Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
File: USOacCubRBGfwO-wBSTn3RLeqPY.mft (raw, json)
Hash identifier: H8o3YEiufXje/j6zikgSus4dqnHm0DPaGDFYssNOMhk=
Subject key identifier: 36:AE:97:BC:4F:ED:82:95:67:C2:8E:B8:0A:52:DA:6F:39:05:D6:02
Authority key identifier: 51:23:9A:70:2B:9B:44:11:9F:C0:EF:B0:05:24:E7:DD:12:DE:A8:F6
Certificate issuer: /CN=51239a702b9b44119fc0efb00524e7dd12dea8f6
Certificate serial: 01976BF40F7B15F38EE0B47950340AD3F68D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
Manifest number: 1220
Signing time: Sat 14 Jun 2025 01:00:46 +0000
Manifest this update: Sat 14 Jun 2025 01:00:46 +0000
Manifest next update: Sun 15 Jun 2025 01:00:46 +0000
Files and hashes: 1: OA9cjZfM9pcs189DQL3OK7PNscQ.roa (hash: k0wLUi6w93vs71XE/cCMCBIvwa+yuzcb+Mk+I80oin8=)
2: USOacCubRBGfwO-wBSTn3RLeqPY.crl (hash: j2AWULo+h/m4ostYzwIYGmpQTQrUhNGoVkgGo16UNvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:0f:7b:15:f3:8e:e0:b4:79:50:34:0a:d3:f6:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51239a702b9b44119fc0efb00524e7dd12dea8f6
Validity
Not Before: Jun 14 01:00:46 2025 GMT
Not After : Jun 15 01:00:46 2025 GMT
Subject: CN=36ae97bc4fed829567c28eb80a52da6f3905d602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:75:26:62:6a:2c:d4:87:e1:7d:7b:58:fa:
75:f3:eb:8a:a7:26:d6:ef:99:99:5e:65:31:c7:53:
ce:7e:c2:9c:b5:7a:0d:bb:ca:bd:da:1a:2d:26:08:
ec:3b:48:eb:3b:fc:ad:3b:6d:43:10:97:30:ef:a1:
7e:50:2c:e5:04:b5:22:2a:ec:23:dd:4d:61:eb:a2:
f0:08:65:dc:09:8e:4b:42:97:67:0e:ef:2e:ca:a8:
e9:45:b2:e9:95:4f:d6:71:70:9f:c4:90:1b:d0:c2:
f1:5b:d8:3c:a3:71:5a:de:c2:76:d9:22:eb:ee:db:
fc:a9:35:06:dd:b4:b6:c3:1b:83:b1:e1:30:13:ef:
3c:94:f8:89:55:f5:82:83:b7:27:ae:c3:67:b6:06:
2a:d1:13:47:31:91:c8:7e:47:c6:53:11:39:05:ea:
30:b0:f6:a9:d3:58:1c:92:52:f4:26:8a:81:79:44:
7f:2f:8c:28:60:13:dc:61:23:63:6a:cd:85:75:59:
f4:46:8c:6b:fe:8e:9b:0b:60:bb:76:04:aa:80:49:
88:ad:9c:ce:3b:97:a7:fd:90:77:00:e9:dd:9c:0f:
4a:e2:c4:8a:16:0b:3f:cf:d8:28:20:99:30:7f:21:
e9:7f:8e:d6:dc:90:6a:28:91:26:57:47:2a:65:5f:
9c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:AE:97:BC:4F:ED:82:95:67:C2:8E:B8:0A:52:DA:6F:39:05:D6:02
X509v3 Authority Key Identifier:
keyid:51:23:9A:70:2B:9B:44:11:9F:C0:EF:B0:05:24:E7:DD:12:DE:A8:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:0f:8b:41:b7:aa:82:da:38:c9:b5:6f:09:d8:b5:ca:bc:b4:
76:5e:0b:83:49:ac:ad:31:7f:50:06:48:54:d1:50:47:4a:9b:
98:4d:bd:b6:ca:2b:d1:0a:fc:fa:7c:b8:40:87:e0:ab:14:08:
75:6e:d7:43:bd:8c:7c:a1:62:8f:a1:17:b2:6a:b3:0a:22:1d:
5f:5c:e3:99:a3:6d:7b:9b:bb:10:8a:70:5b:6f:17:7c:9e:1d:
17:7f:3e:03:0f:dc:13:a4:a1:04:7d:73:63:2a:fd:85:a8:66:
4a:67:92:d4:25:b7:64:10:5e:13:f3:09:c0:26:44:38:b3:42:
41:1d:8b:a4:ed:23:58:c5:4d:f4:f5:8a:4f:53:c1:24:4e:f5:
4c:52:f8:ce:6f:49:de:ad:4a:04:cc:1e:cb:76:41:5a:13:1c:
bf:f1:dd:08:71:01:b8:d3:22:8d:46:ca:f6:4e:8f:40:75:60:
a3:2f:9a:a3:cd:a3:5d:d6:9b:ad:b9:26:02:d9:0a:6b:3b:4b:
63:b5:4f:00:ac:c4:51:3e:54:b8:dd:9d:08:2a:69:0b:3e:be:
a8:67:fa:05:be:80:3f:57:0b:32:7d:94:89:33:03:41:03:d0:
c8:96:01:fd:f2:26:5f:c4:06:18:aa:aa:ea:4b:36:c7:5b:3c:
6b:ed:d3:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:35:52 2025 by rpki-client