Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: 8Qy1KnIygKPZYGYLC/zfzvUL9xKzP0i8vI9V2gtvypU=
Subject key identifier: 32:F7:59:B3:BC:76:59:A9:D8:A0:F0:CB:5F:BB:8F:37:E6:C8:02:3C
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 019640305E690FD07D5BFCB6F3E703262669
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 0476
Signing time: Wed 16 Apr 2025 20:00:33 +0000
Manifest this update: Wed 16 Apr 2025 20:00:33 +0000
Manifest next update: Thu 17 Apr 2025 20:00:33 +0000
Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: y2Ld3LtaV5SowCUxFFTc54OltkvS0WXiDt/2+SxoqEI=)
2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:30:5e:69:0f:d0:7d:5b:fc:b6:f3:e7:03:26:26:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Apr 16 20:00:33 2025 GMT
Not After : Apr 17 20:00:33 2025 GMT
Subject: CN=32f759b3bc7659a9d8a0f0cb5fbb8f37e6c8023c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:1d:d2:45:c8:d6:29:25:f6:9e:62:2c:a5:
19:26:ec:3a:e6:53:f5:df:68:e0:e9:72:89:55:08:
4c:20:e0:27:d7:f1:9f:4c:65:e9:f2:a8:48:9f:0e:
fe:bd:69:e4:b7:c4:fa:4d:10:2c:b7:5d:ab:98:70:
ee:a5:de:e6:74:50:c1:f0:bd:a7:71:91:b2:0d:af:
82:8b:50:f1:ec:e9:16:32:e1:cf:ea:4d:2c:a0:22:
ad:22:89:c4:95:31:16:59:2d:40:ef:f8:52:ff:44:
04:c4:36:b5:cd:14:1d:c6:91:6f:6a:c6:d7:01:d7:
27:da:29:a2:5d:4a:b7:c6:fd:38:b8:14:71:a5:e5:
f7:b9:5d:cf:59:5b:3e:c7:b7:f4:b3:5b:3f:21:41:
21:40:89:b9:65:eb:74:1b:fb:74:48:29:76:3e:77:
b1:f1:69:43:27:92:f7:80:25:d6:2a:14:1a:b2:50:
3d:af:04:e8:9f:8b:b5:c2:1d:f2:f8:99:fb:d2:c1:
d1:f0:23:57:25:a1:4f:2b:35:fb:1f:65:a2:83:fe:
a2:a9:5c:f9:98:a8:b4:61:24:b8:63:1a:84:ba:fd:
ff:17:0b:32:57:16:2a:74:7d:a3:4d:5f:0f:e8:24:
21:3d:cd:04:4e:1c:8e:f8:a9:72:12:2f:b8:ec:85:
72:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F7:59:B3:BC:76:59:A9:D8:A0:F0:CB:5F:BB:8F:37:E6:C8:02:3C
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:a5:d5:a4:68:5d:b1:49:40:22:64:b6:d9:92:d5:02:f4:ea:
14:da:3b:a7:50:18:0e:16:70:b6:de:50:85:ba:df:bd:bb:8c:
86:1d:bb:cf:2d:92:70:1b:e3:72:c3:77:9a:01:9e:9c:9a:c1:
5f:1c:eb:a9:82:ab:9c:d5:3c:5a:20:c3:80:8e:f8:62:7d:9c:
f5:c4:4e:d3:e9:ad:00:37:d7:64:e8:38:2b:5b:90:cf:a6:ce:
d3:7f:ea:f6:82:1f:b6:e4:9f:30:5f:df:11:f2:3a:f3:a1:a1:
4f:f4:a7:16:37:bd:34:fe:5b:5b:af:8a:13:aa:0b:e8:6a:6b:
81:59:2a:86:2c:7d:88:60:7a:73:24:cb:47:82:3f:65:c7:da:
1f:06:8a:89:30:9b:7a:73:c8:f6:6c:28:42:42:15:04:e7:12:
26:8d:66:52:8f:0a:4d:0d:d5:4c:f7:8a:40:59:e6:d1:d4:e1:
24:84:de:f3:3f:cc:84:b4:f5:a3:39:28:9c:43:e4:6a:d3:5d:
4a:68:11:83:0e:e2:37:22:42:0d:bc:19:46:76:ee:de:ed:b5:
b0:b5:42:91:ab:62:e2:e9:cc:86:ef:82:2e:3a:58:69:68:09:
3b:d0:28:68:bd:e8:d6:9f:cf:2c:43:c6:26:f9:89:81:09:fc:
3e:ea:a3:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:43:19 2025 by rpki-client