Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: dPwJsy7aq356ruGWwYXh2ZCvgF3BT3lHhT/txXJytkw=
Subject key identifier: 50:AC:37:20:19:BF:2D:C8:77:76:6F:F2:5A:4F:B9:03:3D:B9:D0:27
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 0198820BD2E49B311E77B88743785734DEE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 161F
Signing time: Thu 07 Aug 2025 01:01:09 +0000
Manifest this update: Thu 07 Aug 2025 01:01:09 +0000
Manifest next update: Fri 08 Aug 2025 01:01:09 +0000
Files and hashes: 1: Bia10WQI4xw0UI_i-ndQUbuN950.roa (hash: cjV4yJiHMdoyYcYcYJ8yPol8C2FCborf12L6f+mp+8Y=)
2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: 4GOP1wu3udnnwvaEUPY/9TKOA3rzmhfWOUyBUC+qDkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:0b:d2:e4:9b:31:1e:77:b8:87:43:78:57:34:de:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Aug 7 01:01:09 2025 GMT
Not After : Aug 8 01:01:09 2025 GMT
Subject: CN=50ac372019bf2dc877766ff25a4fb9033db9d027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:70:e2:c2:18:a6:e8:a4:75:ac:6d:47:04:73:
f2:e6:b0:65:7a:93:3a:7f:e1:a9:77:a6:f1:09:1c:
4a:e7:91:04:e8:05:98:73:42:17:eb:99:cb:26:51:
28:f3:21:17:7f:df:96:1e:7e:a4:83:95:fe:0a:a9:
c2:46:0b:70:de:02:49:ec:07:5e:70:ac:23:8a:50:
38:a4:5b:c7:4b:29:f9:b7:45:c3:b0:57:89:0a:d3:
66:26:4c:cd:d0:19:44:b3:51:94:5c:7a:5f:9f:e9:
3d:5d:43:43:c8:a5:18:88:74:54:24:cc:96:42:1b:
db:99:37:0a:b9:19:4e:11:83:65:7d:98:e9:3f:18:
1e:6a:eb:03:1f:75:d3:91:5e:51:97:ea:bf:93:07:
70:2f:41:4d:e3:5f:c0:55:a8:30:96:20:5d:85:34:
05:48:b8:85:7b:a2:eb:a0:db:e9:ea:67:be:09:3b:
af:86:6b:db:ef:f6:0f:dc:59:5e:c8:2f:0e:33:a6:
1a:94:66:40:97:35:4d:dd:95:c4:f7:4e:9c:db:6b:
da:86:fb:ec:8b:dc:79:d0:3b:34:04:ec:fe:4a:61:
c1:b3:ff:19:f3:31:35:62:20:f4:50:91:42:3e:02:
e9:cb:6e:5e:5a:66:90:17:e2:0f:d5:c7:76:12:04:
aa:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:AC:37:20:19:BF:2D:C8:77:76:6F:F2:5A:4F:B9:03:3D:B9:D0:27
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:41:b5:25:6d:d2:25:a7:49:00:9e:cc:5b:0f:b5:ef:6e:88:
ce:59:39:ef:c2:ad:de:43:6e:f9:4d:c8:ff:31:0f:7e:4f:d9:
54:31:7d:3d:7a:c5:3a:26:71:8f:8c:07:08:94:d7:61:77:82:
da:c4:6e:f5:25:b1:8c:fe:6b:00:b1:d0:f4:89:16:11:98:67:
bb:d7:10:8a:04:bb:7c:48:cc:6c:1e:04:9d:2f:28:b3:c8:63:
1b:ce:07:91:45:53:28:2c:50:ad:64:ba:01:36:1a:61:1d:4c:
65:cd:5a:9e:80:de:31:6f:89:4b:c1:49:33:ca:ff:39:be:70:
7b:a0:a8:23:af:58:f5:2d:f8:19:a0:8f:5c:61:c1:06:d7:90:
bf:06:59:b2:b7:9f:22:ca:75:a9:f8:2a:64:7c:5a:f0:1a:78:
6b:5e:92:70:da:c5:64:bd:f6:07:56:b1:4d:a8:cd:e3:d3:c8:
5a:1a:05:4f:c1:c4:c6:f7:bf:bb:65:fb:5c:e8:f3:ef:19:f2:
bc:e6:0a:8b:2c:3a:b2:97:78:b0:d7:8c:b3:8a:93:d0:ac:d7:
83:e6:11:0c:5e:0c:e2:63:d9:3c:54:74:ed:94:1d:49:62:7f:
2a:2b:07:7a:56:8f:8f:b1:a3:0e:a5:9a:d9:20:2d:17:91:d7:
13:54:3e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:56:37 2025 by rpki-client