Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
File: USzy1zi8akeL64yogkEB_w_IGmE.mft (raw, json)
Hash identifier: VND8V7asoahuU9/AP/B2GxyswOyaL5VNIUAdzYygGIM=
Subject key identifier: 71:8D:4B:ED:57:8F:25:61:0D:23:0D:A0:47:5C:50:D6:A9:25:21:1F
Authority key identifier: 51:2C:F2:D7:38:BC:6A:47:8B:EB:8C:A8:82:41:01:FF:0F:C8:1A:61
Certificate issuer: /CN=512cf2d738bc6a478beb8ca8824101ff0fc81a61
Certificate serial: 01969F3F44C6FF816D45E74F3606CEFB2315
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
Manifest number: 0306
Signing time: Mon 05 May 2025 07:00:45 +0000
Manifest this update: Mon 05 May 2025 07:00:45 +0000
Manifest next update: Tue 06 May 2025 07:00:45 +0000
Files and hashes: 1: USzy1zi8akeL64yogkEB_w_IGmE.crl (hash: D1r/X6re27ioWqAcNYElq/L8FOjDPxSyCTLqRGi01eo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:3f:44:c6:ff:81:6d:45:e7:4f:36:06:ce:fb:23:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512cf2d738bc6a478beb8ca8824101ff0fc81a61
Validity
Not Before: May 5 07:00:45 2025 GMT
Not After : May 6 07:00:45 2025 GMT
Subject: CN=718d4bed578f25610d230da0475c50d6a925211f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:07:d5:96:31:a0:21:56:97:33:e4:b5:b3:9c:
d0:b2:6e:71:ca:c0:85:79:4e:e5:8a:2e:8d:ef:28:
52:2d:4c:59:5e:02:b2:5c:82:5e:c0:10:c0:cf:46:
07:5a:94:8c:b4:24:d0:3b:c6:a8:5d:6e:01:af:f5:
c3:d5:91:d9:73:99:8c:64:0b:42:cf:1d:3e:72:a3:
c4:1d:d5:17:2d:57:66:19:f1:01:45:5e:5b:96:39:
c1:8c:2f:ff:11:b5:cb:9e:1a:d5:4e:c2:64:4b:9d:
74:fa:ad:63:74:6e:58:6f:ab:2d:e7:84:90:4f:7f:
41:da:85:63:a8:79:d2:fb:c0:7d:8d:d4:52:75:85:
3f:f6:5a:7c:76:30:20:03:2d:17:ce:ce:de:3e:03:
5b:3f:3c:d4:2d:be:d0:d8:99:e6:b5:7e:e2:c9:26:
00:36:23:63:92:1c:dc:34:57:c4:9a:3c:d0:3d:88:
6f:7f:8c:cf:57:3e:f5:cf:91:54:7c:86:f5:79:d9:
9a:e3:63:a4:d8:e2:e1:1c:48:a2:fc:64:a2:8f:cb:
06:f8:db:6a:10:b1:d8:11:45:b8:64:c6:62:81:29:
6f:03:19:5c:e0:f6:26:e3:6f:12:87:7b:6c:56:6b:
3f:1b:1e:9c:78:42:0d:48:62:c6:5c:d5:3c:82:a2:
e8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8D:4B:ED:57:8F:25:61:0D:23:0D:A0:47:5C:50:D6:A9:25:21:1F
X509v3 Authority Key Identifier:
keyid:51:2C:F2:D7:38:BC:6A:47:8B:EB:8C:A8:82:41:01:FF:0F:C8:1A:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:28:71:c4:9d:6a:c8:80:14:cd:ef:d2:0f:d5:9e:c2:c1:3a:
e5:39:82:d7:a5:c3:65:68:d8:69:e5:07:81:46:a5:b2:27:67:
88:94:e6:d2:7c:a3:42:2e:ec:ab:50:72:60:a7:32:c5:c3:01:
dd:3b:bd:55:1a:11:02:75:66:13:cb:86:db:7b:ff:0c:78:6c:
5e:e5:8e:14:64:d7:b1:e3:62:f6:ba:1d:62:04:96:ad:b9:26:
cb:66:72:be:7b:54:fd:1d:9b:8c:5b:07:7f:71:45:b2:43:3f:
d8:0a:d3:9f:0c:e5:18:5f:a7:b7:49:fe:2c:60:b1:65:7b:37:
01:d2:d3:a6:d7:a9:98:71:e1:96:af:81:64:9a:58:7b:e1:84:
61:99:fd:61:48:1d:c7:e0:41:a8:e0:37:fb:7d:aa:c5:97:57:
93:e3:2c:3c:2a:fb:f8:37:f6:7f:c4:b5:4f:e5:9d:b6:81:75:
cf:a8:16:fe:0a:0d:f4:ec:79:7b:64:47:46:8b:96:1e:72:f9:
09:4f:1e:ab:4d:d0:4f:1d:cd:8d:3b:8a:3a:df:8d:08:4c:ea:
dd:ee:e7:97:48:86:3b:18:d2:07:b6:40:e8:fd:4a:04:10:da:
bf:8f:4e:aa:15:e1:37:52:06:fb:42:3c:c5:1e:cc:b8:25:2e:
68:82:1a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 15:37:56 2025 by rpki-client