Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: BnVG1QvdxWFKsPTcWkhMOdmwKUVu759OP2FaiNN+tx0=
Subject key identifier: EC:66:1C:3B:DF:A5:5C:2C:01:F5:02:CE:C9:E3:57:9D:C8:1A:FF:8C
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 01958BF20E9E64F7E5A7FA9693F41FB8499B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 04FA
Signing time: Wed 12 Mar 2025 20:00:51 +0000
Manifest this update: Wed 12 Mar 2025 20:00:51 +0000
Manifest next update: Thu 13 Mar 2025 20:00:51 +0000
Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: 19TG3UD5TpnQsiOKuDFG5LzApgSU842yR3Lpv4Etl0M=)
2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:0e:9e:64:f7:e5:a7:fa:96:93:f4:1f:b8:49:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Mar 12 20:00:51 2025 GMT
Not After : Mar 13 20:00:51 2025 GMT
Subject: CN=ec661c3bdfa55c2c01f502cec9e3579dc81aff8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:30:d1:93:81:56:d8:56:07:d6:36:4e:dc:f1:
bb:4a:0e:a3:9f:d4:40:97:c4:4f:9c:c1:c2:20:4b:
41:ce:00:4f:59:b1:47:93:18:1e:a0:5e:a4:c9:c2:
a0:4c:84:59:03:04:96:bf:07:cb:c8:29:b1:f2:09:
09:4b:72:56:30:d1:9e:2d:1c:ec:6d:a7:52:65:02:
f3:52:99:c3:31:08:ed:06:b3:bc:e0:92:ca:37:bf:
3e:66:e4:f2:d1:66:f4:09:2a:0f:8b:0f:1a:8e:48:
06:42:20:ce:14:dd:06:78:a8:b8:48:2c:f0:01:0a:
5b:dc:85:b7:a0:e6:08:27:43:0d:e2:ba:40:69:89:
40:5d:88:69:4d:eb:e6:b4:49:d6:aa:33:9a:d0:0e:
ab:69:17:1e:4c:3d:33:a7:d3:49:05:7c:1c:98:47:
b8:4f:75:01:04:6f:d5:30:c9:70:8b:fd:c2:23:23:
35:be:e6:d9:3d:b7:85:57:bc:96:3b:12:c4:ba:e7:
9f:ac:7a:d4:02:20:09:de:02:45:89:77:5d:ab:be:
b2:23:ac:87:a6:5e:6d:34:e1:7f:fc:37:92:32:58:
0b:b9:24:c9:7b:31:e2:3a:9c:c8:53:66:b4:b9:55:
24:88:80:3e:21:4c:6c:82:5c:ed:91:40:58:04:8e:
f6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:66:1C:3B:DF:A5:5C:2C:01:F5:02:CE:C9:E3:57:9D:C8:1A:FF:8C
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:29:7a:a1:b1:09:e4:c7:a9:c4:6a:cf:48:79:f2:d3:f0:47:
0a:d7:5e:35:77:2b:83:f6:41:d9:57:53:20:1b:72:d1:50:af:
7e:1d:9d:1e:5a:79:38:98:63:08:ed:22:a8:6b:0a:52:3b:5f:
eb:b4:b5:b1:b9:8f:7b:eb:ef:ae:85:5d:7c:1c:40:d5:f5:bf:
38:2d:6b:f1:6c:2e:0c:8d:64:66:b7:eb:1a:8d:f9:fd:1b:a9:
c5:83:ea:98:cf:86:24:f2:a1:31:0b:5e:31:cc:ef:da:df:9c:
9e:1e:ec:39:76:85:20:bf:3e:27:4d:da:81:88:6c:66:6c:de:
cf:61:25:8b:3e:dc:9a:45:1f:ae:9c:1c:48:02:5b:80:d7:a8:
15:3c:22:40:18:77:fe:c5:c4:32:ec:ce:82:5b:30:e9:98:07:
bb:94:ff:5d:55:f4:f2:39:59:72:fa:3e:69:19:eb:fe:65:fc:
ac:51:97:81:48:23:c9:8c:85:23:eb:66:9e:5e:b8:ac:fd:d2:
ae:14:d0:1e:b2:65:f3:76:0d:69:c6:3e:5a:bb:68:a6:3f:3a:
e7:f5:00:53:08:e1:08:64:c8:4e:e7:11:8b:bd:bf:4c:8e:d4:
a0:8b:21:63:18:1e:4f:f2:ee:28:4b:69:03:33:5b:92:8c:52:
f9:86:bc:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWL8g6eZPflp/qWk/QfuEmbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNmY1MWNhMjM5ODIxMDNmZmUzNGY5ODkwZDBiNzRlOGZh
NzgxYWYwHhcNMjUwMzEyMjAwMDUxWhcNMjUwMzEzMjAwMDUxWjAzMTEwLwYDVQQD
EyhlYzY2MWMzYmRmYTU1YzJjMDFmNTAyY2VjOWUzNTc5ZGM4MWFmZjhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzDRk4FW2FYH1jZO3PG7Sg6jn9RA
l8RPnMHCIEtBzgBPWbFHkxgeoF6kycKgTIRZAwSWvwfLyCmx8gkJS3JWMNGeLRzs
badSZQLzUpnDMQjtBrO84JLKN78+ZuTy0Wb0CSoPiw8ajkgGQiDOFN0GeKi4SCzw
AQpb3IW3oOYIJ0MN4rpAaYlAXYhpTevmtEnWqjOa0A6raRceTD0zp9NJBXwcmEe4
T3UBBG/VMMlwi/3CIyM1vubZPbeFV7yWOxLEuuefrHrUAiAJ3gJFiXddq76yI6yH
pl5tNOF//DeSMlgLuSTJezHiOpzIU2a0uVUkiIA+IUxsglztkUBYBI72FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOxmHDvfpVwsAfUCzsnjV53IGv+MMB8GA1UdIwQY
MBaAFDJvUcojmCED/+NPmJDQt06Pp4GvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYt
OTY2ZmE5NmJlZmYyLzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYtOTY2ZmE5NmJlZmYy
LzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAACl6obEJ
5MepxGrPSHny0/BHCtdeNXcrg/ZB2VdTIBty0VCvfh2dHlp5OJhjCO0iqGsKUjtf
67S1sbmPe+vvroVdfBxA1fW/OC1r8WwuDI1kZrfrGo35/RupxYPqmM+GJPKhMQte
Mczv2t+cnh7sOXaFIL8+J03agYhsZmzez2Eliz7cmkUfrpwcSAJbgNeoFTwiQBh3
/sXEMuzOglsw6ZgHu5T/XVX08jlZcvo+aRnr/mX8rFGXgUgjyYyFI+tmnl64rP3S
rhTQHrJl83YNacY+Wrtopj865/UAUwjhCGTITucRi72/TI7UoIshYxgeT/LuKEtp
AzNbkoxS+Ya89g==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:30 2025 by rpki-client