Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: Mfg0Dc3ICtil1UNVmX9Qn7bEt0toFK/p4EYKKYbgcBY=
Subject key identifier: FA:02:09:10:96:AA:8D:F2:87:69:F6:41:53:6F:14:5B:E8:9F:A5:80
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 019512475EC0C43E5B2E64EA6B50204B71ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 04BB
Signing time: Mon 17 Feb 2025 05:00:21 +0000
Manifest this update: Mon 17 Feb 2025 05:00:21 +0000
Manifest next update: Tue 18 Feb 2025 05:00:21 +0000
Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: BNynefkZcsqKu0DY9j04CYS5wpQuLW79Z6Z3ByATSkI=)
2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:5e:c0:c4:3e:5b:2e:64:ea:6b:50:20:4b:71:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Feb 17 05:00:21 2025 GMT
Not After : Feb 18 05:00:21 2025 GMT
Subject: CN=fa02091096aa8df28769f641536f145be89fa580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:42:fb:bf:c3:14:fd:81:61:e3:91:3c:fc:3f:
3c:e4:b6:8d:a2:e9:c4:b6:7d:95:60:56:4d:a9:7f:
ce:e3:3a:8b:4b:a1:99:d5:bd:5d:11:3d:29:bd:14:
1f:03:99:b9:ca:5f:22:26:f7:fd:f6:04:70:30:ea:
78:e7:61:c0:9d:a8:3e:2c:4c:4e:fb:e2:16:c1:cf:
69:fd:fc:55:bd:7b:65:a1:3d:96:f1:c9:8d:8c:e3:
a1:55:8a:96:ed:53:d1:2d:f7:ff:15:00:44:06:24:
3e:1e:7f:48:ee:d5:c3:74:26:2b:e1:27:cf:37:e0:
b1:2b:65:4b:58:22:a0:bf:56:ba:f1:72:7c:6f:e0:
bd:45:e6:e8:99:a4:1a:ed:7e:24:ff:9d:01:08:02:
9e:a0:02:85:31:04:7b:a9:c7:54:2c:3a:b7:da:69:
30:b4:af:17:c4:b0:07:9e:e7:f0:d1:05:68:d7:6d:
23:a9:4c:5f:b6:13:8d:c2:dd:8c:28:c3:a5:2c:17:
45:ac:19:b4:bb:ea:e2:20:5b:62:fe:90:43:bb:52:
f4:b7:47:22:7a:fd:69:5e:2b:e5:98:77:49:ef:9d:
be:32:60:97:a1:b5:0c:10:38:94:d3:93:b0:8c:5e:
0a:f2:5c:a0:d4:fe:74:80:81:20:e6:db:f9:1f:92:
f5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:02:09:10:96:AA:8D:F2:87:69:F6:41:53:6F:14:5B:E8:9F:A5:80
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:71:6d:2a:9c:b7:e8:d5:50:5f:93:ee:57:80:c6:8a:73:81:
1f:ee:ac:e7:88:5a:17:ab:08:64:28:5e:45:9e:fd:5f:31:05:
2d:ab:f6:6c:05:b9:0f:57:01:a2:85:4a:6a:20:36:ec:7d:61:
33:80:c7:a5:58:41:e5:41:32:3f:b8:5d:a8:2e:bf:dc:0e:9d:
69:0e:d8:60:68:f3:62:dd:3a:0c:c3:13:23:71:2a:a3:9c:e5:
ac:68:4b:fc:f2:73:73:dc:23:68:e4:f0:e4:c2:2a:64:cc:1d:
ee:39:f1:6b:d6:5e:cf:85:51:d2:6a:2a:73:50:18:6c:ef:ec:
d5:99:87:21:a6:0b:67:6c:21:3d:59:3e:3f:a8:1c:97:cc:ba:
eb:fa:95:22:1c:25:91:e9:eb:84:ed:b1:82:31:44:60:14:98:
85:25:46:f5:fd:1b:8b:80:2b:04:5e:26:cb:11:f9:a1:c0:61:
0f:0c:24:5d:b5:3b:79:d7:57:63:72:0b:57:b2:7b:ce:ca:31:
e8:ea:5e:cd:2d:16:e9:30:9a:58:75:71:61:73:91:5d:08:12:
3d:14:9e:01:1a:ef:40:6d:6f:ec:c3:b3:d1:fa:5b:42:6f:18:
53:5c:0c:27:3c:58:cd:07:7d:33:30:7d:3a:aa:12:58:47:66:
20:c6:cd:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSR17AxD5bLmTqa1AgS3HtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNmY1MWNhMjM5ODIxMDNmZmUzNGY5ODkwZDBiNzRlOGZh
NzgxYWYwHhcNMjUwMjE3MDUwMDIxWhcNMjUwMjE4MDUwMDIxWjAzMTEwLwYDVQQD
EyhmYTAyMDkxMDk2YWE4ZGYyODc2OWY2NDE1MzZmMTQ1YmU4OWZhNTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArkL7v8MU/YFh45E8/D885LaNounE
tn2VYFZNqX/O4zqLS6GZ1b1dET0pvRQfA5m5yl8iJvf99gRwMOp452HAnag+LExO
++IWwc9p/fxVvXtloT2W8cmNjOOhVYqW7VPRLff/FQBEBiQ+Hn9I7tXDdCYr4SfP
N+CxK2VLWCKgv1a68XJ8b+C9RebomaQa7X4k/50BCAKeoAKFMQR7qcdULDq32mkw
tK8XxLAHnufw0QVo120jqUxfthONwt2MKMOlLBdFrBm0u+riIFti/pBDu1L0t0ci
ev1pXivlmHdJ752+MmCXobUMEDiU05OwjF4K8lyg1P50gIEg5tv5H5L1VwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPoCCRCWqo3yh2n2QVNvFFvon6WAMB8GA1UdIwQY
MBaAFDJvUcojmCED/+NPmJDQt06Pp4GvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYt
OTY2ZmE5NmJlZmYyLzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYtOTY2ZmE5NmJlZmYy
LzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlXFtKpy3
6NVQX5PuV4DGinOBH+6s54haF6sIZCheRZ79XzEFLav2bAW5D1cBooVKaiA27H1h
M4DHpVhB5UEyP7hdqC6/3A6daQ7YYGjzYt06DMMTI3Eqo5zlrGhL/PJzc9wjaOTw
5MIqZMwd7jnxa9Zez4VR0moqc1AYbO/s1ZmHIaYLZ2whPVk+P6gcl8y66/qVIhwl
kenrhO2xgjFEYBSYhSVG9f0bi4ArBF4myxH5ocBhDwwkXbU7eddXY3ILV7J7zsox
6OpezS0W6TCaWHVxYXORXQgSPRSeARrvQG1v7MOz0fpbQm8YU1wMJzxYzQd9MzB9
OqoSWEdmIMbNQg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:14 2025 by rpki-client