Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: +5PkQI9le0miLm5wwSUDn0Sz1FCkjF/l0HaPRse/IkI=
Subject key identifier: C4:74:2C:8D:1F:8C:B3:EF:C2:C7:2F:DD:F0:67:FF:B9:95:B4:36:0D
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 019652DB699F54FF9CDEAF3780B0382CA682
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 0561
Signing time: Sun 20 Apr 2025 11:00:33 +0000
Manifest this update: Sun 20 Apr 2025 11:00:33 +0000
Manifest next update: Mon 21 Apr 2025 11:00:33 +0000
Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: WapHzY/p8ilb8pF8tQuhpFQPU9nuZCvqLOkmbDEdDoo=)
2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:69:9f:54:ff:9c:de:af:37:80:b0:38:2c:a6:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Apr 20 11:00:33 2025 GMT
Not After : Apr 21 11:00:33 2025 GMT
Subject: CN=c4742c8d1f8cb3efc2c72fddf067ffb995b4360d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7b:e2:85:1b:d9:e0:0f:10:08:5f:1a:07:19:
8b:21:6a:8f:ac:d9:00:21:6f:24:07:d3:69:4a:c9:
21:65:09:36:f8:dc:ac:f4:94:4b:43:a2:1b:ad:07:
d7:7f:b9:06:ea:c5:65:a9:3b:27:59:8f:aa:d0:7f:
8b:f2:7c:97:ed:8a:62:81:09:92:0e:6a:57:45:58:
ff:91:af:20:f3:91:41:da:32:9d:e6:97:ff:69:b9:
1f:50:78:43:4e:87:fa:8c:2d:51:92:d6:27:01:bc:
4b:bd:f3:d2:53:bd:62:f8:4f:b3:47:67:73:af:b3:
0c:f7:74:d5:df:c6:f1:15:45:78:bc:11:2b:df:16:
eb:61:b3:4b:8f:1a:07:be:d1:4b:7b:35:80:ba:4b:
e5:b7:bf:2d:9a:2e:28:be:12:f5:bb:73:29:0d:d4:
d2:ff:f6:5c:83:c2:80:88:b8:b5:ac:0f:48:90:1a:
52:34:50:15:51:c5:63:0d:a7:7c:a8:ff:58:8f:7c:
13:44:32:80:39:c9:cf:1f:59:19:a1:be:d0:50:69:
aa:83:c1:1c:f1:f2:22:6b:6c:a7:b0:be:2f:98:a6:
01:94:69:1e:cf:89:39:1f:de:7e:cf:6f:f2:7d:d6:
35:ae:9e:a3:be:a6:af:93:dc:3b:2f:62:2c:6a:e3:
fd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:74:2C:8D:1F:8C:B3:EF:C2:C7:2F:DD:F0:67:FF:B9:95:B4:36:0D
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:14:71:7d:dd:fa:6d:ec:29:de:bb:a6:6e:78:fa:eb:8c:e9:
c9:9c:c5:0e:9b:3a:82:78:a3:73:ee:c4:ee:ba:8a:fb:4a:fd:
75:19:9a:ff:ea:fd:21:93:3d:90:1c:77:6c:48:d7:17:38:db:
bb:2c:29:79:0f:4a:d2:37:7c:95:99:5a:10:04:12:98:8c:d8:
cb:f2:94:42:5d:e9:f5:d4:16:25:29:b3:d6:ed:26:61:e5:81:
40:9a:ea:1a:be:09:e4:ee:3a:78:33:96:53:7e:dc:fb:b1:a1:
77:ef:b1:2a:87:3c:82:40:79:db:6e:c8:35:12:ba:5a:19:7e:
20:49:21:53:bd:7c:ce:f1:5f:1a:93:13:e9:7e:65:a6:9e:58:
e5:2e:7d:78:49:77:d3:b2:ad:dd:b0:e3:61:b4:ad:1a:30:01:
94:62:77:5f:f9:3f:46:fd:cd:47:b6:d9:23:43:44:b7:f5:f7:
80:3c:f4:a5:16:f4:f0:db:b6:2d:eb:39:9f:c2:b1:8f:ad:d5:
5b:bc:a5:58:15:b8:2a:b4:13:69:9b:79:e7:61:cd:c1:38:c0:
17:de:09:11:91:b4:87:a1:c2:e9:08:74:81:50:93:4b:29:d0:
49:2e:cf:61:ca:40:81:be:11:40:de:a3:9f:cc:81:1a:c6:70:
a0:8b:70:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:00:00 2025 by rpki-client