Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: jIBRwi+zUyOFe5TJGyX9v+0aEoTzqFbl/gYccHcoqz0=
Subject key identifier: 26:E0:6A:60:41:53:F1:F4:BB:8B:21:B3:F1:60:69:5A:90:97:32:40
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 01962E99976DC26E571C84A1F9F4EFFEC74E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 14EA
Signing time: Sun 13 Apr 2025 10:02:19 +0000
Manifest this update: Sun 13 Apr 2025 10:02:19 +0000
Manifest next update: Mon 14 Apr 2025 10:02:19 +0000
Files and hashes: 1: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: gxSS8bH1AmBBIE6ElM8HSBJblRqLRHbLsJbq/l8IW/M=)
2: iAKwu0FCFCsG-u4j0uUU3e7V0to.roa (hash: aFD2zsZtjltC/vwpNr5sAlXxHDjwIU9VRcONuFQwgo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2e:99:97:6d:c2:6e:57:1c:84:a1:f9:f4:ef:fe:c7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Apr 13 10:02:19 2025 GMT
Not After : Apr 14 10:02:19 2025 GMT
Subject: CN=26e06a604153f1f4bb8b21b3f160695a90973240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d9:05:f7:d8:10:89:7e:46:97:81:8c:f9:e3:
bd:29:89:72:ec:43:e7:f7:0a:c3:94:04:c2:79:f9:
17:4d:24:63:4d:51:aa:a9:11:23:fc:f8:93:fb:f6:
f3:34:b9:da:da:df:14:06:ec:40:c3:08:32:dc:24:
98:51:2a:10:c1:eb:f8:23:2a:dc:32:c0:43:73:0d:
3f:6d:c5:52:4a:a3:20:71:fc:9e:b3:ec:35:39:ba:
17:9b:0a:d4:2b:f9:51:fd:03:29:a4:a0:01:1f:65:
d4:22:4f:f7:d0:f7:65:19:4b:90:35:1d:8b:ba:79:
45:60:23:f2:7b:94:7a:2a:96:41:d7:8e:bf:a0:e3:
0f:06:fe:38:78:fd:2e:eb:13:d0:65:8f:18:c1:80:
cd:0b:c2:8d:24:f8:04:e4:3d:e2:10:4c:87:28:5f:
89:0a:81:5c:a6:2f:8f:54:cd:b6:74:f7:ac:32:ad:
52:c8:12:3c:3f:33:1b:7f:93:6c:bc:4f:5e:2e:ad:
34:c4:bc:ca:57:36:fe:ed:35:12:8c:4a:a8:73:17:
9b:ba:7e:6a:41:5f:9d:c5:75:3d:f7:9c:bd:1a:11:
20:f2:f4:7c:ca:e8:a8:57:3b:9d:56:46:62:23:5b:
69:eb:54:b2:04:36:a6:a0:0e:d3:aa:ce:9f:bb:df:
da:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E0:6A:60:41:53:F1:F4:BB:8B:21:B3:F1:60:69:5A:90:97:32:40
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:5b:e5:9e:aa:4e:d3:71:c3:b0:17:0d:11:50:1b:c5:e4:89:
2d:ed:e0:5f:de:d2:e5:9f:6c:db:67:c7:d3:b0:f7:3c:1f:e7:
10:63:17:d8:ee:46:43:a9:c7:91:35:fb:0a:ee:0c:62:47:b9:
a7:87:5d:c9:68:52:de:94:1c:90:a7:27:54:05:34:98:38:05:
22:d9:71:fa:8c:ee:e2:7b:49:8e:64:e0:2b:1d:5f:b6:08:53:
9a:46:5d:eb:37:80:00:41:2f:f7:23:11:82:25:51:11:8a:de:
3f:08:e1:35:67:26:07:2a:a5:b2:0e:0a:6e:b6:45:da:87:91:
a9:1b:6f:0f:7e:4a:ed:6f:92:a1:90:fc:5b:1a:1e:05:8b:23:
d8:c3:39:a3:08:e9:1b:54:13:e2:c4:87:64:5b:a6:55:39:fe:
63:f8:94:29:e2:5b:a2:bf:c7:9c:72:62:b1:97:4e:02:7b:94:
b0:f4:c3:49:de:8a:1f:67:b2:71:34:23:46:c7:0a:bd:81:b4:
ef:e6:9d:3d:53:40:78:47:6b:53:70:32:04:01:46:dd:93:ae:
19:d4:08:e5:45:18:29:ae:20:d1:ee:0c:3d:1d:e7:91:0e:d7:
7f:bb:27:bc:82:c5:02:a5:c4:2a:58:69:69:44:f2:9b:f6:a7:
cc:50:3f:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 18:20:20 2025 by rpki-client