Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: 6wv5Z292Qw2xHTqqk0+f6ln5Wz+2FOyowuVCx2X1UF8=
Subject key identifier: 18:1F:6E:C3:41:5F:E9:30:4E:ED:95:3C:22:9F:25:1A:FE:D4:BC:D6
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 0197B6A1C655F2EDD60A825CED9FDAEFCE71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 07EC
Signing time: Sat 28 Jun 2025 13:02:24 +0000
Manifest this update: Sat 28 Jun 2025 13:02:24 +0000
Manifest next update: Sun 29 Jun 2025 13:02:24 +0000
Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: Op5wNp3mvo3prZYup3tItXr7aaRkng9ffCZVfkpmkM0=)
2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:c6:55:f2:ed:d6:0a:82:5c:ed:9f:da:ef:ce:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Jun 28 13:02:24 2025 GMT
Not After : Jun 29 13:02:24 2025 GMT
Subject: CN=181f6ec3415fe9304eed953c229f251afed4bcd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7f:86:e7:53:58:cb:8d:06:05:b1:da:3f:7e:
ab:f8:88:60:cc:75:cb:38:58:e6:b7:ed:82:8f:d6:
4f:de:50:f1:f0:6e:5b:77:bd:84:2a:95:58:8e:18:
14:a9:45:c2:f0:0f:e6:06:0b:f0:71:68:e5:46:d2:
b6:9c:b0:5a:a6:a1:a7:1f:43:ca:c6:db:75:0f:b2:
b7:fb:19:93:ef:df:41:19:68:a4:94:0c:0f:22:60:
93:99:be:97:ed:75:4b:10:59:3f:94:b6:18:6f:43:
e5:eb:16:33:28:e5:3f:6a:1c:f6:9c:e7:fd:f5:80:
3d:39:2a:6a:98:57:c4:3c:f1:86:89:0d:df:db:c0:
57:dc:5b:6d:20:94:32:c8:80:4d:1d:16:27:34:58:
88:28:96:d2:44:b9:6f:8e:5a:fd:b0:03:cc:bb:ce:
fa:f5:2a:02:ee:1e:b9:bd:dd:ad:fa:7a:88:68:a0:
7f:2c:6e:74:a5:12:1f:76:7f:d5:8f:86:21:70:f3:
d7:fd:19:ec:11:5e:3b:60:98:91:19:d2:6b:f1:5b:
b9:38:3f:d8:15:46:93:43:ea:99:f7:3c:5f:b1:55:
ac:56:4e:51:b9:1d:9e:f0:64:50:03:52:aa:67:60:
d8:ee:40:05:dd:16:a1:c5:92:d4:17:6b:e5:eb:00:
e3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1F:6E:C3:41:5F:E9:30:4E:ED:95:3C:22:9F:25:1A:FE:D4:BC:D6
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:74:00:eb:15:fa:ce:3d:2d:36:f8:8f:51:86:9d:96:ae:ac:
5a:5e:9a:79:bc:df:f4:a7:d3:59:62:a1:86:8a:64:37:7e:eb:
1f:3b:f2:72:e6:e2:2e:74:9a:f1:24:18:cc:fe:6c:18:34:73:
38:87:91:f1:72:d3:34:eb:da:30:19:1f:8e:dc:58:37:66:ee:
f8:23:50:ff:80:1f:eb:f9:6a:73:cb:b0:38:2a:36:02:0e:71:
d5:68:e2:a3:ec:f7:65:b4:8d:c3:e0:21:89:9d:36:05:4c:8b:
61:d7:41:cf:bb:08:83:c0:f4:83:90:6a:4e:82:75:60:ca:50:
f4:ec:1a:ed:29:51:ea:77:e0:17:8d:cf:49:4e:97:e0:e4:db:
69:58:ce:bc:26:a1:67:92:91:6f:c2:1a:06:d9:27:b3:48:ab:
3f:ee:d6:60:0b:c0:5a:43:f1:29:61:d3:2b:b5:d8:14:71:99:
83:03:a0:f4:ae:8e:2f:2b:f8:c1:e5:0c:83:60:f4:f1:f7:07:
90:04:c5:d8:ce:09:36:48:74:d2:d3:99:e7:cb:ed:f3:e4:5e:
eb:6f:b8:30:7c:f7:db:f2:31:b0:a8:1c:98:e1:94:c0:85:f8:
63:76:fc:8c:cf:89:1f:e1:f2:c2:3a:0e:d1:69:9f:f5:c9:10:
2b:9d:37:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:37:17 2025 by rpki-client