Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
File: usA65sVFitKAdlulUnmAoG_sI6g.mft (raw, json)
Hash identifier: RRomPq5+bYNb0oeC2YsD2w91F5fb5xd9VQY0fHkf8wc=
Subject key identifier: DE:48:28:9A:A3:A8:56:BA:33:FD:7C:62:DB:2D:B0:5B:EC:41:54:B9
Authority key identifier: BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
Certificate issuer: /CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Certificate serial: 019745C292F467753EA105D122D1B401433E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
Manifest number: 157A
Signing time: Fri 06 Jun 2025 15:01:08 +0000
Manifest this update: Fri 06 Jun 2025 15:01:08 +0000
Manifest next update: Sat 07 Jun 2025 15:01:08 +0000
Files and hashes: 1: umBmq8XFX-zXziXQ4pyACUgy-FQ.roa (hash: JuI2qHr6MZgrFWdKqrf8sXobXSWHVnMHISH4QdZzmLE=)
2: usA65sVFitKAdlulUnmAoG_sI6g.crl (hash: v82AkF+CkdacyfksGcLiNPgGLYAA5+pdIvS6oOC9Drc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:92:f4:67:75:3e:a1:05:d1:22:d1:b4:01:43:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Validity
Not Before: Jun 6 15:01:08 2025 GMT
Not After : Jun 7 15:01:08 2025 GMT
Subject: CN=de48289aa3a856ba33fd7c62db2db05bec4154b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3b:94:2f:99:55:91:04:65:89:77:c7:8d:d3:
3c:54:bd:a7:87:19:cd:fa:9d:49:65:c1:72:54:89:
5f:a1:ff:3b:58:87:55:28:da:cf:ae:43:e9:bb:32:
3a:0a:73:56:85:d6:c4:2c:8c:be:21:0f:66:ad:59:
8f:d4:8c:4a:ca:5a:85:c1:9b:e0:58:01:1e:2d:ed:
1e:56:6a:bf:66:ce:2b:25:6a:63:e9:9c:ba:e8:61:
9c:08:43:bd:d0:20:22:70:77:91:97:63:f0:be:f5:
11:71:0e:84:3f:1d:95:98:d4:ea:ea:f9:48:b9:39:
f7:e0:3f:da:ab:be:8c:dc:df:28:d4:22:1c:30:fb:
29:ad:8a:1e:96:9e:3e:26:67:65:fa:2f:ab:bc:ab:
99:58:da:0b:e0:20:39:55:21:0d:4a:67:f8:7a:03:
c0:b6:fb:0e:01:57:b8:7d:5d:88:37:89:e6:3a:a2:
18:0e:f7:17:92:38:79:e6:17:a7:68:a2:24:cd:84:
ca:ed:50:42:3f:62:b8:46:40:1a:ab:92:68:0d:f5:
a8:00:bb:5e:02:9e:fa:47:0a:ef:60:a7:a4:bf:44:
5c:87:a1:6d:71:a4:eb:cb:fd:bc:9e:9c:0e:d3:22:
26:32:cf:34:5d:ab:14:4c:6d:2a:8f:0a:e6:0a:25:
42:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:48:28:9A:A3:A8:56:BA:33:FD:7C:62:DB:2D:B0:5B:EC:41:54:B9
X509v3 Authority Key Identifier:
keyid:BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:ff:20:f1:fe:68:38:ce:2b:04:cd:9a:75:4a:27:e4:4e:a3:
88:b6:3a:2c:ab:fc:2c:fb:5a:68:78:a5:bd:7a:e2:45:7c:68:
a8:08:19:d8:aa:de:28:e7:72:5b:c5:b7:40:33:d5:e4:fb:3f:
c9:bd:fe:c5:cd:4e:d1:13:e9:18:fc:4d:52:87:b5:60:92:a7:
9c:c0:f6:3b:c6:a3:fa:38:91:a5:3c:17:a7:b7:3c:1d:d6:e3:
92:4b:60:ba:ec:47:2b:b8:7d:5c:29:72:52:b0:6d:b8:07:3e:
e7:99:1c:0e:84:e5:d3:64:3b:e9:75:50:7e:be:50:0f:ef:99:
4c:14:ae:a2:71:3b:80:15:a4:ae:dc:55:6d:f9:9f:90:12:31:
a9:30:80:33:f6:05:95:80:96:4e:b5:17:29:ff:2f:48:40:14:
29:46:81:fb:56:b9:2b:8d:19:52:c8:07:2c:98:90:f4:37:b6:
a8:98:e8:5c:59:e9:2a:9b:bc:89:13:fc:45:05:23:45:1f:f9:
a1:15:10:d2:a2:5c:ae:1d:b7:f7:89:b9:72:e4:da:89:22:3b:
92:55:66:65:a2:35:33:02:7a:38:8a:ed:fd:19:b4:c2:b3:46:
24:73:4d:66:ba:9e:36:e4:5f:e9:77:df:54:9b:fd:6a:a8:9b:
dd:e5:79:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:17:52 2025 by rpki-client