Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: PEEZUiH2mPiBDjifq9Ny/sDPk8Ezn35zYBuNyIHyZOs=
Subject key identifier: 4D:BF:10:25:2A:7F:0A:87:3B:A4:BE:27:6D:BB:58:62:5C:28:41:F5
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 0196B9A3FF6A3BF4834BABDEB3B9A39CF335
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 0769
Signing time: Sat 10 May 2025 10:00:54 +0000
Manifest this update: Sat 10 May 2025 10:00:54 +0000
Manifest next update: Sun 11 May 2025 10:00:54 +0000
Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: Pe5DfSLroyqXh9g+GRHloVQYPiYyuSd6npXDpjT7JIY=)
2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a3:ff:6a:3b:f4:83:4b:ab:de:b3:b9:a3:9c:f3:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: May 10 10:00:54 2025 GMT
Not After : May 11 10:00:54 2025 GMT
Subject: CN=4dbf10252a7f0a873ba4be276dbb58625c2841f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:57:d3:3c:c2:c9:d3:f8:ac:2f:5d:71:e3:18:
be:66:e7:0f:25:a2:97:dc:b7:30:da:62:f3:09:2c:
5e:56:67:86:82:d3:f1:7d:c2:88:84:03:0d:ac:4e:
dd:18:c3:60:71:6b:3b:25:ac:14:dc:99:dd:c8:8c:
42:a3:57:b9:13:3c:8d:c1:08:79:89:16:de:4b:31:
50:df:2e:46:d0:41:58:6d:41:d3:f4:73:59:0e:48:
fb:8d:82:be:bf:fe:27:5e:13:cc:87:dd:73:9d:ca:
26:80:3b:37:9c:2b:c7:4e:d9:fc:ec:6c:21:86:2a:
bd:2e:39:84:3c:62:5e:a3:49:bc:21:f2:e0:7c:6c:
fb:9e:69:6e:5e:45:5f:57:f4:8a:46:fc:26:a0:99:
95:65:71:50:5c:1f:71:0f:15:0c:2f:1c:ed:bf:12:
d8:60:5d:42:f1:f2:0a:86:7a:ca:e8:50:66:f5:06:
fc:d7:c6:48:83:11:1e:99:a7:8a:8c:96:1d:67:f8:
14:45:da:c6:08:74:1e:42:6d:f7:69:46:f4:37:a6:
14:1c:b9:58:36:6d:15:e5:ab:e7:42:5c:11:8a:fd:
aa:b1:7e:fe:df:27:82:3a:d1:d5:d7:db:b0:54:a8:
17:f1:2c:77:b5:c6:5d:73:fe:4f:e2:4b:43:fb:56:
c9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BF:10:25:2A:7F:0A:87:3B:A4:BE:27:6D:BB:58:62:5C:28:41:F5
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:92:4c:65:b5:db:2b:14:54:d0:53:bb:a8:06:53:56:03:aa:
2d:45:9a:6d:f7:08:90:07:85:db:db:dd:08:32:cb:8f:84:e0:
a1:8a:80:a7:80:0d:c1:04:0c:c0:98:d3:64:07:f4:1b:c6:d4:
ab:5c:cf:43:57:00:3d:b3:32:03:d2:e1:09:40:12:09:d8:83:
9c:8d:f4:9b:aa:2d:60:b2:87:53:2b:b5:44:da:ec:3e:74:eb:
42:32:8d:8d:11:d6:15:bd:98:1e:0f:c6:25:19:9f:5b:e7:a7:
99:6f:69:2e:ce:13:4c:a5:0b:85:d1:15:87:55:09:c0:9c:ea:
4b:ac:91:eb:4b:0d:d1:c8:89:25:d0:16:72:38:3c:7f:ce:4e:
f6:61:f3:a4:58:34:3f:35:81:5b:90:c3:76:7e:33:00:8b:23:
68:3a:cc:12:62:e6:20:f9:7d:a8:da:ff:50:1c:51:10:1f:a1:
27:ea:69:a0:f3:7a:4d:8a:ce:38:47:f5:98:0d:a7:38:ac:4a:
7b:4d:9c:76:61:fd:79:fd:e5:cd:5e:5c:64:35:0b:9c:1b:b5:
52:65:56:72:49:1c:bf:34:8b:d4:d4:f4:98:90:75:7b:83:83:
9d:22:00:6a:d9:df:ff:7f:7b:f0:ab:c9:83:fa:b9:ac:39:fc:
a9:63:3e:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa5o/9qO/SDS6ves7mjnPM1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYzQ4ZTFiYjY3MmNkYTY4NDY0MDBlOGJmOGQ2ZDY5Njgz
NWQ3YmYwHhcNMjUwNTEwMTAwMDU0WhcNMjUwNTExMTAwMDU0WjAzMTEwLwYDVQQD
Eyg0ZGJmMTAyNTJhN2YwYTg3M2JhNGJlMjc2ZGJiNTg2MjVjMjg0MWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4VfTPMLJ0/isL11x4xi+ZucPJaKX
3Lcw2mLzCSxeVmeGgtPxfcKIhAMNrE7dGMNgcWs7JawU3JndyIxCo1e5EzyNwQh5
iRbeSzFQ3y5G0EFYbUHT9HNZDkj7jYK+v/4nXhPMh91zncomgDs3nCvHTtn87Gwh
hiq9LjmEPGJeo0m8IfLgfGz7nmluXkVfV/SKRvwmoJmVZXFQXB9xDxUMLxztvxLY
YF1C8fIKhnrK6FBm9Qb818ZIgxEemaeKjJYdZ/gURdrGCHQeQm33aUb0N6YUHLlY
Nm0V5avnQlwRiv2qsX7+3yeCOtHV19uwVKgX8Sx3tcZdc/5P4ktD+1bJpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE2/ECUqfwqHO6S+J227WGJcKEH1MB8GA1UdIwQY
MBaAFFLEjhu2cs2mhGQA6L+NbWloNde/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzkt
MThlY2UzNjgyNjZmLzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzktMThlY2UzNjgyNjZm
LzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP5JMZbXb
KxRU0FO7qAZTVgOqLUWabfcIkAeF29vdCDLLj4TgoYqAp4ANwQQMwJjTZAf0G8bU
q1zPQ1cAPbMyA9LhCUASCdiDnI30m6otYLKHUyu1RNrsPnTrQjKNjRHWFb2YHg/G
JRmfW+enmW9pLs4TTKULhdEVh1UJwJzqS6yR60sN0ciJJdAWcjg8f85O9mHzpFg0
PzWBW5DDdn4zAIsjaDrMEmLmIPl9qNr/UBxREB+hJ+ppoPN6TYrOOEf1mA2nOKxK
e02cdmH9ef3lzV5cZDULnBu1UmVWckkcvzSL1NT0mJB1e4ODnSIAatnf/3978KvJ
g/q5rDn8qWM+2A==
-----END CERTIFICATE-----
Generated at Sat May 10 17:11:24 2025 by rpki-client