Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: zdljtOiMd6+BE4pXb42U0EBGsS/tOPvk+3BlweU8r4c=
Subject key identifier: C0:CE:A8:9D:FD:FD:02:28:49:3C:FA:71:85:61:8C:95:F6:38:26:24
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 019A71B87BE7762675D11C0839E64290507C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 0956
Signing time: Tue 11 Nov 2025 07:01:47 +0000
Manifest this update: Tue 11 Nov 2025 07:01:47 +0000
Manifest next update: Wed 12 Nov 2025 07:01:47 +0000
Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: I936FVPfvTgiq0pxlO5UTvsp5YgOyLXyHrzKKPoq3zU=)
2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:7b:e7:76:26:75:d1:1c:08:39:e6:42:90:50:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Nov 11 07:01:47 2025 GMT
Not After : Nov 12 07:01:47 2025 GMT
Subject: CN=c0cea89dfdfd0228493cfa7185618c95f6382624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:47:38:76:d0:9f:b3:f0:e8:89:ff:21:fb:27:
be:04:af:01:4a:12:13:9f:5c:cd:f2:18:92:5f:a5:
12:48:f7:13:c9:47:d3:29:24:a6:1b:4f:fc:5c:d6:
61:ee:85:6c:e7:ed:28:a0:0f:28:dd:ac:77:cc:49:
b6:c5:67:22:69:a8:e6:41:1c:31:29:71:cd:21:7f:
86:a1:da:b2:d7:71:1f:ad:19:52:af:df:0a:68:c5:
55:1a:10:9b:f7:85:70:77:01:b4:ba:30:a8:f2:ec:
6e:86:73:04:da:27:56:5a:6f:90:3c:b3:bb:1f:62:
b4:6f:fc:3a:13:e8:ce:f9:39:db:17:38:5d:40:f8:
63:bb:b3:bb:2d:49:25:e7:0a:7f:4d:16:25:98:66:
56:1f:b1:c0:28:32:ca:0c:f3:8d:96:1b:74:a6:2f:
39:8e:ae:b6:74:d7:68:1d:24:53:21:ec:36:ee:6d:
10:2d:68:e2:6c:53:27:5b:10:2b:bc:d8:d0:40:87:
20:0e:5c:96:be:34:7d:68:c1:6b:36:f1:93:2b:2e:
27:cd:6a:63:12:27:b7:59:b7:c5:44:ac:62:dc:8e:
75:f2:8b:aa:3c:77:47:d9:d7:30:b0:67:eb:03:d6:
a8:12:2d:93:8c:7d:4e:f1:5c:5a:6d:99:21:42:e2:
91:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:CE:A8:9D:FD:FD:02:28:49:3C:FA:71:85:61:8C:95:F6:38:26:24
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:66:57:c0:4b:5c:0e:6f:34:a1:ff:5e:9d:df:b3:5d:cb:b5:
28:fa:3a:61:fb:b9:9b:96:44:72:cd:5a:56:30:61:fc:aa:e0:
db:a2:52:6e:78:da:26:1b:b1:04:71:38:49:9a:3e:cc:33:c1:
f2:9f:bb:d7:5f:a8:03:3a:63:8c:be:0e:ca:2c:8d:2d:6e:b5:
79:3d:4d:7b:d5:7a:cf:ee:c7:ab:b1:97:8d:d5:21:21:75:d4:
d6:37:67:2f:2c:da:61:56:0a:52:7e:83:e1:c8:23:91:b5:2a:
a3:9b:ec:cb:3d:5e:40:99:ed:de:de:06:ec:cc:77:ff:ae:2a:
8d:92:8b:c5:ae:b8:2d:d5:55:72:5f:af:20:d4:d9:95:8d:af:
55:04:f0:06:1d:47:1f:f0:67:58:56:92:a7:15:1b:67:3f:91:
4b:e0:7a:cb:19:e2:c7:08:00:29:54:83:70:85:ac:d8:1b:9f:
f6:8c:1d:1e:2f:1a:2f:aa:da:c0:e8:2e:04:dd:9f:2b:3e:72:
88:36:bf:60:0f:60:2c:f1:19:f0:08:dc:d1:df:6c:c4:3f:89:
b2:3e:1d:d0:8a:45:05:29:9d:f0:3b:61:0e:44:a8:ec:7d:75:
40:3d:d8:be:10:af:e2:13:fe:36:56:e5:3b:1c:80:27:1e:40:
aa:11:c6:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:27:10 2025 by rpki-client