
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: ABC1s/8idiwCR8fvsco7E010MySzMYj8NxDivnu7v6c=
Subject key identifier: CF:8A:D1:0D:24:91:99:8A:08:02:2C:A6:9F:10:52:A1:DB:FE:50:E4
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 01975C1364AA46F044BB3340DD5A22434AF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 0509
Signing time: Tue 10 Jun 2025 23:01:03 +0000
Manifest this update: Tue 10 Jun 2025 23:01:03 +0000
Manifest next update: Wed 11 Jun 2025 23:01:03 +0000
Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: TwHKiuI66RCRTTF4PeBsv5+Glr5e2BZpqyYjEGBEPDM=)
2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:13:64:aa:46:f0:44:bb:33:40:dd:5a:22:43:4a:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Jun 10 23:01:03 2025 GMT
Not After : Jun 11 23:01:03 2025 GMT
Subject: CN=cf8ad10d2491998a08022ca69f1052a1dbfe50e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bd:07:96:30:34:16:27:24:5a:9f:14:63:cc:
ab:7b:b4:70:3e:45:ab:b0:53:49:0f:0f:00:d6:bc:
0e:10:53:14:8a:d0:9f:80:6c:3f:e2:14:4d:e3:df:
10:e8:12:b7:b9:51:20:a4:59:cc:b1:8d:26:60:54:
6a:1f:f6:a1:8a:8a:9b:26:b8:d5:b9:5d:7a:79:20:
49:7b:73:1c:6f:31:1d:14:c3:23:43:a2:eb:ac:63:
20:ce:28:62:a6:eb:fa:43:0e:eb:41:dd:31:a6:72:
3b:6e:d9:f7:c6:5b:79:8c:bc:95:d9:52:6a:5f:85:
0f:70:df:7e:7e:8c:04:09:b7:35:bc:e6:d6:a7:5f:
fb:e0:75:c0:ec:17:a7:2b:e0:1c:ea:e5:8b:14:b6:
c8:1a:a9:f7:a8:ec:81:3e:68:0c:82:4f:2b:5c:96:
d4:42:32:2a:dc:f8:bd:8a:a9:81:f4:03:f5:49:4f:
6f:19:c1:b1:1a:a9:e5:d1:11:8c:05:98:79:25:00:
fa:3b:e8:4d:02:9d:16:2e:e6:71:49:b5:11:08:ab:
3b:42:86:1f:59:9a:33:13:92:4d:be:40:91:e9:de:
2f:ce:c7:94:ac:d8:f5:24:5a:77:b1:9f:2c:95:fc:
34:0f:61:5a:70:86:c8:22:45:2f:3b:1b:26:49:8b:
57:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:8A:D1:0D:24:91:99:8A:08:02:2C:A6:9F:10:52:A1:DB:FE:50:E4
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:07:68:e1:0e:24:66:70:35:e5:00:85:2a:74:54:f4:16:78:
57:fd:f2:b7:24:e4:26:ab:96:e4:05:1d:89:9a:16:14:d9:bb:
33:23:0d:8b:d3:60:cf:c0:3a:56:d4:cc:6e:da:bd:b7:93:99:
b6:5f:82:c0:b3:7d:7d:4e:c1:e4:44:2f:55:bd:5c:7f:27:c2:
9d:0e:9c:5b:00:ab:22:d7:74:d1:7d:2b:c1:f2:a2:33:85:90:
1b:ca:a2:6d:3d:d8:54:14:5f:0b:77:4f:d1:5e:bc:7f:41:f7:
23:0c:1c:2b:0b:e8:be:29:98:16:0f:ca:d9:1b:74:78:8a:a0:
66:e0:4b:c9:35:da:d3:41:b4:13:64:f5:b9:6a:22:33:86:0f:
9f:12:7e:06:a1:64:09:c7:c5:91:d1:e5:20:77:a5:8e:f1:87:
d0:c6:64:ed:2b:83:5e:d1:8d:6b:9f:ab:5e:8e:aa:5c:53:9c:
22:fe:a9:39:95:35:15:dd:e5:57:d0:a7:ed:fd:bc:10:5d:d2:
e7:26:76:25:c0:c9:05:a6:5a:1b:5d:59:21:13:59:c7:cc:d5:
bd:00:ef:df:37:16:81:b0:79:29:f6:ac:32:b0:ed:68:91:a4:
8b:ca:ab:2e:41:15:0c:21:0c:cb:fd:b4:76:3e:e5:ab:71:e1:
37:42:8b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:22:08 2025 by rpki-client