Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: IYm6zihZr+eiT2dZ3R+Y5vOF+I3oNCi2EyS47QPgi5k=
Subject key identifier: AA:09:89:D4:7B:6C:47:B2:DC:7E:D8:E5:E8:A1:95:62:43:DB:D4:76
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 0198D5F135A84A9AEEDE414E009FD9786392
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0C46
Signing time: Sat 23 Aug 2025 08:00:11 +0000
Manifest this update: Sat 23 Aug 2025 08:00:11 +0000
Manifest next update: Sun 24 Aug 2025 08:00:11 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: HjS0VSWhushUV4QMipwIovDWYkddhb2NUqM0oeADlU0=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:35:a8:4a:9a:ee:de:41:4e:00:9f:d9:78:63:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Aug 23 08:00:11 2025 GMT
Not After : Aug 24 08:00:11 2025 GMT
Subject: CN=aa0989d47b6c47b2dc7ed8e5e8a1956243dbd476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ae:98:9f:8c:c6:a8:36:3b:cb:59:7b:92:bf:
78:28:59:5f:da:9e:82:93:56:10:ef:68:89:93:2b:
ed:55:fd:ca:12:26:15:09:1c:80:c0:33:72:12:3e:
2a:dd:90:f4:48:7f:78:17:2b:41:c7:a8:f4:ad:9d:
67:7d:7a:7c:5a:55:e4:27:2b:24:dc:0c:76:62:bd:
b1:2a:80:d7:61:f7:8f:a6:bf:1b:ec:1b:7c:10:04:
ae:4c:32:4b:ac:a2:b2:0d:58:55:04:1c:56:32:c1:
dc:c1:c7:92:d8:d7:55:30:3c:78:dd:e0:18:8c:3c:
35:f8:97:6a:69:a3:86:09:de:b4:df:69:89:c5:9a:
65:e0:bd:64:2d:3b:28:24:4f:8b:48:96:28:40:a3:
92:a6:9e:9d:c3:27:09:6d:79:b0:9c:15:73:be:98:
54:56:e6:6c:7e:93:f2:e1:24:0f:39:8f:36:52:9d:
e7:ce:1e:c4:71:a5:d1:fe:4d:7a:01:39:cd:62:d2:
46:ba:34:40:87:72:5a:ba:3f:06:bc:1e:c0:b2:07:
07:75:c7:83:11:2d:dd:fe:3a:c8:f5:e4:c3:d4:ff:
3e:31:66:6e:64:28:7c:f6:18:70:55:af:8d:6f:c8:
02:34:9f:97:bc:be:b3:8c:8e:2c:de:a9:db:fc:de:
db:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:09:89:D4:7B:6C:47:B2:DC:7E:D8:E5:E8:A1:95:62:43:DB:D4:76
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:4a:f5:6f:93:9d:a6:98:b9:76:82:ce:cf:2e:90:8b:49:62:
37:01:1b:6f:f9:a4:9f:ac:72:be:cb:c6:17:1b:35:35:a2:90:
a7:ac:c9:cc:86:75:93:48:2f:0e:11:8c:4b:cd:61:8c:1c:4d:
80:83:44:92:95:53:49:08:89:3c:0a:0d:d4:d1:b0:8f:67:50:
bd:93:59:58:bc:63:4d:8f:0a:78:12:6d:af:78:3a:ec:3c:d6:
67:04:5f:3b:0a:b4:dd:03:07:af:47:54:44:23:3b:0c:9e:8e:
d2:bf:e6:ce:19:8a:41:1d:87:b1:e7:d1:ac:26:79:d6:21:81:
ba:f5:8d:c9:fc:5f:71:16:df:86:ea:a1:7b:e0:9d:35:25:8d:
49:5c:0e:76:58:e8:c8:e8:7f:ab:96:f8:05:a6:26:0a:a3:cf:
09:ef:c9:72:00:76:1c:02:06:b3:d8:ba:7b:3a:70:3e:7b:99:
cf:98:15:d9:6f:9e:2a:90:06:5f:14:cf:6a:c6:0f:81:be:de:
5d:09:a9:78:ca:45:44:b4:fa:19:98:b8:64:86:81:af:80:8d:
ae:99:02:06:aa:87:5a:3c:9c:16:14:b5:2e:fd:a8:50:a3:d2:
27:8e:2b:c8:f5:d4:14:c1:1e:f3:5d:e4:c5:6d:20:03:c7:76:
48:40:cc:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:25 2025 by rpki-client