Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: nOPC2ZrytVi0VZWAWZ2Eyedc/inHej39RCYmBusc8IY=
Subject key identifier: C0:75:EC:74:43:B2:AB:96:CA:29:7D:EC:A4:7F:C4:9E:60:68:4F:BC
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 01976D74741545A62CC4E5E8A1DA7DAAEF3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 0512
Signing time: Sat 14 Jun 2025 08:00:37 +0000
Manifest this update: Sat 14 Jun 2025 08:00:37 +0000
Manifest next update: Sun 15 Jun 2025 08:00:37 +0000
Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: kgf8kXCJngWha4XoZc1kSEkWZEv2p3H3Sv3ImmpSXZg=)
2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 08:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:74:74:15:45:a6:2c:c4:e5:e8:a1:da:7d:aa:ef:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Jun 14 08:00:37 2025 GMT
Not After : Jun 15 08:00:37 2025 GMT
Subject: CN=c075ec7443b2ab96ca297deca47fc49e60684fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:f2:08:6e:5e:73:c6:bf:43:2a:02:4c:37:d6:
ff:5b:28:6f:3a:44:a2:4d:be:bb:91:6f:46:85:50:
dd:ce:cd:6d:5a:8c:95:7b:a2:ec:d4:e6:6b:81:75:
71:c3:d1:ee:41:e9:28:47:7d:8a:bd:e1:2d:79:70:
bd:cd:c6:10:94:39:05:21:7b:30:4c:c4:ae:43:64:
52:98:87:8e:7f:50:1f:c9:13:ee:4e:98:52:ea:67:
62:dd:b3:40:39:44:10:95:12:5c:15:74:d3:e0:d7:
76:3d:41:bf:9f:e5:71:ca:ec:45:24:02:24:89:6d:
a7:a6:3c:79:8c:b7:b2:41:c4:39:a5:10:fb:40:15:
a6:72:45:7b:f3:eb:f5:31:c1:d5:39:77:25:88:4d:
91:17:e1:06:8a:0b:41:ed:74:66:ca:f6:28:25:f4:
7c:75:4b:9a:2b:a8:95:88:d3:ca:0b:1a:5b:d1:c3:
fc:e2:bc:60:8c:33:00:77:ee:33:99:53:47:61:20:
7b:9a:e5:3c:78:75:02:e2:e5:94:fe:71:f8:0b:79:
a7:77:7a:a0:36:1a:d9:e3:63:f9:a4:c0:e5:ef:c0:
40:94:59:3f:aa:2d:54:8c:72:86:69:c5:d9:6c:fd:
64:4f:38:d3:7a:9c:06:08:88:9f:76:7a:92:5a:25:
c9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:75:EC:74:43:B2:AB:96:CA:29:7D:EC:A4:7F:C4:9E:60:68:4F:BC
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:4d:ec:28:c5:c0:bb:b8:1f:bc:d8:70:bb:7c:8d:59:8f:13:
05:cc:e3:9b:76:1d:cb:15:11:17:e1:e1:c0:71:81:42:02:46:
b7:ee:bf:e9:8b:4d:c6:46:05:25:c0:87:7c:ec:73:0a:67:ff:
1e:79:8a:d6:11:81:6b:5a:f2:80:f3:13:e1:9f:11:3b:69:72:
dc:c7:d6:cc:7c:dd:1f:a9:62:25:c4:82:19:3b:c9:4e:cc:1b:
32:02:08:32:85:17:59:7b:cb:02:77:ba:4e:d1:c0:e9:74:04:
7f:c3:ca:53:64:53:2e:e5:df:b5:77:87:14:0c:db:6e:79:8c:
eb:b1:8c:c9:cd:cc:44:2e:de:24:c9:80:38:6f:bc:2d:d1:8d:
21:0b:d0:1c:54:dd:87:fb:d4:37:03:65:31:42:10:8e:c7:40:
35:df:de:c0:06:97:4a:18:54:89:db:52:03:24:15:45:8e:1c:
7c:be:e9:61:54:a5:36:1e:3c:40:be:6f:19:79:89:24:39:6a:
67:a7:6c:2a:81:87:17:51:c6:e4:40:f1:e8:5c:e3:11:1f:71:
68:0e:c3:5e:67:fc:6a:0a:20:76:41:10:b4:10:a0:2c:99:84:
75:57:c9:de:a1:88:82:c8:53:3e:9f:38:e8:fa:4c:44:cc:82:
90:6f:45:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 14:29:54 2025 by rpki-client