Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/ec8801-0a7c-487e-a103-525d7e22c788/1/smbm5NXff4olZUFEdV172ZLnNTk.mft
File: smbm5NXff4olZUFEdV172ZLnNTk.mft (raw, json)
Hash identifier: OzuYA4HBQU3Xr++38ZBTzzOAUrrjrdibKGFqSYje++g=
Subject key identifier: 42:9E:B0:07:EF:9B:7C:2C:BE:8B:F2:ED:FB:54:AC:93:A4:DD:DB:28
Authority key identifier: B2:66:E6:E4:D5:DF:7F:8A:25:65:41:44:75:5D:7B:D9:92:E7:35:39
Certificate issuer: /CN=b266e6e4d5df7f8a25654144755d7bd992e73539
Certificate serial: 019510903487B6EBABA980C09B8823E3DF39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/smbm5NXff4olZUFEdV172ZLnNTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/ec8801-0a7c-487e-a103-525d7e22c788/1/smbm5NXff4olZUFEdV172ZLnNTk.mft
Manifest number: 075F
Signing time: Sun 16 Feb 2025 21:00:40 +0000
Manifest this update: Sun 16 Feb 2025 21:00:40 +0000
Manifest next update: Mon 17 Feb 2025 21:00:40 +0000
Files and hashes: 1: 4UxBywVcvcMsb-HDJGoMszIr0uA.roa (hash: CPNjg2b32CAKEDe5pmcVPP+MsVRB7Gy+EYi43k44UBQ=)
2: smbm5NXff4olZUFEdV172ZLnNTk.crl (hash: jgmRkIGRPCuh/fTnoxKIKIdXf6nGcBTGAHJPlRND+J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/ec8801-0a7c-487e-a103-525d7e22c788/1/smbm5NXff4olZUFEdV172ZLnNTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/ec8801-0a7c-487e-a103-525d7e22c788/1/smbm5NXff4olZUFEdV172ZLnNTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/smbm5NXff4olZUFEdV172ZLnNTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:90:34:87:b6:eb:ab:a9:80:c0:9b:88:23:e3:df:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b266e6e4d5df7f8a25654144755d7bd992e73539
Validity
Not Before: Feb 16 21:00:40 2025 GMT
Not After : Feb 17 21:00:40 2025 GMT
Subject: CN=429eb007ef9b7c2cbe8bf2edfb54ac93a4dddb28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ac:17:96:8e:dc:a8:49:27:0c:b8:a0:2f:6e:
48:ee:fc:59:65:91:5e:db:94:e8:14:d4:ad:8c:db:
fc:5e:b7:60:38:ed:14:1b:54:75:46:ae:32:74:ce:
dc:54:ff:8d:3b:7b:ba:37:a4:d6:71:4b:81:a6:4b:
44:01:f0:b5:f8:6c:c3:fe:d6:73:23:0a:9b:38:db:
28:a5:25:7a:d9:00:60:36:cf:d1:71:1e:74:94:9e:
8d:5e:1c:a8:ab:8f:1c:1f:07:f6:88:ac:06:77:83:
28:22:1f:19:e3:52:73:e3:f7:0f:5c:45:58:38:e3:
bf:cf:66:ba:47:9f:3b:95:78:a6:3d:d2:2f:40:4a:
e0:6c:ed:c3:67:b8:1d:bb:b6:81:eb:74:19:af:59:
9e:41:16:67:70:75:ce:99:46:88:7a:0e:06:16:b9:
cf:2f:a5:e0:cd:a1:9c:1d:36:82:c3:99:c2:46:6e:
65:26:eb:3e:c6:d6:96:f6:fe:fb:85:82:27:50:36:
82:7b:d1:2c:1f:d7:58:bd:88:dd:ed:c0:08:a6:bf:
11:6f:99:ea:44:1f:b1:2e:7b:6b:fa:e5:e6:ec:62:
31:25:6f:fc:68:1b:69:44:6c:30:67:f6:70:89:d8:
4d:4d:4d:7d:53:66:49:d3:c3:9f:f8:bf:78:a5:b2:
f9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9E:B0:07:EF:9B:7C:2C:BE:8B:F2:ED:FB:54:AC:93:A4:DD:DB:28
X509v3 Authority Key Identifier:
