Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft
File: USGZZlSgu08AhYxAKoILtkvglUc.mft (raw, json)
Hash identifier: fYzknG0qMPSOmNXUfVxQRnxB5r4i+HA3AzrLRD3duLk=
Subject key identifier: F0:10:2A:78:DA:5D:23:30:4F:35:F4:8E:06:8E:72:CC:7F:24:58:DA
Authority key identifier: 51:21:99:66:54:A0:BB:4F:00:85:8C:40:2A:82:0B:B6:4B:E0:95:47
Certificate issuer: /CN=5121996654a0bb4f00858c402a820bb64be09547
Certificate serial: 019510C79A10249189EC64E88632936C0FA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USGZZlSgu08AhYxAKoILtkvglUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft
Manifest number: 06D5
Signing time: Sun 16 Feb 2025 22:01:11 +0000
Manifest this update: Sun 16 Feb 2025 22:01:11 +0000
Manifest next update: Mon 17 Feb 2025 22:01:11 +0000
Files and hashes: 1: USGZZlSgu08AhYxAKoILtkvglUc.crl (hash: wwqnRPMsDAizIMRm7OBxU5SZ9KZioN9wV0JiMOtU7d8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/USGZZlSgu08AhYxAKoILtkvglUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:9a:10:24:91:89:ec:64:e8:86:32:93:6c:0f:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5121996654a0bb4f00858c402a820bb64be09547
Validity
Not Before: Feb 16 22:01:11 2025 GMT
Not After : Feb 17 22:01:11 2025 GMT
Subject: CN=f0102a78da5d23304f35f48e068e72cc7f2458da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c7:53:65:55:c0:84:bb:bf:2b:1a:8d:c3:9a:
e5:47:8d:be:75:e6:fa:60:fd:11:7b:82:55:13:86:
1c:ff:18:d1:f3:14:35:a7:28:5d:f9:51:e0:bb:81:
36:90:bd:30:70:28:ef:c1:05:45:41:ef:e4:cf:64:
58:06:8d:17:b1:4f:a3:eb:61:72:19:4b:0e:1b:c8:
c6:42:64:28:e4:b2:72:ad:86:21:d7:02:d4:52:f8:
7b:b1:51:63:6c:a4:1e:0f:ef:93:83:a5:03:8a:28:
20:7e:81:0a:b0:22:e9:45:00:4f:ac:7f:c9:73:b1:
09:5a:6e:ea:65:1d:86:76:91:33:1e:c4:56:7e:74:
8a:24:b4:97:05:ad:c6:d6:54:c2:57:a9:92:a2:58:
10:24:81:39:62:3f:84:41:49:b7:46:ae:28:10:eb:
f1:2a:40:0a:ff:b8:2f:f2:d8:66:04:f5:15:3d:c1:
c6:a9:6f:e0:30:78:81:89:23:bd:d4:d9:1f:f3:4b:
3f:cf:f3:07:b1:9f:e3:5e:95:e8:2c:b0:b4:00:5c:
b4:0b:70:f9:2a:cd:38:f0:c2:d1:4c:82:19:d4:80:
7b:99:b9:37:ae:af:68:f5:a2:b6:5d:e7:b4:0c:2a:
20:c1:16:8c:ff:0b:5b:72:3b:52:13:bd:f3:7c:7b:
b1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:10:2A:78:DA:5D:23:30:4F:35:F4:8E:06:8E:72:CC:7F:24:58:DA
X509v3 Authority Key Identifier:
keyid:51:21:99:66:54:A0:BB:4F:00:85:8C:40:2A:82:0B:B6:4B:E0:95:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USGZZlSgu08AhYxAKoILtkvglUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:97:b9:e5:b5:44:5c:7d:20:93:ec:79:fd:dc:e7:b3:d5:14:
54:81:25:f2:af:7e:69:58:be:b7:f1:13:07:25:15:a4:c9:8d:
ba:dc:ec:01:0c:70:40:25:5b:69:d6:05:32:92:1f:23:0e:3f:
54:5b:c5:22:9d:7c:72:f0:08:dc:1d:3f:a4:16:7e:a6:7c:16:
8c:3e:75:c4:09:a1:43:ef:74:f3:67:3a:c5:7a:1a:9b:c9:1b:
31:25:2f:1b:2e:a2:c0:03:0d:7c:e8:8a:f9:75:37:3f:ad:be:
51:b7:fd:e3:af:6c:79:ae:e9:6f:c7:cb:9b:a4:63:db:14:9b:
a6:bf:0c:7e:17:16:43:07:2c:14:5b:7d:66:a4:e4:04:d3:71:
c2:13:f8:a2:27:7f:5d:4f:94:a3:6c:7f:6e:5e:77:30:7e:3a:
41:94:56:27:ec:e0:2d:fb:96:ca:5b:e5:5a:47:4c:d2:d9:42:
c3:ed:5e:e6:7a:d3:a1:21:46:dd:fd:39:1a:c8:5c:4c:25:b0:
f2:7f:dd:e5:e7:ef:02:42:ec:f2:eb:f3:9f:e2:22:de:dd:1b:
e7:50:f1:55:e5:b2:bb:ab:0c:fb:5b:6a:57:3d:f2:13:b0:0f:
af:bd:52:58:93:6d:71:05:89:26:cf:1b:50:a6:c7:25:0a:89:
ac:17:09:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:44 2025 by rpki-client