Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
File: usA65sVFitKAdlulUnmAoG_sI6g.mft (raw, json)
Hash identifier: Z1wVHyHpJU+5MlgU0JTor+c2M5Yl+CRLubpkiGj7m6E=
Subject key identifier: B2:DB:9A:87:BE:C4:7D:8F:E8:9B:DF:03:E8:CC:89:C8:1E:97:1B:18
Authority key identifier: BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
Certificate issuer: /CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Certificate serial: 0196507F5205AF5623B36526A6F201BA3DEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
Manifest number: 14FB
Signing time: Sun 20 Apr 2025 00:00:43 +0000
Manifest this update: Sun 20 Apr 2025 00:00:43 +0000
Manifest next update: Mon 21 Apr 2025 00:00:43 +0000
Files and hashes: 1: umBmq8XFX-zXziXQ4pyACUgy-FQ.roa (hash: JuI2qHr6MZgrFWdKqrf8sXobXSWHVnMHISH4QdZzmLE=)
2: usA65sVFitKAdlulUnmAoG_sI6g.crl (hash: x5T3DXeDwHYmXd8SOLAlEoyOelfcKWRD0UoaDYH/BJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:7f:52:05:af:56:23:b3:65:26:a6:f2:01:ba:3d:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Validity
Not Before: Apr 20 00:00:43 2025 GMT
Not After : Apr 21 00:00:43 2025 GMT
Subject: CN=b2db9a87bec47d8fe89bdf03e8cc89c81e971b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:84:aa:e4:9e:1d:a9:3b:4a:20:18:20:dc:cf:
dc:a2:8f:b0:8c:99:1e:df:5d:90:3f:6d:c2:f7:0b:
1a:db:af:b9:f8:77:00:95:76:c9:42:2f:d1:e9:d5:
83:af:7e:4b:3b:f9:bd:b4:d8:10:ae:9d:39:4d:af:
16:79:a6:cb:57:8d:7d:0e:6c:b8:7c:fa:2d:08:ce:
2b:38:c7:7c:53:e3:49:16:1a:3b:97:8e:4d:a1:b7:
bb:8a:f0:82:83:25:d3:da:0c:8e:aa:0c:c5:40:7c:
2b:8f:52:14:82:b0:36:e6:5a:fa:18:85:ab:4b:08:
74:99:18:5e:de:76:03:c7:4a:f6:bd:56:bd:83:3e:
ed:9d:9a:68:59:12:96:9d:e7:10:f6:2d:42:6f:2c:
fa:ec:cc:65:14:b3:76:17:6d:f5:1a:d3:61:ae:a5:
c8:d3:50:33:84:de:05:13:f8:11:dd:3e:c0:f6:0b:
31:27:3d:14:ca:95:b8:24:88:20:8d:0b:97:d7:9e:
d2:a6:1f:b1:34:e8:36:4c:2d:b3:9b:1d:94:a5:27:
24:f1:84:ea:09:0d:da:a3:fc:dc:12:38:e2:bd:2a:
09:eb:2a:f4:db:58:3f:e7:06:b5:b3:58:c0:0e:f1:
7e:ca:dc:84:02:c1:0d:33:ca:ba:54:da:5e:cb:07:
ce:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DB:9A:87:BE:C4:7D:8F:E8:9B:DF:03:E8:CC:89:C8:1E:97:1B:18
X509v3 Authority Key Identifier:
keyid:BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:e1:3f:4f:e7:bf:29:77:de:82:bc:01:98:a1:ac:e2:c3:07:
09:0c:56:a8:d8:88:3b:c0:d8:83:3d:7a:62:e4:19:4b:d2:e3:
27:bc:9d:ab:55:23:e5:1b:02:a6:74:fa:1d:4b:e6:8c:57:4b:
34:80:73:06:84:58:7b:13:9d:80:90:d5:27:70:f9:b0:af:df:
4e:fa:40:d5:8d:cc:36:63:8a:2f:89:05:e2:f8:65:fa:18:19:
af:56:dd:26:83:52:fc:c0:63:84:5c:c2:7d:d8:e4:2a:a0:dd:
be:1a:af:a6:dc:9e:88:4b:8b:cb:ac:a9:69:88:70:a1:d2:9d:
02:6b:3d:5c:53:fc:86:45:c8:89:42:e8:ef:b7:50:dd:91:d3:
82:7e:22:a8:6c:39:1e:77:d4:cc:e6:40:9a:20:81:0d:50:1f:
e9:de:61:a4:42:dd:5d:bb:68:9d:5d:38:bd:42:6e:af:14:00:
8a:c9:58:d6:4d:83:93:b0:ac:7d:10:d1:aa:e5:55:65:93:d0:
30:bf:ef:75:fe:51:28:c3:45:27:6b:19:18:04:1a:ba:a7:79:
7c:09:c5:44:54:c6:36:5e:ce:f1:ec:ec:f9:d6:85:8f:08:3d:
61:d3:77:8f:94:c4:de:fb:23:2a:41:09:7d:0b:03:83:2e:46:
d0:3d:81:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:00:12 2025 by rpki-client