Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: sczKGa+oJUOuWMLiB+3CF3kvVzDhGsfPLGDzCHBbJCc=
Subject key identifier: E9:32:B3:FB:1F:A7:BE:B9:0C:26:76:30:56:83:36:C6:A9:5D:64:3F
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 0196778CE667C1CACD39A9938EE6FF88D9D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 0574
Signing time: Sun 27 Apr 2025 14:00:44 +0000
Manifest this update: Sun 27 Apr 2025 14:00:44 +0000
Manifest next update: Mon 28 Apr 2025 14:00:44 +0000
Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: uABToKpy3V8eTicuFow3XeFVcxUFb7nHkxEMzDA6SBY=)
2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:e6:67:c1:ca:cd:39:a9:93:8e:e6:ff:88:d9:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Apr 27 14:00:44 2025 GMT
Not After : Apr 28 14:00:44 2025 GMT
Subject: CN=e932b3fb1fa7beb90c267630568336c6a95d643f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d9:a9:0f:4e:b8:ee:c2:0a:54:c4:a3:8d:29:
78:ad:14:bb:bf:8e:11:57:95:d7:fb:54:89:32:79:
7a:60:c2:ee:bd:62:21:19:87:b4:cb:50:33:45:87:
96:ac:2a:7b:04:ed:ed:94:96:ac:eb:9f:49:21:92:
e3:5a:b7:20:15:7f:00:ff:2a:1e:28:2b:93:a3:9d:
7e:a0:51:62:e0:57:29:f6:7a:85:c3:42:be:fe:93:
61:53:2c:e4:bf:91:b6:f1:0a:ab:f2:6e:13:1d:7b:
70:a1:ac:f4:06:9e:f2:d4:55:d3:b6:5d:eb:5e:be:
cd:a7:8d:5c:27:8b:03:73:de:bb:ed:01:4f:df:70:
65:54:26:96:b5:e3:c0:9c:8f:3c:79:fb:1f:91:d1:
25:1b:4c:62:65:86:d3:43:1c:f6:67:90:90:60:81:
37:98:6d:6e:21:44:a2:f9:06:2e:68:2a:99:98:9d:
1b:94:67:a6:07:f1:95:88:c8:72:52:2e:07:a2:62:
07:45:05:2e:88:e9:8b:7a:cc:ba:ca:75:04:a8:23:
50:61:67:08:66:07:d7:72:44:25:66:aa:3e:56:3b:
57:30:d1:c0:17:b4:ff:58:fd:d9:b7:2e:52:48:a4:
17:29:5a:a4:ca:43:9e:ff:ee:5a:cc:bb:fa:94:eb:
37:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:32:B3:FB:1F:A7:BE:B9:0C:26:76:30:56:83:36:C6:A9:5D:64:3F
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:f2:6e:e5:d5:5a:33:41:41:28:89:1c:f5:5f:58:99:8d:c5:
38:2a:01:93:0a:d5:e6:75:31:a0:0b:da:55:79:d2:00:06:cd:
96:9d:03:cf:3a:03:a7:ea:07:f1:02:72:0d:38:38:b6:b6:74:
af:49:3c:c3:94:5b:d9:24:f5:d9:b6:64:67:00:fb:0a:11:90:
ee:68:0e:e0:21:fc:f8:0c:60:29:99:d0:8c:68:0c:0e:3f:ae:
23:e7:f2:c8:97:bd:48:be:73:4e:e0:07:7d:7b:cf:65:42:ef:
cd:79:45:f0:19:07:5d:94:db:a9:2a:e2:aa:83:44:ce:dd:0d:
2b:f2:e5:df:0d:1d:98:85:20:ba:9c:a8:03:4c:ff:d5:fb:70:
79:b8:d0:3a:d3:d3:6e:ec:50:ec:ed:3b:3f:a7:49:21:a9:a1:
d5:2f:47:bc:ff:ae:a9:88:99:a3:98:7a:7b:46:42:9b:4b:1f:
1b:7e:04:1c:6a:dd:bb:07:cf:64:78:ff:c8:e8:59:de:47:1d:
6d:11:71:fe:af:2d:93:28:7b:71:45:a6:ed:c4:0a:5b:98:db:
44:8c:c2:ff:22:62:17:66:d9:60:16:27:b3:e1:dc:90:fb:70:
6e:2f:91:db:e2:00:f3:b0:b5:a1:78:6c:0e:8f:1e:8f:07:18:
e1:a3:d2:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3jOZnwcrNOamTjub/iNnXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNmY1MWNhMjM5ODIxMDNmZmUzNGY5ODkwZDBiNzRlOGZh
NzgxYWYwHhcNMjUwNDI3MTQwMDQ0WhcNMjUwNDI4MTQwMDQ0WjAzMTEwLwYDVQQD
EyhlOTMyYjNmYjFmYTdiZWI5MGMyNjc2MzA1NjgzMzZjNmE5NWQ2NDNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdmpD0647sIKVMSjjSl4rRS7v44R
V5XX+1SJMnl6YMLuvWIhGYe0y1AzRYeWrCp7BO3tlJas659JIZLjWrcgFX8A/yoe
KCuTo51+oFFi4Fcp9nqFw0K+/pNhUyzkv5G28Qqr8m4THXtwoaz0Bp7y1FXTtl3r
Xr7Np41cJ4sDc9677QFP33BlVCaWtePAnI88efsfkdElG0xiZYbTQxz2Z5CQYIE3
mG1uIUSi+QYuaCqZmJ0blGemB/GViMhyUi4HomIHRQUuiOmLesy6ynUEqCNQYWcI
ZgfXckQlZqo+VjtXMNHAF7T/WP3Zty5SSKQXKVqkykOe/+5azLv6lOs3fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOkys/sfp765DCZ2MFaDNsapXWQ/MB8GA1UdIwQY
MBaAFDJvUcojmCED/+NPmJDQt06Pp4GvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYt
OTY2ZmE5NmJlZmYyLzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYtOTY2ZmE5NmJlZmYy
LzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdPJu5dVa
M0FBKIkc9V9YmY3FOCoBkwrV5nUxoAvaVXnSAAbNlp0DzzoDp+oH8QJyDTg4trZ0
r0k8w5Rb2ST12bZkZwD7ChGQ7mgO4CH8+AxgKZnQjGgMDj+uI+fyyJe9SL5zTuAH
fXvPZULvzXlF8BkHXZTbqSriqoNEzt0NK/Ll3w0dmIUgupyoA0z/1ftwebjQOtPT
buxQ7O07P6dJIamh1S9HvP+uqYiZo5h6e0ZCm0sfG34EHGrduwfPZHj/yOhZ3kcd
bRFx/q8tkyh7cUWm7cQKW5jbRIzC/yJiF2bZYBYns+HckPtwbi+R2+IA87C1oXhs
Do8ejwcY4aPS+w==
-----END CERTIFICATE-----
Generated at Sun Apr 27 17:56:25 2025 by rpki-client