Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: wS6EeVNGJU8IPVBTtxqrrgGUZ6ey5Av+ySQ73Ecerhc=
Subject key identifier: 0D:F0:31:33:44:26:FA:AA:10:0E:91:71:3F:FC:90:A8:A8:97:CF:C1
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 01977865FD4F2F297F815C2B73A112B1367D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0B91
Signing time: Mon 16 Jun 2025 11:00:39 +0000
Manifest this update: Mon 16 Jun 2025 11:00:39 +0000
Manifest next update: Tue 17 Jun 2025 11:00:39 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: 4NrQRzv1yXlfMa9gNCzoowekQJiZMBncy/+5ddoyT1Q=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 11:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:65:fd:4f:2f:29:7f:81:5c:2b:73:a1:12:b1:36:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Jun 16 11:00:39 2025 GMT
Not After : Jun 17 11:00:39 2025 GMT
Subject: CN=0df031334426faaa100e91713ffc90a8a897cfc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6e:f5:a8:a7:3f:7d:69:9a:e5:3e:7b:19:cf:
47:88:7f:47:fe:bc:ef:8a:24:0e:49:f9:20:09:90:
36:76:97:b3:6d:90:1b:8a:9f:6f:8e:5a:6e:dd:73:
be:48:33:ee:33:91:6e:c3:8b:cc:ed:2c:97:bd:01:
de:56:9a:7a:bd:1f:e2:7e:16:13:a6:ab:d0:03:82:
66:e5:60:54:e7:d4:2d:b6:fe:56:ba:5e:b5:11:e6:
ff:0a:ed:1d:d5:d7:b0:f2:c8:7b:55:9c:c6:ae:40:
c5:96:8b:77:34:f6:16:72:e6:6b:24:06:a1:34:20:
3a:59:3c:c4:4b:b1:86:cf:e8:d8:fa:e4:b6:f8:7d:
cf:4a:18:58:39:c2:ab:86:70:3f:5c:0b:67:29:c4:
11:63:b5:d9:59:e6:09:7c:37:66:f3:8f:2c:0b:cc:
ef:b5:77:fc:42:6a:20:03:70:45:58:2b:98:08:c4:
22:c9:6a:04:e4:a0:cb:35:86:aa:69:30:fe:06:d2:
0a:49:8b:a8:6e:d6:96:c0:0a:40:21:b5:eb:47:8c:
cc:91:70:f4:9f:30:e2:77:b3:d6:f1:0b:90:d7:17:
85:60:56:99:50:13:b9:f3:6f:2d:06:24:2c:68:c4:
a5:e6:da:11:bb:82:6f:97:ff:4f:7d:71:5b:28:9f:
a3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F0:31:33:44:26:FA:AA:10:0E:91:71:3F:FC:90:A8:A8:97:CF:C1
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:f5:d6:5a:06:db:2e:1a:78:01:8c:5c:63:90:c5:fb:ef:ed:
d8:1c:2b:60:af:1f:6b:da:a4:d5:65:71:8d:44:5f:80:b2:b9:
6c:73:f2:36:be:08:8e:68:2a:e5:58:92:9e:12:cf:6b:03:51:
a4:e8:01:01:9f:4e:e6:0e:97:31:85:e9:ea:3f:fa:31:50:5f:
8d:f2:9c:9b:96:c5:65:36:9e:ba:72:f2:d1:00:10:88:3c:10:
05:fa:d2:28:ff:27:23:d6:e4:94:15:f6:3d:23:1d:22:40:cf:
67:60:d1:ba:9e:69:77:98:64:52:be:42:0d:fb:37:c0:2b:00:
73:13:59:9d:c2:c3:c9:6a:1e:e0:38:88:18:21:2c:26:2e:13:
fd:c4:75:34:1d:04:fd:30:d3:df:90:be:66:7f:63:31:af:ae:
46:25:a0:a6:4b:25:e5:9f:a2:40:24:08:79:dc:9b:d5:85:f8:
3f:d1:4e:d2:1b:14:9a:59:38:7e:ed:e6:2f:14:2f:bc:19:88:
f1:68:f7:b5:75:36:71:34:b7:e9:20:bf:62:70:f4:81:80:c7:
b4:64:d2:e9:7f:d3:70:ee:31:b0:57:bd:c7:d7:5a:d4:b8:dd:
1e:f3:00:05:2b:31:a0:2a:ca:2c:3a:aa:13:f3:ac:70:49:96:
f6:0b:68:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:53:15 2025 by rpki-client