Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: kvA3q7ccPNmEuNStgkgNrwrTNPD/hgUfVNxc6GMJ6EA=
Subject key identifier: A3:9F:22:D2:B6:7C:84:2C:B7:23:C9:2C:4D:F1:8A:73:56:F2:CC:C6
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 0196CF188FF371C0EC92D07A42BBEECF0624
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 04C0
Signing time: Wed 14 May 2025 14:00:15 +0000
Manifest this update: Wed 14 May 2025 14:00:15 +0000
Manifest next update: Thu 15 May 2025 14:00:15 +0000
Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: sZSDeZjo+T8tXkwSsbmPXHrf30Vn0T+QAa+NU3lQ2tQ=)
2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 13:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cf:18:8f:f3:71:c0:ec:92:d0:7a:42:bb:ee:cf:06:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: May 14 14:00:15 2025 GMT
Not After : May 15 14:00:15 2025 GMT
Subject: CN=a39f22d2b67c842cb723c92c4df18a7356f2ccc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:69:33:4d:61:72:06:38:73:ac:68:49:d4:ed:
ef:3d:e6:99:67:3e:61:5b:34:0a:d7:99:33:b2:e8:
91:2b:36:58:78:0a:c2:fb:32:c6:5f:5b:aa:46:39:
a5:5e:89:2f:93:70:30:83:bc:ee:cb:89:0c:b9:73:
b4:9b:0f:7a:f0:c0:63:16:6c:49:13:2a:ae:28:2f:
c1:1b:39:f5:99:0c:fa:5d:bc:3e:ac:4b:d3:b7:96:
d8:0e:aa:68:da:44:12:82:bd:52:c4:7c:e5:74:97:
5d:0e:18:59:4e:46:25:46:ea:0f:45:fa:5e:ef:ae:
47:04:d2:e2:56:47:92:88:7d:eb:df:93:eb:d0:66:
69:ef:d4:71:95:ce:a8:3e:1e:52:5b:14:6f:90:09:
d4:bd:8d:8b:ac:a9:f8:a9:2d:d3:49:18:ca:e9:85:
96:fa:9d:46:a8:ba:60:3b:07:1b:a6:31:25:d6:f5:
43:fa:83:04:40:42:3f:6f:6c:ac:ed:f1:0e:79:73:
08:ec:9f:0f:c1:88:e0:e4:f9:4d:dc:0a:55:1c:26:
39:52:73:d5:f3:f4:cc:8a:44:d2:82:c9:da:cb:af:
6e:b2:13:de:24:e8:33:30:f0:cc:d3:98:4a:c5:c1:
e8:bb:c7:58:57:fa:65:96:d8:d7:98:50:b4:04:54:
99:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:9F:22:D2:B6:7C:84:2C:B7:23:C9:2C:4D:F1:8A:73:56:F2:CC:C6
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:29:49:bf:fd:98:b8:53:4c:60:e9:30:41:1f:0d:ca:e3:f4:
dc:f0:37:14:33:2d:55:c2:0a:60:51:df:1e:5e:d5:1b:35:0e:
bb:5b:82:7f:90:a1:54:ea:d8:7d:25:8e:ef:9f:7c:24:5c:92:
e0:c2:2b:ac:9a:5c:16:fa:c1:05:46:c3:b2:9b:15:99:de:75:
c0:3c:5f:a1:a1:5f:a1:9b:ee:c4:5c:9e:48:64:05:99:f5:07:
28:0c:19:5e:65:6e:20:01:e1:54:ef:8d:02:f3:33:f4:2d:04:
ba:7c:c8:f7:00:14:b3:d8:65:73:cf:aa:b4:3c:d5:69:87:b6:
f1:e2:f8:09:51:27:64:8b:51:79:c2:a0:0b:23:f2:98:06:83:
c9:f3:32:82:72:c4:b0:b1:46:4e:3b:72:71:94:b8:a1:96:67:
a0:16:6b:21:e5:ae:b0:58:96:fe:4d:74:a3:af:bc:17:fd:87:
d3:0f:42:84:d8:7c:b4:03:7e:ba:c9:88:46:69:ea:5c:cc:51:
a5:ca:f5:b3:64:ed:ff:ad:57:35:21:da:59:ab:c5:48:12:80:
b0:36:b1:fd:c8:60:db:ee:6e:c5:d8:2e:a9:14:df:46:ba:1d:
5f:00:19:82:35:00:eb:97:6e:24:08:65:c7:ac:de:4e:74:4b:
e7:db:63:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 17:25:00 2025 by rpki-client