Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: JS1fifO4WF/KMcjRhk/jGrqgotpkPfRF2rA7UsJc4Tg=
Subject key identifier: 80:55:1A:EE:77:AB:B5:B1:18:2B:BE:E3:A4:99:41:86:D0:3B:1F:F2
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 01964745521A1FD270C210F4A7B05D608754
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0AF3
Signing time: Fri 18 Apr 2025 05:00:47 +0000
Manifest this update: Fri 18 Apr 2025 05:00:47 +0000
Manifest next update: Sat 19 Apr 2025 05:00:47 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: N0BdX5XG7jLBqWuYSEbbCE2YK8cK2UYrba2veogMoIY=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:45:52:1a:1f:d2:70:c2:10:f4:a7:b0:5d:60:87:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Apr 18 05:00:47 2025 GMT
Not After : Apr 19 05:00:47 2025 GMT
Subject: CN=80551aee77abb5b1182bbee3a4994186d03b1ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:26:59:07:e2:88:69:1b:6a:1a:c8:51:a1:84:
c9:d9:86:f9:2e:da:e0:22:62:05:12:aa:6d:5e:97:
fd:15:19:2b:4f:f6:43:c1:10:4f:80:1b:26:af:6b:
c7:a3:67:74:84:0e:b7:4a:ee:f2:6e:ec:c4:0a:48:
b2:57:3e:cd:64:43:be:e8:be:78:0a:ee:6f:ac:7b:
11:85:da:65:3c:1e:55:2e:60:c8:fe:6c:c5:21:70:
86:4d:fe:42:73:5f:a7:a2:f7:cc:88:bc:f5:19:4d:
1e:91:98:64:17:ac:b5:91:16:93:bc:11:57:3f:44:
2f:b4:73:35:d2:ce:36:54:e8:e7:44:c1:5d:c1:f6:
29:03:1a:42:4d:aa:94:63:98:f2:6d:56:4c:b2:58:
37:9f:18:7c:56:15:9f:94:11:3b:38:4e:c3:76:43:
10:3d:a6:10:8b:04:33:b9:41:a2:e8:ed:00:fb:30:
9b:f8:12:a7:5c:3a:6b:92:11:1a:ab:71:3f:2b:bb:
24:66:15:89:b6:a4:36:8a:5a:58:49:ba:d9:07:02:
b7:05:37:61:e8:8b:f5:6d:cb:9f:4f:af:1e:83:fd:
74:28:81:85:f2:76:d4:b8:cb:17:24:d9:89:f4:1a:
ca:c7:0d:ac:cc:ed:54:3f:1f:1e:85:98:b5:e8:80:
93:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:55:1A:EE:77:AB:B5:B1:18:2B:BE:E3:A4:99:41:86:D0:3B:1F:F2
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:8f:3f:44:83:fb:c4:b0:38:93:cf:63:86:29:f2:fe:40:1a:
9b:40:07:3f:3f:61:b0:03:53:b4:bd:e2:85:a1:92:62:6a:28:
ad:62:89:22:cb:27:2a:d5:1f:33:cb:01:3d:28:c7:5f:5a:91:
74:1a:db:cc:df:c3:17:fe:5b:a3:e2:17:54:fa:29:12:5f:59:
69:14:ef:e1:d3:a3:c1:27:15:6d:e6:27:6b:4f:3b:ea:44:11:
9f:18:18:06:be:20:5f:fa:31:fa:1a:0a:78:3b:8a:f8:fe:a2:
44:d9:ae:9b:d3:6e:65:c5:d5:10:99:ef:9c:7e:76:44:73:80:
43:13:55:7e:cc:07:91:92:d1:27:d6:61:fa:24:e9:41:c1:e8:
9f:52:d4:ca:87:a0:e6:75:b1:60:a5:e8:42:1e:09:8f:63:b6:
88:a4:59:c1:a0:8f:99:a7:9c:7b:31:6a:b7:41:09:fc:3b:c0:
04:68:c5:e9:eb:98:bb:ba:d9:a3:c8:a7:81:d5:6c:f1:0f:0b:
1d:74:61:bc:b4:8b:5e:0e:be:0d:97:2f:a6:8a:b9:f4:62:f1:
07:d7:63:dc:b7:50:9c:60:5a:59:fb:db:41:e7:41:a0:36:db:
8b:ce:27:35:a3:ca:ba:97:15:46:04:d7:96:6a:de:7f:65:06:
fc:4c:2d:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:02:25 2025 by rpki-client