Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: lfwOK7STXMrFWzIz/jI3EomKWBWhRAZ6ntQ0OC6ebno=
Subject key identifier: 91:31:9C:08:4C:AF:D6:FE:58:88:B1:8B:7B:30:0E:2E:B5:13:08:B4
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 0197B632F640E9438532FFA785262BF61BB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0BB1
Signing time: Sat 28 Jun 2025 11:01:22 +0000
Manifest this update: Sat 28 Jun 2025 11:01:22 +0000
Manifest next update: Sun 29 Jun 2025 11:01:22 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: 0cq8w6WpqlvrMfCZNZFQnZKQirVW1/PK4lCQ/xgnVuo=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:f6:40:e9:43:85:32:ff:a7:85:26:2b:f6:1b:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Jun 28 11:01:22 2025 GMT
Not After : Jun 29 11:01:22 2025 GMT
Subject: CN=91319c084cafd6fe5888b18b7b300e2eb51308b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3f:c2:ce:08:7a:a4:f7:4e:cd:14:94:25:56:
43:d3:fc:3c:81:3e:04:94:b9:63:d0:10:17:07:cb:
73:47:50:39:21:7a:0e:a5:fd:18:f8:67:a2:b7:f5:
6b:70:1e:7b:fc:98:01:9f:60:b3:b8:ad:03:5c:3d:
61:ce:40:23:41:0c:73:a1:ed:43:80:90:23:52:15:
c1:8e:4c:84:09:5b:e8:fc:15:22:32:9f:ed:f6:3b:
89:3f:f6:39:28:a5:cb:5e:85:84:bc:61:33:76:a3:
74:1f:c0:8c:90:13:70:d8:5f:24:62:d2:49:03:dd:
ee:9b:90:37:f0:47:2a:dc:3f:59:b1:e6:cb:2c:d4:
bd:f4:11:51:44:46:a5:41:e7:c0:4c:c1:f8:89:81:
5a:ce:37:73:56:a6:74:07:6a:0d:b3:1e:d3:9b:ef:
63:f0:79:ec:26:24:a2:76:34:dc:42:c8:82:33:64:
80:d0:30:0b:74:7a:0a:40:bd:9f:a4:8f:e6:f3:46:
cd:9e:4e:07:a8:f0:ee:2e:60:5f:a8:e1:4b:c1:5d:
b2:68:7a:d8:ac:f5:16:e1:38:8a:c6:0c:f9:40:46:
80:2f:61:39:a8:ec:8b:52:36:0c:3f:a2:53:b9:aa:
78:52:5e:bd:c3:41:33:fd:6e:4b:38:dd:f5:7e:72:
f0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:31:9C:08:4C:AF:D6:FE:58:88:B1:8B:7B:30:0E:2E:B5:13:08:B4
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:97:25:a6:65:19:e6:53:3a:58:bc:4c:f7:39:c6:1a:15:e0:
d4:b6:34:8d:63:71:aa:61:7c:18:05:18:b4:ad:e4:12:a7:26:
34:a4:e1:60:9e:03:58:e3:00:75:fa:85:31:49:f3:7d:47:69:
3c:48:3f:11:34:09:be:54:d0:a2:4a:8f:2a:7f:fa:f5:86:44:
2e:38:10:82:89:1f:54:e0:76:50:60:aa:28:63:83:fe:3e:3c:
1f:17:6d:02:c5:f0:d9:c9:b9:51:f3:ff:bb:9b:a3:ea:77:0f:
95:05:f0:ca:ef:a2:68:cf:80:73:94:12:85:c7:67:ef:3d:4c:
7e:47:8a:6a:d8:41:31:01:b5:41:ab:e5:22:f7:6b:72:75:7c:
74:30:06:79:0a:a7:98:0a:6b:dc:9d:ca:ff:ce:4a:cd:db:29:
e1:1b:05:70:99:f3:71:da:38:82:95:42:f0:4f:9c:64:da:85:
82:ff:41:2d:18:d1:c5:8d:ff:f7:a1:7f:18:39:13:d7:25:5f:
c2:8d:8c:1c:38:f2:6a:59:63:61:4e:b1:06:16:71:8f:7c:6b:
ef:3f:7d:a3:66:cd:0b:0a:37:37:06:66:de:6a:0b:be:3f:2e:
3a:7d:b5:f9:73:2f:43:c6:06:e8:57:ee:03:56:26:72:13:8a:
64:74:da:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:53:41 2025 by rpki-client