Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
File: nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft (raw, json)
Hash identifier: inL6nEFBucWRiqeuU4uheX08A4HdtksI9yZxdJ3O37c=
Subject key identifier: DE:3B:32:7D:3F:3C:3E:28:5E:6A:08:D3:E1:E2:44:85:6B:FB:08:17
Authority key identifier: 9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
Certificate issuer: /CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Certificate serial: 019652367EADEFD931181DC31CF26A343DF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
Manifest number: 0E22
Signing time: Sun 20 Apr 2025 08:00:25 +0000
Manifest this update: Sun 20 Apr 2025 08:00:25 +0000
Manifest next update: Mon 21 Apr 2025 08:00:25 +0000
Files and hashes: 1: nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl (hash: 8x7yebd4Ewg2b7h5nwYrQLTb2j95Y2gcgtjfnxCIa1E=)
2: xk36of5GcRMNZGUJt-_5r_QctTo.roa (hash: BbMVXEvQwTUOBV0n4W+iUw7Na6Uh7I6Smkrm6hqGQWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:7e:ad:ef:d9:31:18:1d:c3:1c:f2:6a:34:3d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Validity
Not Before: Apr 20 08:00:25 2025 GMT
Not After : Apr 21 08:00:25 2025 GMT
Subject: CN=de3b327d3f3c3e285e6a08d3e1e244856bfb0817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:10:02:57:9e:f6:89:41:1b:75:f4:68:e2:8c:
18:0f:14:2e:af:54:28:b5:55:ff:61:e7:e9:0b:cf:
0b:fc:5b:4d:79:27:a4:88:fa:e0:ae:b3:7a:d7:f2:
57:f5:36:76:c9:ea:23:4a:23:cf:32:b8:88:49:7f:
04:31:f0:99:90:e9:91:a8:32:83:2e:12:5e:65:1f:
26:5e:d1:3b:c1:78:ab:a4:d8:42:88:8e:55:11:f7:
b8:76:d0:88:ce:be:45:1a:9e:e3:8d:22:b0:69:3f:
c0:3f:26:1d:c2:cf:41:b6:78:52:16:b2:91:2c:e0:
a4:d4:4e:6b:3a:be:3f:70:5e:03:84:53:02:8e:67:
da:d5:5d:a2:34:d1:e7:3b:a6:65:0c:3e:fe:9c:21:
f4:e5:07:82:86:d3:d5:7e:e4:a4:c5:45:37:f1:38:
a1:7a:f1:67:f6:d4:dc:b0:4e:3d:87:7d:9b:aa:51:
eb:48:50:26:88:9d:d1:1d:e4:0b:2d:5c:fd:88:74:
ea:16:27:a3:bb:3e:ee:8d:f5:c6:98:9d:96:24:bf:
50:f5:e1:cf:8a:3c:aa:7d:c1:52:a1:13:1b:4a:c3:
c3:f0:ff:31:9e:47:a1:bf:47:63:84:08:97:a9:5a:
cb:d8:86:b9:13:73:dd:63:97:59:95:a7:23:a5:b1:
ce:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:3B:32:7D:3F:3C:3E:28:5E:6A:08:D3:E1:E2:44:85:6B:FB:08:17
X509v3 Authority Key Identifier:
keyid:9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:51:7e:fd:0a:45:35:c8:32:c0:3e:80:76:29:36:38:b8:fc:
de:f2:7c:03:65:06:17:a1:45:59:bb:25:cf:39:02:c9:e4:d7:
