Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: O3OIoXrQlT+C4/la1FSJghiQc3Ka4sCH6fdbOJd3tG0=
Subject key identifier: 2D:28:9F:CE:14:1D:98:B8:A9:F3:F0:40:BC:18:19:27:2A:4E:06:24
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 01974A0CC69716344C1856EE69930EE49636
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 05E1
Signing time: Sat 07 Jun 2025 11:00:40 +0000
Manifest this update: Sat 07 Jun 2025 11:00:40 +0000
Manifest next update: Sun 08 Jun 2025 11:00:40 +0000
Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: gPSVKqg+EKHUXstvvUx9S20T/cnlmeBoYm8i9ADfIsA=)
2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:c6:97:16:34:4c:18:56:ee:69:93:0e:e4:96:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Jun 7 11:00:40 2025 GMT
Not After : Jun 8 11:00:40 2025 GMT
Subject: CN=2d289fce141d98b8a9f3f040bc1819272a4e0624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:74:ac:92:66:2f:56:cc:87:d9:a0:98:fe:bb:
3a:a3:c5:9d:93:9d:88:b2:37:ff:fa:f2:eb:3a:96:
28:6b:a9:47:de:91:14:1d:be:92:e5:8e:45:92:4e:
e4:ee:11:9d:6c:01:0a:93:dd:2f:60:dd:d2:e2:be:
2f:10:5f:b9:b0:69:54:ba:85:a4:9a:8d:1f:82:4d:
e8:de:c8:b7:46:7c:d2:43:ed:b6:b2:06:c9:e0:9c:
b2:23:3d:e1:99:8f:8b:f0:68:53:45:99:12:3c:bb:
02:f9:0e:fe:8e:0d:c1:7b:fd:2e:71:32:56:34:e5:
30:69:ce:f6:cd:c0:ec:71:0a:93:95:89:da:be:1b:
a6:24:c8:37:cc:7c:6a:d2:b4:d6:48:08:02:6c:a2:
7c:d5:b7:9b:cd:ff:62:b7:d1:ff:aa:c9:5a:7f:b5:
23:fb:e5:2f:ae:d8:13:fd:e2:17:85:bd:23:25:7f:
4b:62:7a:82:13:d8:8b:51:c3:98:b7:98:ef:d0:ad:
e3:45:59:d1:73:c1:3a:16:8c:ef:12:92:47:fc:59:
22:26:15:8e:65:3b:bd:fb:4c:0d:f4:62:3b:40:7d:
ec:d5:62:ca:54:35:0f:ba:37:b8:51:14:02:ab:55:
88:e5:b3:8d:18:15:2a:0f:13:a8:be:9d:49:0c:44:
24:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:28:9F:CE:14:1D:98:B8:A9:F3:F0:40:BC:18:19:27:2A:4E:06:24
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:f0:38:a6:96:a1:b9:e9:16:60:37:33:d5:38:38:58:09:1b:
38:d9:2f:51:b0:fc:cd:d9:a1:a3:2c:59:a9:29:00:2b:89:a9:
2e:74:31:95:81:97:24:74:d7:51:03:b6:2d:e2:b8:d8:ba:c3:
d5:e7:30:50:55:c1:bc:4a:bc:12:d9:0e:4f:bd:b9:fd:c7:e3:
58:13:94:7d:78:92:fe:ff:17:72:70:4c:c0:33:a6:fb:ab:43:
a4:e6:12:69:0b:51:50:1f:3a:b9:97:e1:b7:11:f1:85:a3:14:
aa:87:8a:8f:df:a8:78:19:69:7f:9f:3a:20:9a:b9:8e:1a:83:
ba:3e:67:dd:71:20:77:a3:fb:c9:32:75:a6:a8:b1:14:03:bc:
3c:44:de:b4:4f:41:c5:56:8d:ec:60:d8:c6:52:65:4c:39:41:
cb:99:48:7c:12:b2:bf:d1:d5:3f:cc:6a:b5:ca:c5:f8:23:c6:
61:b0:1b:30:52:16:7f:02:aa:e4:88:11:9a:4c:c7:33:4b:58:
9b:d0:dc:85:a9:97:bd:1c:77:a6:ba:50:aa:1e:9a:1c:bc:18:
7d:26:1f:38:fd:c7:ea:81:4f:0d:4d:e4:a7:fc:ac:02:f7:66:
d7:3e:a1:80:b9:04:a9:d4:66:c0:b5:64:e4:98:39:1e:1f:1c:
02:ad:e0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:35:04 2025 by rpki-client