Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: 2kBHzMOgf4EmkIcsLrAJoGm7lFoBvz0mzuBzQ2X14N8=
Subject key identifier: 3D:72:4C:8B:70:6D:D4:B6:1F:7A:B5:00:7E:8A:F5:22:74:20:79:D0
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 019686FFAE4A08E902B9B74A7A525ED1A2CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0B14
Signing time: Wed 30 Apr 2025 14:00:25 +0000
Manifest this update: Wed 30 Apr 2025 14:00:25 +0000
Manifest next update: Thu 01 May 2025 14:00:25 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: 7gEY6TrsDbwf+m+i3iLMphrJrbaX+MQ+I/8o62mR8UQ=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:ff:ae:4a:08:e9:02:b9:b7:4a:7a:52:5e:d1:a2:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Apr 30 14:00:25 2025 GMT
Not After : May 1 14:00:25 2025 GMT
Subject: CN=3d724c8b706dd4b61f7ab5007e8af522742079d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:58:66:bd:94:69:6d:db:4e:d7:79:f7:f3:77:
f6:dc:e9:b0:62:4f:f8:e9:1d:19:72:98:97:17:8b:
14:e2:4a:77:6b:34:73:0c:8f:36:08:7d:56:9c:f1:
f2:8b:b4:59:82:b7:bb:e0:24:13:81:e1:3c:52:bd:
41:7b:ba:29:56:d2:8a:2b:6f:b2:09:83:b2:ae:45:
81:db:04:63:96:28:7e:41:f9:8a:44:ac:4b:a9:e3:
c7:be:1c:95:2d:57:d7:a3:5d:51:e0:9d:21:60:ff:
51:b5:94:59:3a:49:ad:5d:2c:b1:a9:89:9e:c1:65:
a2:8c:20:f2:6c:0b:a8:68:11:8d:4c:fd:93:f6:b9:
c9:da:08:8d:d8:36:a7:fe:03:df:7a:3c:90:b8:ac:
dd:26:3d:65:1d:1f:43:e5:c9:90:d3:ab:97:3c:34:
dd:a7:cb:b1:0d:2d:49:f2:b6:54:04:74:02:d6:8d:
fc:fa:21:2f:66:1f:4f:14:9f:21:82:47:0b:d1:e0:
d0:3a:d2:f7:41:45:b1:57:03:56:c4:45:c3:1c:5f:
f0:0b:f4:54:45:16:8c:e1:24:0d:9d:e2:c8:79:a9:
2c:58:c2:71:82:7f:fb:6a:1c:e6:8d:14:28:bf:58:
36:9a:f2:11:4c:9a:a3:30:e4:20:21:f8:93:42:87:
d9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:72:4C:8B:70:6D:D4:B6:1F:7A:B5:00:7E:8A:F5:22:74:20:79:D0
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:c5:aa:5d:de:33:d6:52:f0:99:e1:61:22:e9:ee:13:64:82:
2a:da:36:19:0c:13:12:5e:18:3f:e8:70:88:a9:ee:b7:9a:07:
72:a3:eb:03:5e:2e:d2:83:8e:3d:30:31:16:41:e2:d8:9f:81:
85:2e:f7:be:83:16:34:1b:f7:7d:61:b0:a7:5c:a8:7d:f8:23:
ea:51:e5:62:bf:da:f6:22:51:45:0e:ed:d0:4d:ad:53:84:37:
e1:3e:d0:b7:4e:38:c1:c2:32:ca:0f:ff:08:9f:00:db:fb:07:
6d:4a:c9:d6:90:6a:9b:94:5d:9f:8c:00:df:d1:b4:37:99:ce:
8b:3e:6f:0d:26:69:fb:3c:42:6e:d0:ef:23:a8:6c:f9:5d:d1:
5b:8d:e0:cf:59:fc:ac:d1:9e:6a:4f:b2:56:c4:76:4c:04:06:
97:73:a0:c2:72:9d:62:ca:0f:69:37:23:7d:1d:1e:85:92:3f:
cc:0b:ea:23:47:70:f1:3c:ad:45:43:77:6c:32:8f:74:04:3f:
02:81:ba:cd:7d:20:88:d7:d1:1f:a8:a1:dc:7a:ae:88:d6:c2:
47:fb:ca:92:64:de:92:31:ef:3e:37:e4:7b:80:ef:ed:af:6e:
5a:d4:2e:af:a3:10:36:f1:2b:10:d5:46:c4:ee:23:c4:72:ee:
6e:51:2a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:41:02 2025 by rpki-client