Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
File: USOacCubRBGfwO-wBSTn3RLeqPY.mft (raw, json)
Hash identifier: wTlDWkN1OrgCWi5uBJnPtpPPl/0K5+qZl/XEeGn+EVQ=
Subject key identifier: B1:D8:F4:CC:53:37:4D:F4:68:95:B1:E0:52:6F:45:17:23:42:FE:62
Authority key identifier: 51:23:9A:70:2B:9B:44:11:9F:C0:EF:B0:05:24:E7:DD:12:DE:A8:F6
Certificate issuer: /CN=51239a702b9b44119fc0efb00524e7dd12dea8f6
Certificate serial: 01987298CBE681B95CB83AACBCDF1FB0F786
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
Manifest number: 12A8
Signing time: Mon 04 Aug 2025 01:01:12 +0000
Manifest this update: Mon 04 Aug 2025 01:01:12 +0000
Manifest next update: Tue 05 Aug 2025 01:01:12 +0000
Files and hashes: 1: OA9cjZfM9pcs189DQL3OK7PNscQ.roa (hash: k0wLUi6w93vs71XE/cCMCBIvwa+yuzcb+Mk+I80oin8=)
2: USOacCubRBGfwO-wBSTn3RLeqPY.crl (hash: BkmmT5YXWzYFThJ7U4NiKFpm3VLQreTqz5yG7QSTPDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:cb:e6:81:b9:5c:b8:3a:ac:bc:df:1f:b0:f7:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51239a702b9b44119fc0efb00524e7dd12dea8f6
Validity
Not Before: Aug 4 01:01:12 2025 GMT
Not After : Aug 5 01:01:12 2025 GMT
Subject: CN=b1d8f4cc53374df46895b1e0526f45172342fe62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:90:3a:b9:9e:b2:45:b9:d7:4f:27:8c:9e:74:
96:36:9a:19:fe:ae:5a:56:c2:eb:b7:98:95:f4:e3:
78:f0:de:64:64:29:0e:9c:26:6f:6d:85:d9:85:a0:
3e:7d:d8:5e:22:08:05:f5:d3:09:a5:91:66:a3:47:
15:58:93:54:40:4c:cf:82:8e:af:99:e9:55:02:03:
8e:23:ed:83:f1:da:a4:7d:91:84:6b:8d:97:86:c5:
96:a4:36:aa:61:1f:6f:0e:5c:e1:94:5f:b1:dc:d2:
62:30:71:ba:b9:d8:2f:a9:66:04:59:62:6b:03:01:
ef:3b:1b:61:13:3b:bf:30:77:06:82:2b:38:55:d4:
e4:e1:3d:b5:b5:69:82:4b:ad:94:06:6f:24:80:dd:
f3:c6:2e:5b:f3:4f:96:9d:7b:a3:b2:7a:98:70:09:
65:05:8e:f8:0e:cf:d5:5e:94:53:eb:a1:24:8e:26:
c8:4d:b2:70:dd:84:dc:25:c3:00:b4:8f:54:5b:1b:
16:eb:85:4c:8d:66:00:c1:eb:46:f7:0c:82:b8:5d:
eb:40:f2:64:44:d4:71:86:cd:71:66:d1:37:22:6e:
1c:b9:34:c6:d2:1a:fb:60:86:25:f2:db:b4:6b:35:
ff:21:36:ee:35:a4:04:17:9e:8e:ab:6b:50:e1:df:
67:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D8:F4:CC:53:37:4D:F4:68:95:B1:E0:52:6F:45:17:23:42:FE:62
X509v3 Authority Key Identifier:
keyid:51:23:9A:70:2B:9B:44:11:9F:C0:EF:B0:05:24:E7:DD:12:DE:A8:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:99:81:a0:bb:46:15:93:6c:2b:a5:e5:50:2b:76:57:f2:7c:
29:50:d7:b7:05:04:18:84:f9:dd:c0:7c:5f:7a:f9:a2:cb:cd:
6d:ec:4a:2b:fb:fc:79:68:6b:8c:5e:f4:68:ae:1a:c0:c5:26:
b3:96:12:77:8a:78:1c:db:d9:83:5c:ae:2d:65:2c:d5:03:e9:
6d:9b:b7:eb:f6:43:b1:45:92:3b:10:9a:42:c5:e0:92:3a:b6:
01:0a:30:37:76:f1:0c:19:dc:05:e4:9d:2d:d1:24:58:64:fa:
d3:0b:2b:dd:f1:c7:85:d2:71:a9:33:67:f3:70:ed:41:f5:c8:
e8:82:d2:0a:53:cd:c4:b2:6f:12:e2:1e:88:e8:1c:a8:c7:86:
a7:98:ee:14:49:e9:d6:92:b3:d4:f9:0c:e9:c6:74:3a:6c:0e:
8d:fb:b9:a1:bd:db:7d:4b:82:87:e7:53:38:b2:71:4b:7b:e1:
d0:b9:29:7b:f3:f3:41:f1:e7:1f:5c:8a:58:da:24:e8:d8:9c:
ca:19:75:95:fb:46:17:21:7c:78:68:bc:0c:95:19:0c:f9:56:
e6:a5:74:3b:27:07:3f:3d:84:25:0b:09:54:d3:52:2f:6a:24:
8b:d9:3d:4c:87:42:4a:c7:87:a7:a8:af:56:55:3d:90:d2:cb:
88:e3:44:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:03 2025 by rpki-client