Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: RVzuPEL+/69DSiOUqjyc/jyNi/g3sA3kbBf/jqyjIqw=
Subject key identifier: 43:AE:93:CF:70:7B:4F:FA:78:06:14:78:7C:14:39:9B:4E:29:3E:AA
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 0197469DB04E400E7EF9C3494F9C4F8AC2AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 19:00:28 +0000
Manifest this update: Fri 06 Jun 2025 19:00:28 +0000
Manifest next update: Sat 07 Jun 2025 19:00:28 +0000
Files and hashes: 1: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: Z7juj0DNo5/zi6KdH6EVrME71x0ryZU6v7BSAmgSbs4=)
2: iAKwu0FCFCsG-u4j0uUU3e7V0to.roa (hash: aFD2zsZtjltC/vwpNr5sAlXxHDjwIU9VRcONuFQwgo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:b0:4e:40:0e:7e:f9:c3:49:4f:9c:4f:8a:c2:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Jun 6 19:00:28 2025 GMT
Not After : Jun 7 19:00:28 2025 GMT
Subject: CN=43ae93cf707b4ffa780614787c14399b4e293eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c4:4f:b6:9b:97:3c:e5:9b:14:05:f9:5e:03:
e7:01:a2:70:2c:62:3a:b6:92:e8:fb:92:92:df:d8:
ea:47:ef:17:45:14:6c:9b:92:d0:2a:53:26:29:cf:
c4:f9:ab:f4:5e:ab:0a:40:24:ca:7d:5b:12:7e:79:
38:cf:f8:93:e3:58:d4:b6:1a:cc:e8:19:48:54:8f:
dc:61:86:c9:2a:ba:00:a5:fd:c5:83:14:e6:34:97:
a4:57:46:1f:79:d0:f2:bd:fd:22:1d:50:4a:7c:68:
e2:77:5a:4f:c1:f7:4d:74:73:80:1e:e1:19:5c:25:
b6:fe:19:1a:21:df:d9:d2:a5:7a:b7:46:cc:a7:68:
34:4c:35:6e:49:03:74:8a:2b:52:32:48:ca:fe:74:
14:85:1a:4e:f4:31:26:c9:8f:76:c3:7f:0d:c1:44:
b2:0f:b8:a3:7c:4e:b0:26:6d:7e:3b:a3:22:e5:9f:
7e:8f:30:69:bd:a3:e7:09:76:60:06:5d:14:a0:e7:
c0:a5:3f:bd:31:45:9d:64:52:05:72:a8:27:38:db:
43:ea:98:82:ed:e4:c6:f9:09:d4:e2:c7:e7:9e:4b:
4f:ec:c8:ff:af:27:9f:65:d3:b4:01:d5:d5:3d:23:
9e:82:f9:a8:2c:1d:07:35:58:7c:f1:03:be:04:ef:
13:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:AE:93:CF:70:7B:4F:FA:78:06:14:78:7C:14:39:9B:4E:29:3E:AA
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:29:2e:ef:b6:31:83:1d:32:93:56:af:81:11:0f:76:17:55:
b7:33:39:89:ad:3f:0e:b6:e5:75:de:7f:7b:e9:a1:bb:3f:c0:
f9:5d:16:b4:3b:20:4f:36:44:cf:0a:1e:b4:1e:ef:65:ab:88:
f0:c4:ce:1a:5d:94:98:4b:24:c8:fc:b1:54:17:fb:90:ba:55:
78:dd:df:8a:84:ad:84:05:18:83:7c:b9:f9:7a:5a:8e:01:45:
6c:f7:4a:08:ce:e5:f2:b2:2f:b3:d5:3d:1c:18:c1:21:bf:be:
ea:e5:53:e4:63:ba:87:db:3c:e2:f3:8a:0c:08:7d:3e:ce:d9:
a5:4a:18:5a:75:6b:82:9b:a8:33:c1:3a:84:fb:6b:36:6b:32:
79:9f:53:57:4e:db:98:f9:16:a1:3c:f9:81:a9:0a:37:7d:d1:
39:1c:19:33:b5:73:5c:0a:e8:7e:f9:1c:0a:c7:fa:38:c7:5d:
c4:db:6f:76:f6:74:b9:d6:17:44:37:4b:90:c9:b2:ee:b4:1d:
ce:35:6a:c8:31:55:07:e8:14:9f:d2:73:8b:40:5a:93:d4:ca:
ab:51:af:99:97:9d:c5:f1:7e:b0:dc:48:d4:87:4b:9d:3f:08:
85:35:d6:89:83:bf:28:e7:c3:d2:b2:34:a9:e4:70:ee:a2:56:
6d:a8:4f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:35:49 2025 by rpki-client