Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json)
Hash identifier: 1rg5UXFHONvOlqiGjKLHqMNcyttjFvlq6fQVocJxW28=
Subject key identifier: 7F:09:6B:EA:06:81:3C:A2:66:E7:BD:1A:01:E6:0D:D4:8D:19:28:37
Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e
Certificate serial: 01990C746678C8A533B4A95361D05EEC63CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
Manifest number: 063B
Signing time: Tue 02 Sep 2025 22:02:58 +0000
Manifest this update: Tue 02 Sep 2025 22:02:58 +0000
Manifest next update: Wed 03 Sep 2025 22:02:58 +0000
Files and hashes: 1: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: EabfkStr0vgMLMa/Vr3yshfRJ5LlMJmdMnKBlmqw7aQ=)
2: t0ukQ5CSEan3v8t7w6xA6LKAlPA.roa (hash: 0NRhgZITCHjsjwAYQth1zntdOiq0gcrilmGiiV4E8WI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Sep 2025 22:02:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:0c:74:66:78:c8:a5:33:b4:a9:53:61:d0:5e:ec:63:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e
Validity
Not Before: Sep 2 22:02:58 2025 GMT
Not After : Sep 3 22:02:58 2025 GMT
Subject: CN=7f096bea06813ca266e7bd1a01e60dd48d192837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e5:df:6c:6d:0d:e8:f0:58:89:1e:62:91:6d:
e4:70:8f:a8:93:6b:e0:9d:bd:e2:23:bb:85:54:90:
89:d5:d1:75:3d:24:41:81:75:9b:b7:b7:60:af:3d:
34:8f:83:0e:dc:92:9f:ec:b1:43:b3:3d:37:8c:f7:
77:c1:95:6a:5e:b8:73:3a:42:1a:18:9e:41:04:a7:
a6:1d:bd:f4:91:0b:00:c8:a7:da:88:59:fa:56:75:
92:a7:02:a4:ab:8c:ec:1d:75:52:a1:7f:da:ec:1d:
e9:b8:06:0f:7d:47:5c:60:ec:0c:b8:54:f3:cc:c6:
a9:25:e5:e9:02:15:51:e5:e9:ee:2a:54:8b:67:88:
be:e0:c8:e5:55:0c:52:3a:cd:68:11:53:c1:88:d1:
3b:01:fa:c9:6a:ea:53:16:9b:0b:63:cf:a1:f4:73:
d9:2d:1e:bd:7e:ae:24:ec:42:66:be:97:5a:b7:2d:
fb:d9:40:aa:af:6e:82:96:17:16:ff:a1:fe:d3:0d:
1a:87:80:38:bb:5c:7f:06:4b:ac:08:bd:b2:20:ae:
1a:b9:f4:79:d1:1c:34:e8:ff:7e:25:8a:28:8e:c1:
3b:9c:43:fc:80:8b:99:ee:c6:5b:20:24:df:c6:15:
2a:93:69:df:6e:f2:47:df:3a:90:54:92:94:c8:d7:
b5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:09:6B:EA:06:81:3C:A2:66:E7:BD:1A:01:E6:0D:D4:8D:19:28:37
X509v3 Authority Key Identifier:
keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:75:4e:f4:61:8d:7f:fd:1a:29:7c:2b:aa:a8:68:7f:6d:7c:
7a:8a:48:0b:a4:28:0b:a8:79:2c:32:81:df:a2:1a:60:50:57:
44:03:00:a2:47:d9:8c:13:d8:b0:a4:f6:57:8b:f6:fe:42:47:
93:4c:f5:64:81:f7:2e:64:fa:1e:25:9f:17:f0:46:ec:74:50:
75:98:43:10:81:2b:f6:2c:c2:49:0c:43:45:f3:00:b5:87:e5:
2a:35:d8:a9:7e:77:13:b6:18:84:56:92:08:df:95:75:37:bd:
75:8e:51:c6:e9:17:69:83:a5:9e:f4:0c:09:1d:79:83:ed:c4:
f1:a6:c6:19:09:c6:e8:25:76:50:c7:95:54:a4:f6:9d:82:66:
80:e4:46:b1:f3:04:33:e8:45:81:bf:4d:77:d3:39:ea:36:77:
5e:6b:10:e8:48:31:3a:3a:23:d3:ae:ad:f5:2b:b6:4b:0d:23:
f5:4a:9e:96:86:30:56:64:f9:16:ab:7e:72:2f:c9:24:2b:cb:
08:5b:92:0a:02:cd:85:74:f1:16:fc:88:6d:dd:07:07:bb:ee:
98:98:cc:9d:e4:1a:2b:ab:78:eb:e4:a1:95:2e:11:a2:7c:e5:
12:4b:e1:ce:e8:69:a0:0d:47:77:8f:7a:ca:60:00:da:d4:dd:
0c:1c:91:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 04:49:35 2025 by rpki-client