Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: M3OF6QFfXnFltXPXRmQljz7tj/gMBZVXulRisnoCsRk=
Subject key identifier: BB:F5:42:C8:4B:C4:78:09:36:6D:37:06:68:53:29:44:E2:D0:7D:99
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 0196B5590C5BC572AAEA86140BBF02C6450E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0B2C
Signing time: Fri 09 May 2025 14:00:33 +0000
Manifest this update: Fri 09 May 2025 14:00:33 +0000
Manifest next update: Sat 10 May 2025 14:00:33 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: KoH1gkhT/RXGTgb+nHSBn44NPwR9gupgWUt1ZqU7+lg=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:59:0c:5b:c5:72:aa:ea:86:14:0b:bf:02:c6:45:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: May 9 14:00:33 2025 GMT
Not After : May 10 14:00:33 2025 GMT
Subject: CN=bbf542c84bc47809366d370668532944e2d07d99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:eb:0a:16:f8:56:4f:ed:bc:63:53:68:89:2c:
fc:39:6a:e3:a3:0e:ab:46:cb:96:78:49:85:cb:2a:
f6:a3:cf:38:b6:2c:7b:67:99:f7:46:9e:90:b0:6e:
49:69:36:e2:d5:d7:25:59:cc:17:3f:21:3d:46:14:
b3:eb:3e:37:9d:e1:43:1c:c1:0a:d0:6d:68:6f:88:
16:4d:84:1f:fe:fe:25:27:9d:59:b3:b9:6c:17:07:
8c:54:d5:9c:0f:1f:e9:d0:d9:74:54:af:ae:fc:ae:
a8:4e:b5:00:8d:9b:7e:4b:15:37:d6:66:7d:a3:a1:
68:3a:0c:de:1c:0e:4e:f3:8a:e7:bf:ae:81:07:1d:
9e:6c:0d:9d:af:c0:b2:8a:bc:ed:5b:91:56:e0:62:
b7:e5:f8:8b:15:64:7e:dc:a6:d2:aa:02:fb:85:e0:
01:59:fa:3d:b5:56:f9:53:3d:10:8a:f8:d7:2b:bc:
83:9e:04:e8:33:9b:94:a3:d3:d0:58:29:ca:46:c5:
fc:f4:81:e2:0b:a9:68:3b:2b:37:df:54:64:80:1d:
21:c4:38:36:0d:45:9e:89:85:e5:e6:71:78:ed:10:
5b:52:fc:ae:35:ee:c7:5b:24:01:a1:05:e8:11:32:
ca:c4:6d:dc:8d:78:f2:41:c6:03:38:9b:73:0e:b6:
45:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F5:42:C8:4B:C4:78:09:36:6D:37:06:68:53:29:44:E2:D0:7D:99
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:a7:2c:36:1f:59:9f:48:f2:29:f6:b7:ad:56:4c:e7:ae:4b:
32:cf:15:9d:ae:48:55:ba:0c:94:0f:80:36:8a:bd:39:fc:32:
bf:31:23:a0:c8:cf:69:eb:4a:7c:c8:5c:5b:45:a9:12:5b:3b:
69:67:d9:64:11:32:63:3f:6f:29:87:1f:8d:1c:78:91:e4:62:
d9:b0:1c:2f:b3:b0:ce:db:4a:65:d2:b4:64:e5:da:fe:04:6c:
33:e2:ec:11:36:8f:3f:48:64:37:40:73:40:af:ff:bd:81:80:
7e:a1:7d:0e:d6:ff:22:2f:8a:8e:f3:d3:57:d4:d6:65:fe:20:
97:08:fb:1b:5b:32:2c:1b:11:4d:bc:ae:cd:7a:f3:b9:62:c4:
c6:01:49:fa:b1:e7:28:de:75:81:cd:fa:fe:9d:a8:99:06:0a:
c8:27:41:a8:ba:1a:4b:2b:a9:2e:a7:9c:4b:ea:72:8f:76:72:
2e:f6:14:e4:46:0e:ec:99:cf:48:e6:7d:37:92:e1:63:ee:ef:
10:10:8d:bc:93:17:74:71:74:12:a0:50:a1:e5:f2:50:cb:80:
b1:61:fb:a9:f2:5f:8e:b9:23:0c:26:cf:a7:f6:64:a7:de:8c:
5a:dd:a8:02:11:bf:90:a9:41:6e:73:1b:ac:81:0c:ff:7c:d7:
c8:ce:b7:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa1WQxbxXKq6oYUC78CxkUOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMmUyN2JlODkxYjE5ZWNhOWJjZWI1M2U0ZGMyMzdjNWEz
NTU2OTcwHhcNMjUwNTA5MTQwMDMzWhcNMjUwNTEwMTQwMDMzWjAzMTEwLwYDVQQD
EyhiYmY1NDJjODRiYzQ3ODA5MzY2ZDM3MDY2ODUzMjk0NGUyZDA3ZDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5esKFvhWT+28Y1NoiSz8OWrjow6r
RsuWeEmFyyr2o884tix7Z5n3Rp6QsG5JaTbi1dclWcwXPyE9RhSz6z43neFDHMEK
0G1ob4gWTYQf/v4lJ51Zs7lsFweMVNWcDx/p0Nl0VK+u/K6oTrUAjZt+SxU31mZ9
o6FoOgzeHA5O84rnv66BBx2ebA2dr8CyirztW5FW4GK35fiLFWR+3KbSqgL7heAB
Wfo9tVb5Uz0QivjXK7yDngToM5uUo9PQWCnKRsX89IHiC6loOys331RkgB0hxDg2
DUWeiYXl5nF47RBbUvyuNe7HWyQBoQXoETLKxG3cjXjyQcYDOJtzDrZF+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLv1QshLxHgJNm03BmhTKUTi0H2ZMB8GA1UdIwQY
MBaAFFEuJ76JGxnsqbzrU+TcI3xaNVaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wZjFiOGYtMWQ0Ny00MmYwLWEwNTAt
NWExMTRlZjliMmFhLzEvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wZjFiOGYtMWQ0Ny00MmYwLWEwNTAtNWExMTRlZjliMmFh
LzEvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ6csNh9Z
n0jyKfa3rVZM565LMs8Vna5IVboMlA+ANoq9OfwyvzEjoMjPaetKfMhcW0WpEls7
aWfZZBEyYz9vKYcfjRx4keRi2bAcL7OwzttKZdK0ZOXa/gRsM+LsETaPP0hkN0Bz
QK//vYGAfqF9Dtb/Ii+KjvPTV9TWZf4glwj7G1syLBsRTbyuzXrzuWLExgFJ+rHn
KN51gc36/p2omQYKyCdBqLoaSyupLqecS+pyj3ZyLvYU5EYO7JnPSOZ9N5LhY+7v
EBCNvJMXdHF0EqBQoeXyUMuAsWH7qfJfjrkjDCbPp/Zkp96MWt2oAhG/kKlBbnMb
rIEM/3zXyM63bA==
-----END CERTIFICATE-----
Generated at Fri May 9 16:54:16 2025 by rpki-client