29:4f:7b:19:cf:7a:d4:60:4e:9d:db:d5:a4:49:13:46:1e:06:
26:6b:7b:4e:4f:a7:97:c3:8e:d6:a0:8a:47:11:a7:9c:7c:c4:
d2:0e:72:39:48:77:cd:b0:67:14:23:cf:f4:38:15:cc:55:12:
6c:39:53:17:8e:87:b4:49:f7:48:87:49:b3:0d:7b:dc:37:6b:
51:00:6a:da:bf:f7:b7:83:b2:79:11:cf:44:c9:40:a5:4c:04:
e2:b4:39:67:c2:be:3f:c6:fa:0a:a3:cc:df:e9:a2:52:a1:94:
f8:8c:c5:be:96:de:6c:4a:c9:36:69:88:d4:5c:a0:90:b1:4c:
19:22:9b:05:1e:ea:a2:7e:ed:b2:77:5b:5a:df:4a:17:7c:40:
94:80:56:f9:1f:a6:8e:9b:c4:d3:b1:08:06:5d:59:cb:fa:94:
2d:03:1f:97:65:51:ac:64:ec:2f:a8:b5:3a:40:1f:12:b4:6a:
8b:b6:05:06:67:db:c8:b4:ed:0f:ee:af:0b:ea:dc:d3:f7:2b:
7f:b4:59:ad:3e:3a:b6:40:e5:1f:b7:00:51:2e:3f:c3:06:95:
e3:2c:90:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZSNn6t79kxGB3DHPJqND35MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMjQwNjRmOTUzMzFjZjFmMzE1ZGM1MGRlNGRiMDVmZjk1
YWE0MTAwHhcNMjUwNDIwMDgwMDI1WhcNMjUwNDIxMDgwMDI1WjAzMTEwLwYDVQQD
EyhkZTNiMzI3ZDNmM2MzZTI4NWU2YTA4ZDNlMWUyNDQ4NTZiZmIwODE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjxACV572iUEbdfRo4owYDxQur1Qo
tVX/YefpC88L/FtNeSekiPrgrrN61/JX9TZ2yeojSiPPMriISX8EMfCZkOmRqDKD
LhJeZR8mXtE7wXirpNhCiI5VEfe4dtCIzr5FGp7jjSKwaT/APyYdws9BtnhSFrKR
LOCk1E5rOr4/cF4DhFMCjmfa1V2iNNHnO6ZlDD7+nCH05QeChtPVfuSkxUU38Tih
evFn9tTcsE49h32bqlHrSFAmiJ3RHeQLLVz9iHTqFiejuz7ujfXGmJ2WJL9Q9eHP
ijyqfcFSoRMbSsPD8P8xnkehv0djhAiXqVrL2Ia5E3PdY5dZlacjpbHOXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN47Mn0/PD4oXmoI0+HiRIVr+wgXMB8GA1UdIwQY
MBaAFJ8kBk+VMxzx8xXcUN5NsF/5WqQQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnlRR1Q1VXpIUEh6RmR4UTNrMndYX2xhcEJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80MDA3OWItZmNhYS00NmQ5LTgxNjEt
NjZhNmM4MGQyNmE1LzEvbnlRR1Q1VXpIUEh6RmR4UTNrMndYX2xhcEJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi80MDA3OWItZmNhYS00NmQ5LTgxNjEtNjZhNmM4MGQyNmE1
LzEvbnlRR1Q1VXpIUEh6RmR4UTNrMndYX2xhcEJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAolF+/QpF
NcgywD6Adik2OLj83vJ8A2UGF6FFWbslzzkCyeTXKU97Gc961GBOndvVpEkTRh4G
Jmt7Tk+nl8OO1qCKRxGnnHzE0g5yOUh3zbBnFCPP9DgVzFUSbDlTF46HtEn3SIdJ
sw173DdrUQBq2r/3t4OyeRHPRMlApUwE4rQ5Z8K+P8b6CqPM3+miUqGU+IzFvpbe
bErJNmmI1FygkLFMGSKbBR7qon7tsndbWt9KF3xAlIBW+R+mjpvE07EIBl1Zy/qU
LQMfl2VRrGTsL6i1OkAfErRqi7YFBmfbyLTtD+6vC+rc0/crf7RZrT46tkDlH7cA
US4/wwaV4yyQog==
-----END CERTIFICATE-----
Generated at Sun Apr 20 14:43:45 2025 by rpki-client