Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: R+kreA3GCkQnjPg+g9Je1mQPvSNnjQ5UJ/j/Vp0Uod8=
Subject key identifier: 7E:48:17:F5:6D:BC:BB:19:1B:9B:66:7C:5E:58:EE:FF:18:63:2F:A8
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 0196515AF392C00E1A14301F631B0B0A924A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 0733
Signing time: Sun 20 Apr 2025 04:00:37 +0000
Manifest this update: Sun 20 Apr 2025 04:00:37 +0000
Manifest next update: Mon 21 Apr 2025 04:00:37 +0000
Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: 8hlIkxh0v9RqiNwjYmOpgvWh5MrIFf3v3ZkzdZjKrmc=)
2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5a:f3:92:c0:0e:1a:14:30:1f:63:1b:0b:0a:92:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Apr 20 04:00:37 2025 GMT
Not After : Apr 21 04:00:37 2025 GMT
Subject: CN=7e4817f56dbcbb191b9b667c5e58eeff18632fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cf:02:32:7f:1d:56:50:d2:72:5f:61:74:f0:
e3:e4:60:9b:e8:0d:e3:72:8d:da:49:e9:fa:ca:10:
7e:8f:5a:04:29:ba:06:eb:b8:26:69:bf:76:95:f2:
7f:f2:9d:ed:83:28:be:05:34:ad:14:30:44:72:7d:
24:b9:08:ee:c1:ef:94:60:3c:ba:39:a5:59:f1:8d:
cc:b1:3f:e7:c1:5a:03:f1:62:86:e0:70:ce:a0:a4:
30:82:62:90:25:cf:ae:56:05:a5:5c:5d:57:ba:15:
9a:47:b0:4c:b8:ca:41:84:99:37:c9:a8:3c:a2:1f:
b8:a2:32:ea:98:46:f5:1f:89:64:78:69:0a:c6:a9:
63:6f:5a:77:6a:fe:c0:9b:ea:df:c2:fc:c7:17:ec:
09:3f:2c:30:b3:00:e2:01:c2:d7:4a:8e:e0:04:c1:
b9:22:6e:1c:8a:e9:ec:c3:c0:6a:2a:7a:8d:e4:89:
20:57:0b:42:a1:7a:75:aa:ba:97:5a:e4:ce:2a:f9:
ff:40:1e:aa:aa:b3:35:33:5b:75:af:54:51:a2:e0:
ab:90:a2:aa:75:1e:fb:da:f9:85:b7:5e:69:ac:14:
cc:61:d0:fd:34:5c:15:e6:28:25:87:47:3d:98:c8:
41:87:41:58:53:38:a1:6f:ec:38:b8:f3:b6:da:16:
2f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:48:17:F5:6D:BC:BB:19:1B:9B:66:7C:5E:58:EE:FF:18:63:2F:A8
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:37:64:52:7a:58:a4:70:ca:dd:d2:56:82:12:d6:ac:59:e6:
f2:a2:6a:bd:a5:62:21:fe:7a:29:2f:84:34:3a:09:41:51:8d:
46:f9:fe:9f:f8:10:9f:f4:9e:5d:e1:ce:39:43:8e:70:28:d5:
90:5b:7f:34:6f:a1:75:7c:91:e9:6c:7e:aa:11:e7:8a:90:6e:
0f:7b:ab:ec:fd:a8:8e:2a:20:59:cb:48:9e:16:94:4d:08:c1:
d7:34:d1:09:68:ec:d5:86:68:50:d9:3f:9a:ec:09:60:56:5e:
2f:cf:38:a3:ba:76:0e:33:af:4e:29:a5:75:91:8b:aa:bc:2d:
91:40:11:93:7b:c2:a6:8c:61:84:e5:76:85:61:db:bd:1a:66:
1f:ac:ad:7b:f3:ea:d2:31:f3:03:e7:c0:56:cc:26:8c:aa:ae:
d1:e1:ee:9a:c5:68:59:97:17:20:44:40:04:37:c6:fb:d7:b4:
a2:49:bb:36:ad:97:df:2c:8a:e9:28:03:70:64:f9:43:03:8d:
83:f9:76:df:a4:e9:1a:b1:5f:fd:b7:22:2c:01:98:dd:72:d3:
21:5b:c5:d7:9b:56:cc:85:31:1c:29:69:bb:de:a1:cb:b0:84:
3e:cb:41:72:24:c1:67:15:6c:c3:4c:1d:e1:28:59:17:77:77:
f2:d1:c5:46
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZRWvOSwA4aFDAfYxsLCpJKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYzQ4ZTFiYjY3MmNkYTY4NDY0MDBlOGJmOGQ2ZDY5Njgz
NWQ3YmYwHhcNMjUwNDIwMDQwMDM3WhcNMjUwNDIxMDQwMDM3WjAzMTEwLwYDVQQD
Eyg3ZTQ4MTdmNTZkYmNiYjE5MWI5YjY2N2M1ZTU4ZWVmZjE4NjMyZmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzM8CMn8dVlDScl9hdPDj5GCb6A3j
co3aSen6yhB+j1oEKboG67gmab92lfJ/8p3tgyi+BTStFDBEcn0kuQjuwe+UYDy6
OaVZ8Y3MsT/nwVoD8WKG4HDOoKQwgmKQJc+uVgWlXF1XuhWaR7BMuMpBhJk3yag8
oh+4ojLqmEb1H4lkeGkKxqljb1p3av7Am+rfwvzHF+wJPywwswDiAcLXSo7gBMG5
Im4ciunsw8BqKnqN5IkgVwtCoXp1qrqXWuTOKvn/QB6qqrM1M1t1r1RRouCrkKKq
dR772vmFt15prBTMYdD9NFwV5iglh0c9mMhBh0FYUzihb+w4uPO22hYvDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH5IF/VtvLsZG5tmfF5Y7v8YYy+oMB8GA1UdIwQY
MBaAFFLEjhu2cs2mhGQA6L+NbWloNde/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzkt
MThlY2UzNjgyNjZmLzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzktMThlY2UzNjgyNjZm
LzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEzdkUnpY
pHDK3dJWghLWrFnm8qJqvaViIf56KS+ENDoJQVGNRvn+n/gQn/SeXeHOOUOOcCjV
kFt/NG+hdXyR6Wx+qhHnipBuD3ur7P2ojiogWctInhaUTQjB1zTRCWjs1YZoUNk/
muwJYFZeL884o7p2DjOvTimldZGLqrwtkUARk3vCpoxhhOV2hWHbvRpmH6yte/Pq
0jHzA+fAVswmjKqu0eHumsVoWZcXIERABDfG+9e0okm7Nq2X3yyK6SgDcGT5QwON
g/l236TpGrFf/bciLAGY3XLTIVvF15tWzIUxHClpu96hy7CEPstBciTBZxVsw0wd
4ShZF3d38tHFRg==
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:16:53 2025 by rpki-client