Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
File: sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft (raw, json)
Hash identifier: IsUYDEbAea93UFDEEC0bVaLCJ/WpbpjTzibPhO6x05o=
Subject key identifier: 11:38:0F:52:AF:C7:27:28:33:70:C3:29:E6:F6:B9:56:8B:74:8B:46
Authority key identifier: B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
Certificate issuer: /CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Certificate serial: 01969C076A6FC3379A9E059DCE48A38DCE46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
Manifest number: 14A3
Signing time: Sun 04 May 2025 16:00:53 +0000
Manifest this update: Sun 04 May 2025 16:00:53 +0000
Manifest next update: Mon 05 May 2025 16:00:53 +0000
Files and hashes: 1: F8n_Svao3XVMTZ9Sm-3QBaNvm1s.roa (hash: jXQFrBti/A7a3NKEgrbBnXx/tbixG/ctP16QJsp1XeE=)
2: sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl (hash: AtU7uatF6A8Mw9te1gZUjCB8p8WrkLIMcqkhXCtLTqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 13:58:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:07:6a:6f:c3:37:9a:9e:05:9d:ce:48:a3:8d:ce:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Validity
Not Before: May 4 16:00:53 2025 GMT
Not After : May 5 16:00:53 2025 GMT
Subject: CN=11380f52afc727283370c329e6f6b9568b748b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d8:75:b9:4a:12:93:99:59:4f:4f:6d:41:8b:
bd:94:b3:f8:ed:37:9d:14:08:84:1e:92:0d:5f:d9:
c9:59:b1:09:e3:4b:be:2c:c4:4c:63:e2:7e:06:5e:
34:76:86:4f:e0:97:13:6f:22:91:0e:fc:25:de:b7:
da:cf:7b:df:bf:75:ba:94:9b:85:3e:28:10:be:f4:
f9:b8:31:02:1a:bf:9f:c8:50:8f:89:b3:4d:9b:e5:
e2:96:5a:e8:a3:e4:88:84:c3:6e:0b:5f:31:59:c9:
bf:fa:0d:40:07:8f:4b:ce:de:3e:1d:15:82:94:36:
6a:b1:bd:da:db:a4:d9:6b:f3:06:0c:61:67:c1:8c:
c3:70:de:98:55:b0:4a:19:25:3b:3d:1f:15:ea:85:
4d:95:2c:a7:96:48:ac:6e:45:69:2d:26:c3:06:95:
df:98:41:bd:36:21:18:2d:59:11:b6:df:d7:3d:59:
f7:0b:19:94:9c:be:97:a6:d3:50:81:78:cb:5f:44:
31:03:ff:64:3a:2d:72:9e:81:e1:0e:21:03:44:90:
53:fc:78:50:d2:5a:e2:19:a5:16:65:25:31:65:3f:
c2:2d:af:2c:22:d6:47:3a:35:a1:37:ac:93:50:85:
8b:31:a6:69:ba:e0:b8:86:d0:2e:a0:aa:54:86:7b:
2f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:38:0F:52:AF:C7:27:28:33:70:C3:29:E6:F6:B9:56:8B:74:8B:46
X509v3 Authority Key Identifier:
keyid:B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:7a:c7:5f:af:9d:c5:fd:fb:d4:70:04:a7:fa:28:ae:44:3e:
08:07:fa:d3:3a:b8:ba:09:36:40:30:88:d2:2e:d2:5c:0d:9a:
59:fe:67:ad:57:68:ff:f0:b3:d7:47:76:ee:7e:01:55:9b:08:
5f:67:50:c1:e0:c2:70:e4:7c:28:31:c0:f8:68:78:62:cf:33:
e0:83:88:a3:b1:2b:dd:c2:e6:18:3f:75:99:f4:44:21:d2:aa:
58:d4:1f:23:40:7c:d0:79:5c:93:cc:b2:88:43:9d:34:18:17:
39:60:60:c4:8e:87:16:ba:84:12:36:85:4f:f0:b4:a1:e1:f9:
d9:33:13:f0:91:32:13:dc:29:82:41:48:9d:1b:25:09:8c:b7:
3a:cd:21:34:82:44:ab:bb:74:65:de:f0:37:76:fb:e0:04:b7:
11:f2:75:8a:86:af:d9:23:8f:08:73:26:3b:cc:62:ee:51:9f:
45:c8:67:e6:ae:4b:c8:ca:a9:2e:b4:a3:55:f6:53:d2:d6:fa:
b1:a8:3a:7b:0c:81:2b:ff:9b:42:93:14:99:41:24:67:9a:3c:
96:6a:d2:8f:ee:5a:4c:f5:79:79:17:00:61:6d:de:c9:40:b4:
8a:a4:a3:a8:87:b6:c6:8f:24:a8:66:02:e8:81:68:00:c0:39:
5b:e6:50:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 22:47:47 2025 by rpki-client