Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: YjSeks2JKsJd45spN4gajAHfHZ1+Gzw4UFlygJ4sHew=
Subject key identifier: 44:CF:AB:B5:AA:DE:B1:21:87:14:11:9A:1E:84:E4:6D:98:57:D6:9E
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 019921B10B9DB07E44CABF3B9A9BC1C4BEF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 08A8
Signing time: Sun 07 Sep 2025 01:01:14 +0000
Manifest this update: Sun 07 Sep 2025 01:01:14 +0000
Manifest next update: Mon 08 Sep 2025 01:01:14 +0000
Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: nBbvpVoCZOxTLyQgBffSDUaW0leoRCbBC6Q6OHU8Mjk=)
2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:0b:9d:b0:7e:44:ca:bf:3b:9a:9b:c1:c4:be:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Sep 7 01:01:14 2025 GMT
Not After : Sep 8 01:01:14 2025 GMT
Subject: CN=44cfabb5aadeb1218714119a1e84e46d9857d69e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f7:66:b1:51:45:4a:b2:c7:a0:72:06:c0:de:
fe:d6:71:47:57:6f:31:52:01:51:31:5e:52:83:77:
68:1b:81:51:84:0f:86:a9:1f:b4:18:78:1c:f5:69:
3f:6b:0f:55:bb:c7:b5:fd:c8:bb:6a:1c:fc:0f:37:
8c:dc:cf:02:ef:dc:91:b8:72:65:b7:3d:05:9b:bf:
1f:21:c1:c2:94:b0:89:a2:6d:1c:6a:e4:b8:6d:cf:
1b:6b:3c:e7:83:88:fb:30:96:95:28:f4:eb:14:7a:
c9:d9:75:32:29:43:7a:c1:b9:45:13:c2:e0:d8:5e:
a4:14:56:69:a8:4a:01:2f:a3:ff:fc:b5:75:a0:e3:
88:7b:77:e9:ee:a6:3e:50:f6:f3:b0:41:44:d1:27:
f5:fe:1c:64:30:81:da:27:ff:87:a9:89:0f:2e:9d:
c8:16:ef:eb:7f:33:ca:a1:3c:97:f0:e3:b3:66:b4:
69:30:92:dc:70:20:9b:06:ec:7f:b6:af:d3:e9:40:
5d:ba:57:bc:b1:91:af:af:b7:af:d6:64:7d:18:4c:
e2:34:17:6f:4b:e4:f4:9d:fd:b0:f5:01:0c:cd:ca:
57:2d:4c:59:0f:02:a0:57:64:55:e9:23:80:e0:db:
9c:c9:d0:44:30:87:f3:59:97:97:23:c4:66:b5:42:
9c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:CF:AB:B5:AA:DE:B1:21:87:14:11:9A:1E:84:E4:6D:98:57:D6:9E
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:7e:93:af:34:af:7b:23:8a:d0:53:be:73:21:9e:03:16:d8:
e1:5d:26:5e:62:a8:fd:f9:cb:79:74:a2:bc:e1:9c:a8:89:d8:
c7:c3:ce:05:4e:8a:93:0a:9f:16:66:36:d9:c9:57:f7:0b:03:
98:ba:de:f8:3e:b3:e4:18:67:4a:a7:77:69:f0:80:a2:e8:5e:
67:31:2d:b8:22:c6:92:43:21:ec:ab:a8:17:46:a7:14:98:c7:
b8:89:03:54:e8:37:bb:06:38:4e:78:73:ba:91:4f:00:7b:b9:
20:b7:fe:72:00:c2:d6:0c:db:49:55:0c:22:a8:71:c8:66:b2:
af:ae:1b:87:6b:8f:b7:ba:57:b6:14:af:f9:f0:59:9a:2f:ed:
5e:8a:64:87:4e:50:a4:d3:3d:1f:99:68:43:ab:bd:c0:97:d1:
2c:61:2d:e7:a7:d4:71:1d:22:75:98:0c:1e:8d:97:97:80:10:
b6:47:4c:33:e6:e9:23:60:0c:44:6d:3f:86:2f:47:9c:96:48:
3f:c8:e2:70:85:76:5c:45:70:aa:33:d1:3c:24:a4:01:3f:f4:
2a:f3:94:61:d4:e8:80:ab:51:b2:d9:d5:91:40:77:5b:6a:b4:
eb:ae:76:e3:81:a1:ef:d0:bb:15:12:98:f6:3c:86:00:d7:56:
42:05:d7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:16:13 2025 by rpki-client