Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: cWyhnK7OByM/ZZUS2N5XPvczkRnRgatH0MgQJxHzg8M=
Subject key identifier: 0E:09:DF:18:83:E2:C1:81:6C:BD:7E:9C:DD:F4:7A:04:32:FB:BC:3A
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 0198D6614392C72BE3FAC60B52F880E2F9A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 0881
Signing time: Sat 23 Aug 2025 10:02:35 +0000
Manifest this update: Sat 23 Aug 2025 10:02:35 +0000
Manifest next update: Sun 24 Aug 2025 10:02:35 +0000
Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: KApilHNvYbNZu8k5HyxSDGGUD0d0pU8zL6QjOfkLXIU=)
2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:43:92:c7:2b:e3:fa:c6:0b:52:f8:80:e2:f9:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Aug 23 10:02:35 2025 GMT
Not After : Aug 24 10:02:35 2025 GMT
Subject: CN=0e09df1883e2c1816cbd7e9cddf47a0432fbbc3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:c5:67:4a:d1:1b:ea:b0:95:21:04:a3:b9:6b:
32:c8:76:01:09:ac:3b:65:8f:a9:4c:99:27:f1:13:
5b:e2:ab:82:4b:1a:20:33:fc:95:82:76:4d:a6:f0:
c4:bc:a5:7b:77:3e:c7:17:c0:9f:f3:f2:ce:49:c3:
a0:d0:a8:23:7b:9f:91:18:7b:16:e7:48:35:84:84:
82:31:4f:be:5a:8e:08:88:27:a5:2f:6b:be:78:51:
d3:57:da:ea:be:42:88:f4:10:5e:3c:c6:78:39:f6:
d5:77:32:fd:3e:97:4b:8a:aa:6a:3f:55:ad:37:45:
8b:b5:f1:20:50:08:be:c5:59:3c:2d:07:7a:ac:70:
87:a7:ed:5b:6c:fc:06:d8:23:9f:d6:55:81:95:5c:
12:ed:7a:54:50:2d:ba:69:c9:50:08:34:21:84:33:
68:71:96:37:3b:27:b5:56:4c:08:3b:a3:1e:de:4d:
86:a3:86:23:82:34:df:86:fb:48:bf:81:9a:94:e5:
4f:6a:00:08:ba:22:75:f3:15:e9:2d:ca:df:a5:7b:
5f:a3:2b:26:84:c3:6c:2e:a5:01:04:cf:eb:a5:31:
52:56:17:d5:cf:75:52:ab:47:ed:ee:0d:cd:e5:0d:
00:d4:a0:bb:3b:3d:2d:b3:93:df:c7:08:da:4e:aa:
ef:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:09:DF:18:83:E2:C1:81:6C:BD:7E:9C:DD:F4:7A:04:32:FB:BC:3A
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:6c:ba:8f:71:99:89:3b:be:29:9c:00:2d:f8:da:21:a8:14:
b2:a8:09:40:48:d2:cc:bf:8d:31:73:11:5e:47:b5:c9:eb:8d:
5e:a3:3f:82:64:8d:6e:65:02:95:b5:7b:23:d6:05:ca:bf:85:
b9:19:d6:1c:66:40:41:85:d5:23:51:87:e4:e6:b4:48:ab:51:
3e:7f:4a:9e:08:25:c4:dd:c4:bc:bb:53:e0:4a:8a:86:43:60:
69:73:6a:78:9d:45:ab:38:ac:34:cb:98:75:ca:a9:1c:71:b9:
bc:58:53:5a:64:54:5d:c3:c6:46:ed:31:94:98:89:4f:17:af:
9a:fe:8b:a5:04:13:f7:19:18:d2:99:77:c8:de:2b:32:20:de:
fe:dc:9a:4b:d5:b9:c6:cc:2f:9d:e6:bb:1a:14:f0:27:a9:87:
a3:a1:d5:5a:7d:57:d8:01:be:8c:18:c9:e0:dd:11:4c:2b:7e:
f2:fe:3c:08:71:8c:bc:f3:3d:60:9c:f6:39:ea:82:cb:57:66:
63:59:4b:60:00:c1:7a:dd:5b:66:35:07:26:21:d1:0a:60:9b:
74:aa:83:80:12:9a:26:f8:79:02:45:52:f5:fd:98:de:c0:95:
b1:94:81:4e:83:ca:32:f7:74:6d:11:ed:64:8e:8f:a5:a1:47:
b5:88:06:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:44:32 2025 by rpki-client