Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: FKrIYYventqEczUJiwIRbSww29y+l6Nujrvs4eH3QeY=
Subject key identifier: EE:BB:81:89:34:F6:9D:90:34:BF:3F:D8:97:0B:EF:2E:C7:78:DF:7C
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 019763CCC5A0A4DBEF47CE13712DAD186B86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 050D
Signing time: Thu 12 Jun 2025 11:00:53 +0000
Manifest this update: Thu 12 Jun 2025 11:00:53 +0000
Manifest next update: Fri 13 Jun 2025 11:00:53 +0000
Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: rCurX6YdmBc7C8Kx76T1zZNuuVRZwFYozqBUOHWDoMg=)
2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:cc:c5:a0:a4:db:ef:47:ce:13:71:2d:ad:18:6b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Jun 12 11:00:53 2025 GMT
Not After : Jun 13 11:00:53 2025 GMT
Subject: CN=eebb818934f69d9034bf3fd8970bef2ec778df7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0a:fc:40:53:4f:70:c3:42:64:0c:88:4b:71:
e8:96:1b:27:f4:ad:ca:9e:a2:47:a6:e1:56:61:71:
08:82:68:86:34:02:26:a7:d4:af:bc:f1:0d:9f:af:
9a:1f:79:a1:ef:1c:2b:5d:df:cc:33:83:e9:70:cb:
13:19:cd:ec:c4:f5:ce:6c:e0:70:70:85:64:30:40:
7d:8c:bf:30:88:c3:b1:6c:06:2a:55:c7:a7:42:1e:
1b:72:cc:b8:23:3c:d0:5f:20:ea:1c:5b:ca:f3:12:
5a:c0:d0:6b:c1:52:ba:96:54:5e:66:0b:9c:fd:00:
6a:db:7e:99:28:43:0c:20:49:57:cf:ad:85:de:80:
cd:a3:87:f2:72:8b:45:3a:30:5e:86:9e:d5:4c:de:
f1:b6:9e:50:b1:03:46:d0:73:03:bc:c3:ba:1a:54:
10:08:a5:49:86:bb:33:50:29:6c:42:2c:ae:8d:34:
18:7f:1d:29:19:3c:ed:03:58:c1:1c:1b:19:3e:16:
9c:2c:e9:9a:1f:97:d1:cf:82:72:dc:93:25:06:c0:
cd:05:14:9c:e9:b3:b6:65:5a:58:8d:2d:40:c4:0e:
18:59:8c:2e:a8:d0:b9:df:ba:9a:fd:eb:44:0d:22:
66:14:57:31:fa:26:83:04:4e:4f:86:d6:e0:a1:5c:
92:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:BB:81:89:34:F6:9D:90:34:BF:3F:D8:97:0B:EF:2E:C7:78:DF:7C
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:69:dd:55:f1:b5:f8:78:bf:8f:6f:c3:37:f9:ac:03:59:39:
de:fa:c0:6a:9c:0c:45:e7:fd:82:61:76:ad:a6:4b:83:e9:11:
b5:bc:3a:ae:67:3b:68:d0:cc:5a:12:9c:9d:5d:41:26:03:81:
f1:a2:d9:5b:f0:02:b0:02:2f:44:c9:e1:e2:1e:0e:8d:81:dc:
49:50:66:2a:f8:19:42:00:66:8e:00:e6:ef:86:ba:36:47:f0:
ab:0e:d5:00:b1:74:42:2a:db:8d:26:28:c8:10:51:49:bb:1d:
a7:93:6d:35:a9:10:66:f0:4e:73:3f:17:00:51:63:7c:22:9e:
bc:60:2d:30:2d:d8:47:3e:17:0b:fc:8d:75:ed:24:8b:ea:db:
1a:eb:5e:33:4b:57:93:53:d4:75:65:7e:c3:7e:ed:15:e6:39:
77:66:98:8e:a8:af:a3:49:44:81:d3:42:ac:b2:ad:d1:18:08:
83:02:09:71:a3:a9:55:2c:4c:73:77:a3:1a:2a:bc:80:0d:f8:
ca:0d:29:86:24:a5:a7:29:83:9c:66:ac:7e:9a:2a:e5:e3:6c:
b4:0e:c7:61:89:6b:c2:35:ac:c8:11:3c:11:19:74:19:b0:80:
0a:63:58:04:d4:a6:27:37:07:52:c0:8a:5a:cc:d0:03:54:82:
9c:21:52:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 14:48:38 2025 by rpki-client