Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft
File: USGZZlSgu08AhYxAKoILtkvglUc.mft (raw, json)
Hash identifier: ot0XOKFHykBRaUxdx9mS6lY3AqQga9hG73nAlJxFI+4=
Subject key identifier: 45:86:90:B5:61:EC:A7:19:A7:C1:39:67:3C:49:F1:83:B3:46:ED:05
Authority key identifier: 51:21:99:66:54:A0:BB:4F:00:85:8C:40:2A:82:0B:B6:4B:E0:95:47
Certificate issuer: /CN=5121996654a0bb4f00858c402a820bb64be09547
Certificate serial: 01988EEC18333A017370B985E05FDD0178AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USGZZlSgu08AhYxAKoILtkvglUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft
Manifest number: 08A4
Signing time: Sat 09 Aug 2025 13:01:34 +0000
Manifest this update: Sat 09 Aug 2025 13:01:34 +0000
Manifest next update: Sun 10 Aug 2025 13:01:34 +0000
Files and hashes: 1: USGZZlSgu08AhYxAKoILtkvglUc.crl (hash: xN46FF2PvbsWPVFHP+9b3MqthyD0Lq8KiDWhSNQnU8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/USGZZlSgu08AhYxAKoILtkvglUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:ec:18:33:3a:01:73:70:b9:85:e0:5f:dd:01:78:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5121996654a0bb4f00858c402a820bb64be09547
Validity
Not Before: Aug 9 13:01:34 2025 GMT
Not After : Aug 10 13:01:34 2025 GMT
Subject: CN=458690b561eca719a7c139673c49f183b346ed05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:09:47:a7:32:b4:82:4d:f3:96:a9:27:d8:e6:
18:d4:36:57:51:5f:4a:27:01:70:ef:7f:54:9c:06:
54:94:3b:05:9f:48:11:d3:f7:91:0e:a0:f2:14:f0:
1c:29:bb:a9:e6:4b:69:d3:4e:73:1c:c9:8f:4d:a1:
93:f8:19:09:18:b5:27:9d:47:d5:af:ed:8c:46:02:
50:77:64:40:83:9e:0a:70:e3:5d:a0:57:aa:2f:98:
52:fd:50:eb:08:2b:73:01:8b:c1:2a:69:9b:d1:b5:
06:f5:62:95:db:25:80:c9:be:eb:d7:56:eb:44:eb:
80:ee:b2:ab:57:ef:b5:d1:60:13:ca:a5:1a:be:eb:
e6:bb:91:73:0b:91:01:4b:9c:58:78:da:91:cd:59:
33:7a:4a:e2:3e:fa:12:ea:0f:df:08:9a:24:96:06:
c2:db:d9:d1:4f:88:83:a3:d2:8a:77:c3:c8:1f:96:
1a:73:a3:43:ac:c6:03:01:bc:67:17:5e:9c:ec:c2:
12:b4:b3:9f:88:e4:c7:c3:41:ba:c4:04:c3:af:38:
47:54:dd:83:21:e5:ed:0f:28:f8:3c:96:cd:82:13:
08:38:6d:08:40:02:f8:10:85:ee:e2:ae:18:50:09:
8f:49:a8:2f:02:8b:13:d6:c3:85:eb:d5:f3:3b:3d:
6d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:86:90:B5:61:EC:A7:19:A7:C1:39:67:3C:49:F1:83:B3:46:ED:05
X509v3 Authority Key Identifier:
keyid:51:21:99:66:54:A0:BB:4F:00:85:8C:40:2A:82:0B:B6:4B:E0:95:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USGZZlSgu08AhYxAKoILtkvglUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:e9:78:0b:99:f8:6d:65:04:be:76:8a:8b:af:c3:bd:57:2c:
88:23:61:21:71:46:46:b2:c8:7e:18:f4:50:0d:dd:21:8a:c7:
eb:cc:b2:fb:7d:ba:bf:90:4b:d9:38:96:61:16:86:0a:7c:30:
81:c0:72:30:7b:e1:98:c1:f4:1d:fb:f8:27:13:0c:ff:d6:29:
cf:f6:9d:cf:5d:d0:e2:7b:46:91:08:c0:5f:bc:50:11:51:33:
0f:95:eb:27:db:ca:90:5f:b0:00:33:9a:86:0e:62:36:ed:3c:
c3:a6:2d:bd:88:97:7a:05:34:fd:a8:40:c7:a1:de:d1:5a:08:
ad:8d:53:fd:79:18:ba:8b:df:29:88:45:4e:bd:fb:af:b0:17:
8f:2c:d6:2e:f4:09:7f:6b:98:7c:e4:93:51:92:c3:a5:21:05:
40:99:b7:f3:b1:9b:39:5d:38:af:40:9b:d1:de:4c:62:ee:c8:
07:34:25:28:f2:a4:82:22:91:da:e6:f7:d8:6a:5b:4e:af:fd:
11:b5:40:a1:71:44:b7:17:53:ff:8e:71:36:18:6f:ef:3e:a6:
3c:59:e0:d3:53:46:24:10:f4:32:8f:8e:6d:d7:6f:b9:3f:13:
37:e9:b5:f9:06:88:2f:13:bf:ff:05:c6:ca:49:a8:ad:9f:f9:
18:bc:b8:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:24:15 2025 by rpki-client