Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: L9CSYVqaaTxos+YRdzIkok871u0VenzSjzk4H+IKO/E=
Subject key identifier: BC:8E:91:85:8C:E5:D4:F6:89:83:7D:36:0D:A2:BF:29:E5:68:D8:5B
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 01967FB40CD695341A65E6E05FFB07AAF214
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 1514
Signing time: Tue 29 Apr 2025 04:00:28 +0000
Manifest this update: Tue 29 Apr 2025 04:00:28 +0000
Manifest next update: Wed 30 Apr 2025 04:00:28 +0000
Files and hashes: 1: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: IMH8K3/MxYkgNgAdAjl2w4cv2CaogU3nnjeQSiP8K2I=)
2: iAKwu0FCFCsG-u4j0uUU3e7V0to.roa (hash: aFD2zsZtjltC/vwpNr5sAlXxHDjwIU9VRcONuFQwgo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b4:0c:d6:95:34:1a:65:e6:e0:5f:fb:07:aa:f2:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Apr 29 04:00:28 2025 GMT
Not After : Apr 30 04:00:28 2025 GMT
Subject: CN=bc8e91858ce5d4f689837d360da2bf29e568d85b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:89:e7:6c:03:5d:c2:69:e5:ad:bf:d8:53:20:
d0:7f:cf:de:f6:ad:ec:99:91:c5:99:42:ff:99:99:
5a:63:df:f7:90:e4:ef:5a:0d:87:cf:83:34:c4:9e:
8a:27:7f:27:2c:c7:99:43:2b:d7:54:dc:df:da:58:
36:18:99:e5:cd:fe:b5:d5:b2:9e:77:1b:27:81:9d:
59:02:55:27:7d:08:5f:1e:f7:7b:6e:bb:3f:a9:8a:
e8:0e:6b:c9:8e:56:4e:31:e1:ae:15:87:e4:b9:59:
4a:38:e9:c2:52:69:df:21:e2:05:77:b0:b5:be:6b:
6e:72:98:f0:02:08:cb:53:9c:82:5c:c7:4b:66:bc:
6a:fa:44:a0:51:a0:92:bb:c3:fc:df:94:e9:24:c4:
d6:86:a0:7d:eb:a0:6c:87:d0:f6:ef:07:aa:be:e0:
e7:cc:40:e9:0c:05:17:59:bb:09:d6:cb:8a:e3:66:
06:bf:0c:32:a9:da:9a:40:e0:5c:0b:5f:83:0e:a0:
a2:b8:a7:16:81:4f:50:6c:e1:c4:bc:e6:ea:d1:7e:
72:16:59:62:0e:ee:4c:e3:7f:90:7b:6e:ff:ba:33:
c4:03:17:dd:2e:5d:57:00:e6:3c:70:c7:cf:d8:9f:
47:09:1b:e9:72:09:0f:16:e7:76:ce:79:c5:27:03:
f8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:8E:91:85:8C:E5:D4:F6:89:83:7D:36:0D:A2:BF:29:E5:68:D8:5B
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:6d:e8:28:89:5f:23:4f:59:bd:fb:5b:fd:11:07:78:15:29:
a1:08:d9:c7:09:b2:43:8c:77:66:24:37:4a:f6:cb:9e:4c:d6:
f6:ec:3a:ab:4d:ac:a2:e9:2b:ac:13:d8:b7:e6:bd:d2:ec:73:
ba:67:c7:3a:28:cf:a1:fd:69:f9:5b:2a:06:6f:53:06:2b:d6:
22:52:bf:cf:f0:fc:ab:25:99:85:1b:58:ec:bb:24:68:2a:bd:
53:a6:d1:04:a9:49:d4:a8:ac:4e:07:9d:bd:07:40:36:cf:41:
ab:ab:61:93:47:d2:45:31:00:8b:aa:59:10:8a:c8:bb:95:1b:
b3:62:f4:cc:72:39:7e:d3:24:10:74:12:43:a3:a7:e4:cd:16:
6c:33:71:3a:58:72:57:fa:2c:e6:0f:95:16:5c:46:bb:8a:73:
45:f1:ba:be:3f:f5:c3:cf:80:47:cf:5b:7d:df:a1:c7:09:35:
71:a2:c4:2a:49:f9:ba:10:4a:a4:da:ee:43:b7:8a:a2:1f:62:
3a:d9:05:8e:6a:52:24:bf:69:cf:d0:24:22:18:74:f1:85:73:
06:78:08:69:2a:68:53:d0:6e:d5:60:f9:2d:94:0f:47:11:3c:
6f:d5:08:87:05:f9:68:ca:b5:c2:a1:cd:d6:ff:29:db:a0:c4:
6a:a2:16:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:12:20 2025 by rpki-client