:fc:41:64:27:ed:89:5b:aa:25:d6:53:
b3:e3:19:d7:9b:17:00:eb:d5:31:97:84:f7:8c:f8:
f0:2d:55:32:2c:ef:fb:f4:5b:42:b5:e9:dc:41:dc:
69:36:6c:59:6f:da:b3:a5:84:00:77:34:6b:53:26:
18:57:36:f9:3e:f2:72:06:1c:6a:d5:d5:75:3d:99:
6f:33:2b:9b:79:4a:f1:d1:c7:be:37:f5:cb:ce:bd:
a9:8c:ba:05:10:c1:97:f9:7e:24:ba:be:38:ad:cd:
44:2f:78:2d:bb:81:fd:d8:33:f6:34:50:4d:78:6b:
ee:fa:7e:cd:76:1f:1a:80:58:fd:36:e4:ad:21:58:
bf:ca:9a:53:aa:ed:9f:27:f2:d8:da:5f:f0:0e:d1:
94:aa:eb:e4:b2:e4:a4:30:f4:9c:de:ca:87:31:de:
1f:27:34:d7:26:49:54:ef:61:8c:cf:53:5c:a0:70:
aa:42:4d:16:90:21:d3:b7:ec:f3:02:dd:76:35:bc:
f6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2F:F5:64:1D:2C:8B:C4:FD:3D:20:79:97:10:83:E2:8B:3E:C8:74
X509v3 Authority Key Identifier:
keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:3e:32:51:ad:34:c0:8e:94:77:f1:af:7c:0f:0d:11:0f:86:
9a:6b:3c:42:e2:b0:d7:dc:3e:59:c7:41:10:ea:b5:c8:e6:aa:
62:c6:7e:67:70:fe:5e:1a:88:dd:bf:6e:64:43:f1:87:80:36:
30:da:34:86:19:d7:7b:c2:cd:8f:1d:0d:ad:b2:31:8e:bb:e1:
61:44:a3:19:96:76:2b:48:e3:1f:20:ff:a6:b4:e7:26:89:60:
6d:34:d9:a5:6b:31:27:01:71:c1:4e:49:e6:82:26:22:6e:14:
76:d9:30:31:39:d7:65:62:c7:a9:47:86:80:ac:5d:c5:0b:93:
4f:28:aa:5f:26:1f:d3:79:9d:8b:2b:74:1e:96:3b:c4:5e:60:
22:28:86:20:42:af:39:ed:cf:5d:c3:62:67:18:1c:9a:64:b9:
2d:8a:ed:52:10:94:3c:07:0f:47:79:fb:21:bf:01:8e:64:49:
6c:99:3a:1f:5d:92:f5:32:df:33:31:13:d6:ce:58:18:8e:32:
12:b8:52:67:65:a3:d6:ba:52:d9:82:61:21:b5:b3:18:e5:c2:
f0:49:99:51:8d:a7:20:e9:21:c0:8e:71:d7:6a:1a:4c:4f:c2:
90:d2:50:60:0f:46:c9:15:7a:ee:33:45:e4:43:2c:9c:72:d0:
1d:4a:7d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:26:06 2025 by rpki-client