Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: XiYo0qaVQMl2a2HEnxGZH1yy3Ca4VJAfENIV3K5ULek=
Subject key identifier: 9C:7B:1D:51:74:CD:D7:19:63:0B:92:CC:2F:FD:E6:14:4A:76:09:5D
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 01976997C8AC3579CFCEFAB2CFA6B343D630
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 0510
Signing time: Fri 13 Jun 2025 14:00:44 +0000
Manifest this update: Fri 13 Jun 2025 14:00:44 +0000
Manifest next update: Sat 14 Jun 2025 14:00:44 +0000
Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: iUNQExzWejdDAQr+uakNcrnasVaqvtMw2q3lvPRnuOE=)
2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:c8:ac:35:79:cf:ce:fa:b2:cf:a6:b3:43:d6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Jun 13 14:00:44 2025 GMT
Not After : Jun 14 14:00:44 2025 GMT
Subject: CN=9c7b1d5174cdd719630b92cc2ffde6144a76095d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c5:00:da:65:6e:46:bc:ab:60:85:23:04:1a:
6a:0b:66:88:97:eb:4d:19:44:b8:dd:f1:e0:ac:0f:
28:95:67:96:ab:8d:5c:bd:c5:b3:d8:32:29:fc:ea:
27:c0:8d:9d:bc:df:04:e7:ef:9a:1c:e7:93:91:eb:
c2:a7:27:24:e0:f3:e5:76:7e:2e:a9:b0:36:f0:dd:
fe:64:7c:d6:d9:8d:86:0c:21:a3:89:17:e0:3f:df:
6a:d5:39:79:b7:22:4e:1f:23:b1:81:e6:a7:d2:84:
67:f5:24:be:f9:df:14:26:f4:40:07:a4:e2:aa:e9:
8e:17:10:6d:86:24:db:4c:99:6c:6d:7f:16:b6:a4:
14:44:64:6c:c4:99:dd:e0:ec:76:e5:aa:27:8a:a4:
e8:b1:08:34:31:0f:e4:d7:16:cc:f1:da:4e:a9:b1:
93:ab:c4:da:db:3e:81:cd:75:78:13:dc:24:8b:7f:
fa:a6:3d:5e:3b:49:bc:90:01:50:a6:d3:38:29:92:
d7:9d:89:e7:88:b5:26:6a:8e:f7:73:2f:81:d8:e1:
3b:4b:0b:cd:74:3f:82:27:57:7d:ec:99:63:23:27:
f5:52:1d:d6:40:03:18:c4:ed:61:3c:4d:8f:cc:2e:
64:0b:ea:74:4f:c8:ca:57:e6:f5:5f:4f:b1:e8:60:
03:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7B:1D:51:74:CD:D7:19:63:0B:92:CC:2F:FD:E6:14:4A:76:09:5D
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:70:78:2d:49:c6:f5:78:3f:10:0a:b4:5e:91:71:71:6e:1d:
62:dc:a0:a9:52:00:34:20:d2:df:1a:39:ea:47:8a:1e:d0:6b:
de:cc:6d:e2:31:70:d1:f1:79:40:85:38:35:79:14:2a:f1:e5:
b1:7e:c3:f1:ab:b3:75:81:bf:af:f8:86:c7:33:c0:a1:47:68:
dc:aa:b4:d0:70:00:3d:09:7e:5a:ab:ea:20:b0:ee:b2:0d:02:
f9:91:e6:2e:71:0a:ca:4b:5b:e5:1a:de:b2:a7:8b:f5:db:f4:
9a:99:6c:f3:60:f5:86:0b:7c:26:3d:62:b3:69:57:2b:d3:1e:
f6:5c:88:77:14:18:a3:23:48:81:53:71:90:81:57:2d:7f:3f:
b5:4a:bc:8f:21:0c:94:40:da:9d:8f:a6:68:e2:94:68:f1:23:
5e:75:ef:df:43:1d:54:6f:f0:af:9d:fd:6f:bf:02:0b:0c:84:
46:16:c0:69:a1:f8:2d:d2:d2:d7:5f:95:f8:ec:de:f9:eb:d7:
da:1d:f2:13:e8:f7:eb:f0:39:06:e2:d5:fd:5a:bc:19:9b:ba:
6a:ca:b1:c3:39:bc:28:6d:be:e4:d1:b9:60:f1:1a:24:e1:ce:
dc:dd:5c:be:df:b0:76:0c:af:10:17:62:7c:5d:b9:17:4c:31:
72:89:04:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:03:45 2025 by rpki-client