Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: NB5bFzvQ5GhkNLDVa4L+O+L+LdMudS6mImDE5R2pIrY=
Subject key identifier: F3:40:62:62:AA:EF:18:5C:93:0D:92:F4:7E:9E:6F:EE:92:51:7A:28
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 0198EA5627C415849A9A895610615B3C96E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 1655
Signing time: Wed 27 Aug 2025 07:02:51 +0000
Manifest this update: Wed 27 Aug 2025 07:02:51 +0000
Manifest next update: Thu 28 Aug 2025 07:02:51 +0000
Files and hashes: 1: Bia10WQI4xw0UI_i-ndQUbuN950.roa (hash: cjV4yJiHMdoyYcYcYJ8yPol8C2FCborf12L6f+mp+8Y=)
2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: A2tnlbvxgiA55L8bUfUuiaY+kbAeI3cxdqTJs161m8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Aug 2025 07:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:ea:56:27:c4:15:84:9a:9a:89:56:10:61:5b:3c:96:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Aug 27 07:02:51 2025 GMT
Not After : Aug 28 07:02:51 2025 GMT
Subject: CN=f3406262aaef185c930d92f47e9e6fee92517a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3f:30:51:00:ec:6b:4d:4f:86:c6:4c:d3:92:
ed:bf:16:a2:23:fc:f7:70:2c:95:a9:47:eb:43:17:
f6:ac:8a:3b:e5:c1:95:ad:58:6d:a3:e4:21:03:45:
b7:1e:42:b9:6d:48:98:62:12:10:c4:90:94:c0:27:
aa:1a:db:05:97:58:04:08:ab:db:aa:27:bf:55:20:
c5:be:6a:af:cc:2c:51:36:3a:f7:00:5e:0b:34:c2:
46:9e:22:b0:ef:7a:38:ef:1f:da:58:96:c6:aa:50:
68:38:db:a1:92:37:56:3c:8d:25:87:a3:d3:20:52:
99:24:13:1c:b8:cc:7c:b7:62:ee:c3:9b:d2:eb:74:
00:15:9d:a1:37:a8:74:f8:93:49:2f:87:18:58:68:
53:63:21:ff:8f:19:21:f2:50:62:3b:4f:e2:e4:4e:
57:8e:fc:f6:17:f9:46:6c:c8:d8:51:9f:67:dc:c8:
a7:a1:c9:04:6a:41:bf:fb:5a:6d:d9:86:3d:e0:eb:
f4:f9:78:57:e9:ce:31:92:a7:49:85:71:a0:10:68:
ea:01:35:01:25:6a:ce:5f:7c:fb:e9:cc:93:42:9a:
a6:65:af:a9:2c:6f:cb:d2:05:26:59:6d:74:5b:73:
ec:b6:33:5b:d1:41:bb:73:0e:6a:6d:87:dc:53:1b:
56:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:40:62:62:AA:EF:18:5C:93:0D:92:F4:7E:9E:6F:EE:92:51:7A:28
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:eb:12:3e:e9:fc:f1:40:59:c4:3e:51:44:d1:8d:38:4e:c3:
3f:2c:d6:f6:70:26:e5:f7:37:dd:77:3b:5e:95:14:a7:a2:cf:
23:8d:14:37:d4:07:16:cf:f8:c2:40:10:67:49:14:53:aa:27:
e2:07:0e:f7:59:94:0d:f1:03:52:d0:c0:a6:ad:18:03:d7:56:
27:3b:dd:cc:ee:3a:69:39:00:5e:a4:f2:45:d1:49:97:a7:12:
44:15:7b:20:17:8d:61:36:4b:ad:33:7b:18:02:38:df:fb:7f:
55:04:00:b3:4b:5b:e3:ba:ff:bf:26:19:97:bb:7c:05:e3:17:
c0:4d:1d:8e:ce:0c:2d:74:3e:ec:29:fb:75:bb:5e:7f:0d:55:
ba:51:41:47:95:c1:7b:4e:79:3f:e2:af:56:93:3a:11:f0:6c:
11:b3:b9:aa:75:6c:d7:9f:18:c0:83:7a:75:f2:17:6d:9c:8d:
17:31:f8:0c:21:65:95:06:87:12:f2:4f:6b:0b:91:30:fa:76:
09:05:31:a1:60:58:b5:9d:92:b9:64:d5:e3:e9:d7:70:6d:85:
89:d2:38:87:54:22:62:95:eb:bf:c3:79:a3:0d:a4:05:85:73:
e4:f1:1a:55:51:75:da:f6:b3:6a:ab:d6:65:e6:f7:39:41:c1:
b2:21:62:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjqVifEFYSamolWEGFbPJbpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2ZTJiYTVjYzE1MGIzNTNjYmQzNGI5ZjA0NWVhMDUwOTc0
MDg0NGQwHhcNMjUwODI3MDcwMjUxWhcNMjUwODI4MDcwMjUxWjAzMTEwLwYDVQQD
EyhmMzQwNjI2MmFhZWYxODVjOTMwZDkyZjQ3ZTllNmZlZTkyNTE3YTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0D8wUQDsa01PhsZM05LtvxaiI/z3
cCyVqUfrQxf2rIo75cGVrVhto+QhA0W3HkK5bUiYYhIQxJCUwCeqGtsFl1gECKvb
qie/VSDFvmqvzCxRNjr3AF4LNMJGniKw73o47x/aWJbGqlBoONuhkjdWPI0lh6PT
IFKZJBMcuMx8t2Luw5vS63QAFZ2hN6h0+JNJL4cYWGhTYyH/jxkh8lBiO0/i5E5X
jvz2F/lGbMjYUZ9n3MinockEakG/+1pt2YY94Ov0+XhX6c4xkqdJhXGgEGjqATUB
JWrOX3z76cyTQpqmZa+pLG/L0gUmWW10W3PstjNb0UG7cw5qbYfcUxtWzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPNAYmKq7xhckw2S9H6eb+6SUXooMB8GA1UdIwQY
MBaAFHbiulzBULNTy9NLnwReoFCXQIRNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2Et
NzA0MDVlMzUyOGFmLzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2EtNzA0MDVlMzUyOGFm
LzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABOsSPun8
8UBZxD5RRNGNOE7DPyzW9nAm5fc33Xc7XpUUp6LPI40UN9QHFs/4wkAQZ0kUU6on
4gcO91mUDfEDUtDApq0YA9dWJzvdzO46aTkAXqTyRdFJl6cSRBV7IBeNYTZLrTN7
GAI43/t/VQQAs0tb47r/vyYZl7t8BeMXwE0djs4MLXQ+7Cn7dbtefw1VulFBR5XB
e055P+KvVpM6EfBsEbO5qnVs158YwIN6dfIXbZyNFzH4DCFllQaHEvJPawuRMPp2
CQUxoWBYtZ2SuWTV4+nXcG2FidI4h1QiYpXrv8N5ow2kBYVz5PEaVVF12vazaqvW
Zeb3OUHBsiFiEg==
-----END CERTIFICATE-----
Generated at Wed Aug 27 11:10:43 2025 by rpki-client