keyid:B2:66:E6:E4:D5:DF:7F:8A:25:65:41:44:75:5D:7B:D9:92:E7:35:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/smbm5NXff4olZUFEdV172ZLnNTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/ec8801-0a7c-487e-a103-525d7e22c788/1/smbm5NXff4olZUFEdV172ZLnNTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/ec8801-0a7c-487e-a103-525d7e22c788/1/smbm5NXff4olZUFEdV172ZLnNTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:9a:43:89:15:18:55:bc:b5:c3:5a:6b:ec:15:04:d8:f6:89:
f7:ac:55:9c:ba:14:0f:2c:95:29:8d:17:d9:10:32:2c:80:a5:
80:a8:e7:20:9c:bf:e8:f9:a7:26:49:a2:d2:66:f1:d0:68:7e:
65:a2:8e:47:2a:78:9c:1e:3a:9e:fc:fa:82:07:6c:2f:c4:c1:
70:dd:53:54:eb:ef:49:8e:04:8b:23:c8:e7:b0:68:49:33:92:
8a:db:1f:87:a4:df:93:09:3c:ab:e9:f2:75:7e:17:fd:35:7a:
39:72:93:9c:7c:49:81:3a:8c:1a:fb:18:87:ff:26:be:b9:c6:
c5:27:93:6c:df:81:1c:20:78:24:35:51:44:6b:aa:71:69:fb:
b3:d9:08:60:99:20:3d:d8:69:89:ad:71:1f:91:ba:0d:f6:fa:
d2:b9:72:40:30:42:fd:bc:9b:3b:1c:64:45:a8:79:d9:5b:31:
9d:72:1b:b8:e7:f4:0f:8f:d1:e0:1c:96:13:e3:c5:31:d0:86:
49:9a:e6:7a:c9:7c:0e:bf:e1:01:71:da:70:fb:f7:4b:b5:67:
fb:5c:47:cc:5d:c4:23:e1:e4:6d:04:33:85:e0:e8:8a:86:ca:
56:07:52:45:cf:e7:ed:75:09:c4:23:85:48:ae:48:4f:52:f8:
42:4e:a6:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQkDSHtuurqYDAm4gj4985MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyNjZlNmU0ZDVkZjdmOGEyNTY1NDE0NDc1NWQ3YmQ5OTJl
NzM1MzkwHhcNMjUwMjE2MjEwMDQwWhcNMjUwMjE3MjEwMDQwWjAzMTEwLwYDVQQD
Eyg0MjllYjAwN2VmOWI3YzJjYmU4YmYyZWRmYjU0YWM5M2E0ZGRkYjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtawXlo7cqEknDLigL25I7vxZZZFe
25ToFNStjNv8XrdgOO0UG1R1Rq4ydM7cVP+NO3u6N6TWcUuBpktEAfC1+GzD/tZz
IwqbONsopSV62QBgNs/RcR50lJ6NXhyoq48cHwf2iKwGd4MoIh8Z41Jz4/cPXEVY
OOO/z2a6R587lXimPdIvQErgbO3DZ7gdu7aB63QZr1meQRZncHXOmUaIeg4GFrnP
L6XgzaGcHTaCw5nCRm5lJus+xtaW9v77hYInUDaCe9EsH9dYvYjd7cAIpr8Rb5nq
RB+xLntr+uXm7GIxJW/8aBtpRGwwZ/ZwidhNTU19U2ZJ08Of+L94pbL5yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEKesAfvm3wsvovy7ftUrJOk3dsoMB8GA1UdIwQY
MBaAFLJm5uTV33+KJWVBRHVde9mS5zU5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc21ibTVOWGZmNG9sWlVGRWRWMTcyWkxuTlRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9lYzg4MDEtMGE3Yy00ODdlLWExMDMt
NTI1ZDdlMjJjNzg4LzEvc21ibTVOWGZmNG9sWlVGRWRWMTcyWkxuTlRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9lYzg4MDEtMGE3Yy00ODdlLWExMDMtNTI1ZDdlMjJjNzg4
LzEvc21ibTVOWGZmNG9sWlVGRWRWMTcyWkxuTlRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkZpDiRUY
Vby1w1pr7BUE2PaJ96xVnLoUDyyVKY0X2RAyLIClgKjnIJy/6PmnJkmi0mbx0Gh+
ZaKORyp4nB46nvz6ggdsL8TBcN1TVOvvSY4EiyPI57BoSTOSitsfh6Tfkwk8q+ny
dX4X/TV6OXKTnHxJgTqMGvsYh/8mvrnGxSeTbN+BHCB4JDVRRGuqcWn7s9kIYJkg
Pdhpia1xH5G6Dfb60rlyQDBC/bybOxxkRah52VsxnXIbuOf0D4/R4ByWE+PFMdCG
SZrmesl8Dr/hAXHacPv3S7Vn+1xHzF3EI+HkbQQzheDoiobKVgdSRc/n7XUJxCOF
SK5IT1L4Qk6maA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:19 2025 by rpki-client