Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: pm6cdZ9j51Kk2LIHRWkizd6wwtvQagg9MnmP7+PWY8A=
Subject key identifier: B0:F4:19:24:DD:A4:EA:E4:04:EA:E0:A8:62:8C:24:3F:24:E8:21:4A
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 0197488C57487D77DD9A74F7073F5BD7183F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 07B3
Signing time: Sat 07 Jun 2025 04:00:46 +0000
Manifest this update: Sat 07 Jun 2025 04:00:46 +0000
Manifest next update: Sun 08 Jun 2025 04:00:46 +0000
Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: 8cMd1BdrvCkSxyl5YSh6yqF0+34glOFV86p16Ipqkss=)
2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:57:48:7d:77:dd:9a:74:f7:07:3f:5b:d7:18:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Jun 7 04:00:46 2025 GMT
Not After : Jun 8 04:00:46 2025 GMT
Subject: CN=b0f41924dda4eae404eae0a8628c243f24e8214a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:59:09:d8:b4:a6:83:c4:f3:eb:b1:e5:63:1e:
97:65:3c:50:aa:ac:7f:34:29:4d:3a:45:75:c4:31:
71:f3:f4:20:b9:c0:89:63:a9:9c:a3:33:c6:d3:21:
5a:66:b0:00:00:35:e7:cd:28:9e:20:80:68:f4:cd:
97:b2:b1:d5:30:b1:e0:e1:64:84:27:aa:69:af:83:
a4:00:d2:7a:44:c6:a2:5d:2b:70:dd:b1:47:cb:e1:
79:09:ff:53:8b:fa:6d:72:18:fc:bf:15:91:ba:ec:
66:5c:a3:59:e5:d3:33:76:f8:cd:19:82:5b:10:0a:
6f:75:bd:48:d9:b0:8f:86:43:69:b6:a5:2a:13:7a:
25:5a:e2:19:e2:bf:99:47:c1:ec:ba:b5:30:ec:2e:
da:0e:fa:fe:84:4d:06:74:75:c7:28:d0:24:f5:11:
ef:86:f3:df:c8:a7:cc:d1:ef:2b:c6:17:3d:13:6b:
88:b6:e1:40:c8:12:b6:53:3c:43:76:08:4f:a7:7f:
f1:84:5f:ea:ab:8a:3a:cc:ed:42:06:cc:3b:d3:e3:
7d:7b:56:40:35:c9:2f:f2:e4:6f:f2:b3:71:55:e1:
2e:ec:f9:73:b4:21:de:e2:d5:1c:f9:ec:03:70:d2:
c1:aa:16:ec:d0:15:e3:11:85:68:6b:0e:a8:75:f0:
11:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F4:19:24:DD:A4:EA:E4:04:EA:E0:A8:62:8C:24:3F:24:E8:21:4A
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:8e:7b:1f:10:82:cd:9d:68:dc:cb:31:cb:19:6d:5c:7a:d0:
be:b1:38:4f:32:ab:70:58:0e:d6:08:a6:42:fd:4c:6c:1a:8a:
b4:75:ca:cc:02:9e:60:a5:a5:95:bd:ee:00:b9:06:46:d0:73:
c7:36:5d:22:9d:ea:e9:ab:00:96:4e:dd:c7:ee:ce:e5:bf:61:
8c:58:ba:46:c7:8d:84:4e:2f:2b:09:c7:5d:37:bb:4d:93:b4:
ff:07:18:ee:46:6b:5b:71:0f:c6:ac:7c:26:f5:e6:c3:39:0b:
61:c4:23:ee:2c:ba:6e:de:77:02:12:28:c5:db:e8:1e:63:ea:
7e:e1:9a:5d:2a:ba:05:f7:10:c8:54:b0:77:00:ec:f0:c3:86:
32:d2:f4:69:c1:30:6e:f0:65:47:bb:d7:65:e8:9c:0a:61:68:
b1:b6:a3:bd:80:98:f8:e7:0b:a7:1c:f3:05:de:42:d6:58:3f:
2f:31:82:75:8c:01:13:85:ee:e8:56:40:cf:e8:7d:25:b7:3c:
13:2b:de:ff:4a:3d:93:f9:be:75:a2:94:2f:e1:a4:c7:ae:a1:
4f:7c:04:8f:65:d9:c8:63:b5:68:5b:4f:d2:d9:f3:a5:89:68:
c1:b0:b9:c8:72:ee:b8:61:84:91:0f:de:6c:fc:78:a0:d3:7b:
ee:50:db:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjFdIfXfdmnT3Bz9b1xg/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYzQ4ZTFiYjY3MmNkYTY4NDY0MDBlOGJmOGQ2ZDY5Njgz
NWQ3YmYwHhcNMjUwNjA3MDQwMDQ2WhcNMjUwNjA4MDQwMDQ2WjAzMTEwLwYDVQQD
EyhiMGY0MTkyNGRkYTRlYWU0MDRlYWUwYTg2MjhjMjQzZjI0ZTgyMTRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm1kJ2LSmg8Tz67HlYx6XZTxQqqx/
NClNOkV1xDFx8/QgucCJY6mcozPG0yFaZrAAADXnzSieIIBo9M2XsrHVMLHg4WSE
J6ppr4OkANJ6RMaiXStw3bFHy+F5Cf9Ti/ptchj8vxWRuuxmXKNZ5dMzdvjNGYJb
EApvdb1I2bCPhkNptqUqE3olWuIZ4r+ZR8HsurUw7C7aDvr+hE0GdHXHKNAk9RHv
hvPfyKfM0e8rxhc9E2uItuFAyBK2UzxDdghPp3/xhF/qq4o6zO1CBsw70+N9e1ZA
Nckv8uRv8rNxVeEu7PlztCHe4tUc+ewDcNLBqhbs0BXjEYVoaw6odfARLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLD0GSTdpOrkBOrgqGKMJD8k6CFKMB8GA1UdIwQY
MBaAFFLEjhu2cs2mhGQA6L+NbWloNde/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzkt
MThlY2UzNjgyNjZmLzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzktMThlY2UzNjgyNjZm
LzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn457HxCC
zZ1o3MsxyxltXHrQvrE4TzKrcFgO1gimQv1MbBqKtHXKzAKeYKWllb3uALkGRtBz
xzZdIp3q6asAlk7dx+7O5b9hjFi6RseNhE4vKwnHXTe7TZO0/wcY7kZrW3EPxqx8
JvXmwzkLYcQj7iy6bt53AhIoxdvoHmPqfuGaXSq6BfcQyFSwdwDs8MOGMtL0acEw
bvBlR7vXZeicCmFosbajvYCY+OcLpxzzBd5C1lg/LzGCdYwBE4Xu6FZAz+h9Jbc8
Eyve/0o9k/m+daKUL+Gkx66hT3wEj2XZyGO1aFtP0tnzpYlowbC5yHLuuGGEkQ/e
bPx4oNN77lDbfw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:00:13 2025 by rpki-client