Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: Lkn/l0T45ckHYZZbIX8P/oY5SVj6wTOpr/LqxIixt28=
Subject key identifier: DD:4A:9B:3F:3A:64:B3:E7:C3:A9:D3:CA:CB:7C:A2:9F:BD:4F:BA:82
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 01976D3E4D0F4F3F746DC9EB12216D7E77D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 07:01:28 +0000
Manifest this update: Sat 14 Jun 2025 07:01:28 +0000
Manifest next update: Sun 15 Jun 2025 07:01:28 +0000
Files and hashes: 1: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: Mhl5UWJTXFbZPFi5nFEmIYJEbsLOUHp1FcUXyNEJKeU=)
2: iAKwu0FCFCsG-u4j0uUU3e7V0to.roa (hash: aFD2zsZtjltC/vwpNr5sAlXxHDjwIU9VRcONuFQwgo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:4d:0f:4f:3f:74:6d:c9:eb:12:21:6d:7e:77:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Jun 14 07:01:28 2025 GMT
Not After : Jun 15 07:01:28 2025 GMT
Subject: CN=dd4a9b3f3a64b3e7c3a9d3cacb7ca29fbd4fba82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:39:fd:21:0b:7a:0d:76:78:99:9f:d6:42:d1:
e7:27:4a:f8:e3:c7:7b:54:9a:70:79:56:33:85:1b:
bf:b6:cc:5f:dd:e4:c0:03:d4:2e:09:ba:bd:92:d1:
b2:2d:f3:85:93:c8:57:d0:b8:ad:5a:24:49:53:5c:
29:ee:f8:fb:cc:d1:2f:3e:fa:c7:be:20:17:6d:17:
05:a0:56:97:48:df:5d:e6:59:b8:04:12:fd:af:9a:
cd:7b:b0:35:ff:fa:ed:84:27:90:3c:8e:e9:6c:03:
cb:bb:05:23:3e:51:72:59:f0:8b:74:d8:af:04:aa:
a2:a4:e1:9f:1b:10:b2:e8:4e:e3:cd:a0:86:ce:1f:
c5:79:e3:9e:1c:c3:9d:8c:f6:5e:10:dd:f1:0f:f5:
b0:53:6c:21:15:ef:4d:76:9e:4c:76:9e:7b:12:da:
6a:7b:b2:bf:b1:8a:94:d0:93:24:ff:2a:5b:ab:db:
0d:cb:06:21:0f:52:cd:99:7a:c3:26:76:d0:00:df:
6b:ba:76:e2:93:8d:01:71:88:ec:b2:52:8f:8d:a1:
5b:d2:7f:d9:e2:db:26:08:c6:e0:1c:55:0b:88:84:
01:a7:c3:28:f1:0d:21:87:4e:0d:15:0e:70:9f:3c:
1c:0e:9f:ca:7d:4d:75:50:82:29:b6:00:32:fc:ae:
75:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:4A:9B:3F:3A:64:B3:E7:C3:A9:D3:CA:CB:7C:A2:9F:BD:4F:BA:82
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:d3:01:5e:f5:a3:54:b4:e6:84:4c:b4:ed:69:af:25:fc:8f:
3c:7e:fe:c9:cb:3c:9d:c2:3c:b3:c9:ec:34:5b:47:10:e8:35:
21:47:16:22:24:1f:a2:e7:01:a6:be:d0:56:6b:10:0a:c5:bb:
90:fc:c2:f6:c4:a1:02:31:01:66:62:71:db:d0:3c:bb:32:0e:
ca:d3:cf:45:e7:01:d7:b3:77:62:c6:25:15:2b:0c:62:c9:7f:
ee:5e:d5:a1:1a:50:18:fb:d9:b2:36:13:2f:24:7e:90:b3:f7:
f5:84:9b:7d:35:37:b2:76:6c:76:65:4c:59:a3:e2:4a:ec:d2:
27:2e:e7:6e:ae:32:e9:3a:61:5b:21:e1:69:69:72:63:78:ec:
54:48:16:e5:fc:84:02:7e:1b:29:e5:32:82:ff:53:3a:a5:95:
26:91:9f:06:b9:bb:69:f4:ac:8b:a9:5f:7d:33:a0:18:37:d1:
24:9c:41:30:64:b7:05:b8:60:84:7f:41:91:18:9e:76:9a:52:
2c:dd:6b:c8:f8:de:ca:ed:dc:99:b7:f6:e6:41:14:52:77:b1:
77:5b:79:b8:73:66:29:b9:ea:32:25:65:6c:bf:0f:7b:ca:38:
d8:4c:ee:67:9d:d5:69:c4:cc:f1:11:ed:ae:dd:04:3c:89:59:
94:71:ab:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:21:07 2025 by rpki-client