Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json)
Hash identifier: 8wy/faNaKI+7fH8kfVOkj5I3SEkNvaitjdhJ4u1hkpE=
Subject key identifier: 20:63:44:69:26:27:81:FD:97:E1:D4:C1:1D:CA:1B:5A:DB:E5:8B:1D
Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e
Certificate serial: 019A1317B9EA3D059015CD4B2BD04A213D6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
Manifest number: 06C3
Signing time: Thu 23 Oct 2025 22:01:53 +0000
Manifest this update: Thu 23 Oct 2025 22:01:53 +0000
Manifest next update: Fri 24 Oct 2025 22:01:53 +0000
Files and hashes: 1: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: yUFen+lX3OWg4MWCdUg8MI4UmsThdstuSkyPIiFALYA=)
2: t0ukQ5CSEan3v8t7w6xA6LKAlPA.roa (hash: 0NRhgZITCHjsjwAYQth1zntdOiq0gcrilmGiiV4E8WI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 22:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:13:17:b9:ea:3d:05:90:15:cd:4b:2b:d0:4a:21:3d:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e
Validity
Not Before: Oct 23 22:01:53 2025 GMT
Not After : Oct 24 22:01:53 2025 GMT
Subject: CN=20634469262781fd97e1d4c11dca1b5adbe58b1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cd:f3:af:20:0f:03:b0:b2:70:67:ac:a0:c2:
52:7b:1e:41:e1:03:ec:99:cd:28:a0:b2:3c:e7:c9:
96:bf:00:af:ce:70:55:ec:ae:08:2a:06:14:64:5c:
3b:3a:8b:9b:ef:6b:a9:eb:3d:9e:a7:4e:60:27:dc:
6a:89:ce:e9:55:cb:f2:6f:24:21:01:c1:61:8b:52:
1e:ac:17:1e:62:0d:40:63:d9:08:8e:fa:ad:84:4e:
81:25:7e:41:e6:04:4c:44:70:d9:b2:ff:bf:34:cf:
82:81:b1:46:b2:35:c9:a9:f9:76:1d:47:67:aa:d3:
30:05:53:8e:a4:32:86:6b:bc:16:41:99:6d:f9:79:
fa:64:97:64:8e:e1:b7:f0:cf:c2:3e:76:15:24:fc:
53:32:73:02:0a:d2:59:ef:22:63:b6:d3:0b:17:3e:
bb:0a:b9:3e:c5:ac:7c:7c:9c:5c:8c:c1:9a:47:53:
08:6e:81:88:85:e1:49:3b:e6:24:42:c5:1d:a5:ab:
bb:ef:f5:9e:98:c7:d4:c0:17:98:d0:45:a2:61:7d:
4f:d1:e0:e4:a1:f7:7b:81:7a:c3:cd:07:8c:2f:79:
31:89:2a:22:cf:96:18:1d:73:69:6d:51:23:82:cf:
2a:6a:f4:9c:24:1b:b6:cd:10:12:65:33:db:4a:70:
6e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:63:44:69:26:27:81:FD:97:E1:D4:C1:1D:CA:1B:5A:DB:E5:8B:1D
X509v3 Authority Key Identifier:
keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:cb:da:2c:78:b2:21:ec:db:e6:d6:5a:41:6a:f0:ac:fb:2d:
75:9f:11:35:0a:ac:fc:3b:7c:48:ef:ac:ba:57:3b:91:7f:f9:
3c:61:21:ec:ae:d2:12:ad:24:d9:99:31:3e:f0:0e:bd:1c:c6:
c5:5d:23:4a:b8:75:b8:4a:3b:c2:0f:b3:34:98:de:5d:2f:72:
bb:29:52:72:63:15:3f:45:d4:82:29:04:5a:21:24:73:09:f9:
73:70:a4:9e:e9:f4:42:4f:1c:98:2e:56:ff:d5:be:66:b5:71:
94:ac:23:da:15:6f:ca:bc:6c:bf:92:7b:71:c7:8f:8f:e4:85:
fd:fb:6d:b2:23:90:ac:93:df:11:8f:19:0b:de:8c:53:9f:3a:
31:b2:a2:7b:ec:5a:ef:63:d8:12:ea:ca:4c:b6:b0:ae:ef:b1:
9a:6a:2f:e9:77:04:8c:15:97:af:3a:7b:60:f6:58:91:bc:f7:
06:09:0c:54:0f:db:ca:26:ed:0a:1e:ea:92:db:19:13:70:38:
e5:4f:a8:6f:37:05:70:f2:9a:bf:ec:aa:06:c7:88:48:0a:ba:
5f:a8:f2:b8:1d:98:c8:57:71:35:f6:f1:de:30:9c:99:f2:25:
d0:cb:39:d3:13:93:f1:02:0a:ed:02:2c:df:e0:f3:54:c6:0d:
fe:a6:bb:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 08:19:34 2025 by rpki-client