Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: ylUy1U+OtHj1LsD6VrfZB2LpyOvR87BYdFqfbirHB/g=
Subject key identifier: 94:01:CA:AE:2B:96:C7:DE:06:6E:9E:5B:72:33:21:E9:DF:07:44:42
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 01974BFB2C0F82EBDC2A00C50B66DEE90B35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0B7A
Signing time: Sat 07 Jun 2025 20:00:41 +0000
Manifest this update: Sat 07 Jun 2025 20:00:41 +0000
Manifest next update: Sun 08 Jun 2025 20:00:41 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: hs8L5iCBH/iQlxCF1A3Z/oHWKg1MDZEokhTCvXzq144=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:2c:0f:82:eb:dc:2a:00:c5:0b:66:de:e9:0b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Jun 7 20:00:41 2025 GMT
Not After : Jun 8 20:00:41 2025 GMT
Subject: CN=9401caae2b96c7de066e9e5b723321e9df074442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a4:8e:45:ca:fa:b0:76:47:0e:7f:a2:96:54:
19:b5:b0:5d:37:cc:8e:9b:b5:f0:fb:2a:48:b8:53:
a4:90:c7:89:c1:97:1b:44:ea:63:da:19:74:e8:b7:
a2:62:1f:47:af:52:4e:20:10:8a:f4:77:06:2d:61:
1c:1a:3c:d9:4c:b7:15:b0:91:00:8e:04:b0:22:5d:
da:29:b3:bf:67:40:9a:b5:3f:b3:a2:b5:8a:73:d4:
5d:a8:fe:03:40:04:66:ad:13:12:54:78:85:45:ad:
54:47:25:57:22:1d:fc:75:36:e3:9d:22:13:35:fe:
00:33:4e:5c:83:1f:b0:c0:f1:9a:dd:1d:d7:e7:8c:
9f:11:bf:33:02:b0:83:aa:23:8d:94:2b:a2:64:45:
58:25:f2:5f:df:36:e3:4d:c8:35:b5:3c:24:76:e1:
32:51:ee:ab:57:fd:f0:d4:8b:1d:7f:f5:64:42:91:
e8:9e:df:28:9d:ea:41:e2:8b:bc:43:c4:c1:7d:28:
a6:05:7b:28:fa:e6:1b:b7:eb:c4:ce:c9:20:ab:6b:
f1:b9:f7:51:90:9a:30:cc:39:a6:05:4c:62:1d:e9:
bb:1d:d9:27:b8:6d:5e:4b:59:e8:77:f9:1c:b4:5e:
d2:65:3b:a7:64:a3:30:b1:33:90:0f:41:5c:5b:b4:
0f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:01:CA:AE:2B:96:C7:DE:06:6E:9E:5B:72:33:21:E9:DF:07:44:42
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:7b:c3:e6:6e:ee:8d:c5:0d:f6:8f:30:c6:3f:7b:0b:44:da:
a6:35:f8:2f:67:c6:d4:ea:e5:cf:d5:42:f6:88:8c:10:08:ab:
4b:eb:0e:cd:8e:00:98:22:aa:93:21:c7:28:bf:b3:2f:71:90:
da:eb:aa:b4:df:a7:d3:cc:e5:89:ad:54:42:96:22:3f:58:46:
7d:fe:ba:02:a2:cd:e6:b2:8c:4d:22:65:2c:d6:12:0f:cb:88:
5b:1c:98:f4:ba:8c:c3:16:a7:74:6f:c4:92:be:34:de:b2:59:
e6:1f:c0:46:ed:09:9c:91:7d:74:ff:09:63:51:bd:dd:a8:f6:
a7:e4:aa:0b:ef:d1:02:84:39:cf:98:ac:ed:79:80:e9:21:03:
f6:b1:1b:c6:6a:71:7e:f7:c3:3c:a2:9a:d8:17:c6:94:13:bc:
69:42:06:82:2b:dd:b2:f2:c2:ce:87:2c:92:65:cf:df:af:ea:
06:e9:1b:4e:7e:2c:08:91:97:0e:04:00:b9:65:e2:0c:3f:1f:
ab:ea:b7:a0:dc:f9:dd:89:9e:eb:ec:a5:82:f6:de:42:d5:b8:
e2:3b:2e:fc:7a:9c:64:fc:7d:b4:74:ee:70:ff:d9:5b:44:b2:
22:88:80:4f:24:71:91:49:af:76:8a:b0:ac:e1:09:61:0c:ed:
df:fa:db:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:52:23 2025 by rpki-client