Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: yBD2KdxuxKhRG7pt8dVhtlgRAVHoMnJnefSLMoMvxHI=
Subject key identifier: 82:20:B3:69:B5:F0:42:1A:72:66:88:FF:10:CE:7A:11:3E:C3:E2:25
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 01958C6051F4D7E64C5F661B316EBC5D644E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 06CD
Signing time: Wed 12 Mar 2025 22:01:17 +0000
Manifest this update: Wed 12 Mar 2025 22:01:17 +0000
Manifest next update: Thu 13 Mar 2025 22:01:17 +0000
Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: ugDRoMNBB8tytytks/SxY+whLusCxp2NW/Ik8puw88A=)
2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:51:f4:d7:e6:4c:5f:66:1b:31:6e:bc:5d:64:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Mar 12 22:01:17 2025 GMT
Not After : Mar 13 22:01:17 2025 GMT
Subject: CN=8220b369b5f0421a726688ff10ce7a113ec3e225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c0:c4:cc:95:8b:08:95:5d:51:60:47:df:cd:
d6:a1:7d:c0:27:3e:17:a7:93:1d:22:52:b7:8b:f4:
a2:b4:16:76:c3:be:9f:be:3b:56:c6:d0:7f:d6:ee:
87:43:06:07:d4:5d:aa:c7:e4:67:9d:a6:a7:15:68:
ba:66:35:ec:02:0e:c9:f9:6a:62:47:11:a1:57:f4:
f3:70:d6:3e:37:76:6d:98:61:e1:b1:a2:a5:2c:08:
44:a8:32:75:21:97:a1:6a:28:e3:34:13:2e:27:12:
99:86:f0:0d:92:27:c2:85:a2:e1:cc:a9:d2:73:da:
6f:a8:d3:f0:f6:50:43:92:ff:52:80:b4:fc:1b:8f:
62:1b:6e:46:33:bf:7b:a0:e0:18:dc:23:69:5d:67:
4a:d5:b1:e3:7c:3a:18:35:fb:7e:62:68:66:16:6d:
6d:37:d0:c5:4e:39:5e:26:0f:bb:ca:88:03:22:9a:
a8:38:3e:98:7c:b3:d6:14:67:65:3a:30:cc:60:66:
e8:fe:26:2e:ea:65:de:59:32:e5:8b:bc:3c:15:fe:
01:9f:91:99:7b:bf:26:64:35:35:0a:6f:97:3e:87:
81:a8:37:73:cc:1e:c9:8e:d1:1c:b4:4a:67:75:33:
05:1a:0e:8a:ef:8c:9c:c7:e6:d1:9c:74:de:8f:12:
26:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:20:B3:69:B5:F0:42:1A:72:66:88:FF:10:CE:7A:11:3E:C3:E2:25
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:1c:12:d2:84:46:bc:d8:f5:c4:ca:b3:06:82:d0:ad:3e:91:
c9:e8:b1:7b:8e:0d:7b:1a:cb:bb:66:4d:17:33:f4:e0:24:cc:
cf:a3:26:9f:fc:7d:45:98:9c:2d:8a:2b:48:b5:4b:7e:7e:b6:
54:47:ec:e8:b7:7d:ad:0b:d2:5f:14:a7:4b:30:69:16:8f:e9:
4e:e1:72:7b:0f:8c:71:c4:5f:5c:32:74:83:d0:13:d7:1c:11:
db:33:66:9b:f1:00:1e:b6:8c:71:37:cd:f6:e1:69:ca:95:04:
2f:4b:4d:81:2c:7f:e6:2c:21:91:56:a8:ea:25:50:2b:da:a5:
e7:49:62:44:8b:85:ff:ae:3d:57:09:7b:59:21:d3:f3:d6:28:
91:fb:4e:0e:c4:0c:fe:8d:7b:23:f4:01:68:12:c9:99:3a:8f:
3b:94:c8:bf:63:bf:26:25:b6:01:78:83:73:1e:57:0a:c3:e2:
16:02:ed:d8:a1:5b:87:bf:91:67:a7:bc:e4:ef:c6:2e:4b:20:
30:de:96:ea:d6:08:75:c6:99:8c:84:72:dd:1a:9d:d0:a4:19:
46:35:17:c9:d1:b1:e1:c9:8d:ec:1d:d4:5a:0f:57:e6:38:a0:
f4:ac:1b:52:90:d4:f4:f7:db:89:d7:00:26:41:9d:9b:3e:be:
2e:c8:4f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:55 2025 by rpki-client