Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: RV4hHtZH5jdT67HfVu/scZUKv3+ZbagXSPsqs2kPOQE=
Subject key identifier: AD:D6:88:DF:1F:84:11:75:CE:9C:CA:E7:E7:B3:54:0B:08:A5:35:E2
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 019882E75B99D70F923815842A38D5C79E06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0C1B
Signing time: Thu 07 Aug 2025 05:00:56 +0000
Manifest this update: Thu 07 Aug 2025 05:00:56 +0000
Manifest next update: Fri 08 Aug 2025 05:00:56 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: OhEfpW4CzGlIXjcLBxWl3ASE4cHkOL9zfAYW+9i7r4E=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:e7:5b:99:d7:0f:92:38:15:84:2a:38:d5:c7:9e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Aug 7 05:00:56 2025 GMT
Not After : Aug 8 05:00:56 2025 GMT
Subject: CN=add688df1f841175ce9ccae7e7b3540b08a535e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8c:a5:5d:68:b1:1f:00:13:74:62:9d:6d:dc:
db:6e:e5:66:d6:18:eb:7a:80:6c:9e:f5:81:92:b1:
ed:17:a2:ee:da:84:a5:9c:92:63:01:7e:ae:62:b2:
c7:29:1a:e2:93:a4:cf:d6:e9:db:8d:f6:e2:81:70:
3e:af:9a:74:7d:c0:93:5f:b8:a3:9a:43:e0:5c:eb:
e4:4d:6b:6d:ff:84:06:b9:28:5d:70:5e:6f:d9:0c:
6a:7d:cc:8a:43:f6:4f:37:11:fd:ff:a4:15:a3:c0:
67:c6:e3:52:47:64:60:97:9f:da:6f:be:5b:43:a4:
82:45:ad:33:78:3d:f8:d5:7f:9d:d5:fe:87:32:a6:
d5:06:32:9a:99:c3:d3:61:79:38:8c:24:d3:3b:9b:
cd:63:49:b9:0e:40:83:42:c2:d2:21:d2:60:58:9d:
9f:27:9e:c8:9f:b8:a7:81:10:81:05:72:d1:23:bb:
65:3c:09:86:d9:f7:30:d0:17:02:63:45:74:4b:5c:
4f:fe:6e:45:76:cc:2b:60:45:11:23:b9:ca:64:56:
d7:f4:02:28:89:4d:1e:18:43:2e:58:66:eb:ec:9f:
02:88:3f:83:4f:b7:53:3f:4d:81:49:56:4c:4e:36:
96:50:c1:df:25:d3:ab:2a:22:c3:03:0c:4b:a7:2c:
a0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D6:88:DF:1F:84:11:75:CE:9C:CA:E7:E7:B3:54:0B:08:A5:35:E2
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:21:21:44:be:46:95:02:72:e5:23:5a:4f:64:b0:6c:3b:82:
ed:f0:9b:f0:18:c8:a8:d7:e1:98:9d:d5:ef:3e:db:d7:23:48:
4f:6d:4b:31:3c:ea:0b:20:02:42:2f:c0:2e:b3:1f:76:03:34:
82:7f:65:d0:ab:4b:ef:c6:ce:13:d3:67:e9:5b:b3:aa:dd:12:
9e:5a:b0:07:24:37:82:ee:b4:d6:50:57:70:f6:2c:eb:7e:83:
fc:7d:d8:75:a3:4d:78:21:1e:34:6a:71:82:c7:2b:5f:ec:70:
7f:e2:0a:32:8a:35:d4:fb:50:8c:73:49:b5:3f:9a:e7:a4:7d:
28:07:74:57:70:7e:ec:be:00:38:a5:28:8f:f6:43:fe:8b:cd:
d5:8d:88:66:f8:c8:ac:c6:c6:b8:4b:79:e9:a7:28:f8:f0:dc:
79:52:cd:66:57:b7:2b:de:63:be:4e:ba:a0:2a:b0:8a:e9:51:
8c:e8:bd:e4:c1:a4:88:83:0e:9a:5e:a2:ce:93:d3:bb:2c:90:
bf:b3:d5:8f:e8:48:0d:df:d7:7b:68:36:b8:33:41:27:75:ca:
69:96:29:21:c7:58:d2:71:4b:5b:62:d5:0d:75:6e:0d:7a:84:
7e:5d:5d:f0:21:1f:d2:4f:8c:31:69:01:c7:a0:d1:c8:07:b9:
98:29:2b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 11:11:59 2025 by rpki-client