Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
File: rUS-GO4-DSdHZwVV6GsACWXoE5s.mft (raw, json)
Hash identifier: 9xzVh2WM+LUN+QQx48fguLZH54EjEGqCvMhQ2E6i/KM=
Subject key identifier: 75:37:1A:7A:F6:13:01:E3:72:E9:7B:B0:86:45:23:42:23:06:7D:81
Authority key identifier: AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B
Certificate issuer: /CN=ad44be18ee3e0d2747670555e86b000965e8139b
Certificate serial: 019653491E99464A2B3830D8C1DA62012C5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 13:00:22 +0000
Manifest this update: Sun 20 Apr 2025 13:00:22 +0000
Manifest next update: Mon 21 Apr 2025 13:00:22 +0000
Files and hashes: 1: kX62bL3xBVpkyK0FphmC5iQUK74.roa (hash: GEBZd8qkO5malJhFWg729yyTB3o+issIVlA3FLkcy9o=)
2: rUS-GO4-DSdHZwVV6GsACWXoE5s.crl (hash: uuLQnrbv+0Yc2ezh0nwmoHvhTyPimyVufO5O+Z5xK9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:1e:99:46:4a:2b:38:30:d8:c1:da:62:01:2c:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad44be18ee3e0d2747670555e86b000965e8139b
Validity
Not Before: Apr 20 13:00:22 2025 GMT
Not After : Apr 21 13:00:22 2025 GMT
Subject: CN=75371a7af61301e372e97bb08645234223067d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:49:c3:fe:b8:df:d2:d6:58:0f:bf:9c:28:64:
74:6f:a5:16:74:7a:ef:cd:88:2f:28:5c:e1:30:aa:
dc:93:7f:a8:bb:18:16:9e:04:90:ab:f5:a2:da:4d:
73:f1:47:93:6e:50:e0:5e:51:c8:cc:4e:fc:50:49:
22:9e:e1:07:99:f0:ba:f7:3a:5d:88:e3:5a:c9:28:
d4:a4:44:06:1a:eb:a1:74:12:28:a6:d9:61:54:4c:
b4:68:83:b0:dc:cc:2a:d7:8c:ae:78:a0:e6:6c:78:
13:c0:68:22:5b:8f:02:6d:a0:46:5b:5d:c8:28:d6:
8f:8c:bf:fe:32:6e:c3:b0:00:6b:53:34:e4:9d:83:
f8:f0:c2:8a:59:a0:4c:95:a8:ec:ab:50:9f:1f:8f:
05:bd:18:02:21:56:3d:45:26:32:cb:5a:19:35:0c:
07:d4:90:86:46:c6:c4:67:55:ac:66:7c:56:9f:62:
ae:18:a3:d6:38:76:f2:91:7c:18:12:1e:61:fc:fd:
1d:61:d4:8f:1e:e9:68:2f:bc:67:4f:61:24:c1:1c:
e6:f6:69:9d:41:9e:56:26:9b:75:d4:4d:38:7e:04:
fb:11:14:57:8d:f5:05:c8:4a:02:5b:5a:23:09:e3:
e7:bd:69:23:48:c0:d1:52:bc:ad:0d:4b:1f:95:6c:
52:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:37:1A:7A:F6:13:01:E3:72:E9:7B:B0:86:45:23:42:23:06:7D:81
X509v3 Authority Key Identifier:
keyid:AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:5e:73:5c:63:80:a8:b7:70:08:4b:28:b3:88:e4:bb:19:cf:
2a:c5:e0:c2:97:66:62:ff:b8:8d:03:6e:41:58:5a:20:fb:5b:
15:9d:be:86:44:61:ab:21:94:e4:27:31:00:18:79:da:a1:83:
98:3a:eb:ae:23:81:dc:56:e3:91:12:26:39:1b:17:f3:22:ed:
e4:b3:13:65:d5:a1:4d:a8:0c:1e:ed:7b:44:ee:16:f2:0d:82:
da:4a:fe:78:17:3e:bf:ca:ff:e3:48:10:b7:f3:f3:3c:87:28:
7a:ee:e6:9a:d5:be:96:75:de:9c:8f:47:c1:ed:ca:3b:92:1c:
90:7b:7b:41:da:e0:10:7d:dc:ee:00:73:b6:e7:14:53:73:9f:
d4:64:ae:ec:99:5a:0d:7d:fc:3c:ba:d7:b8:4b:76:e1:8f:c8:
3c:b8:5d:62:95:62:00:8a:fa:6a:a2:99:c5:3a:ec:ff:82:66:
8e:39:2b:e3:39:aa:98:cf:bb:1e:db:a0:49:4e:e7:31:9f:5a:
36:53:d5:af:04:49:dd:4f:85:58:a7:76:0d:bc:ee:89:fa:98:
43:f4:93:39:c5:2c:fb:81:b8:c3:37:46:86:a1:56:2a:99:82:
8b:f8:72:7c:80:c2:e2:a4:3d:be:40:32:d1:85:2c:39:8f:e2:
40:ab:44:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 17:34:38 2025 by rpki-client