Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
File: dpduc3A5pphnL-lSSt0zfR_1LP0.mft (raw, json)
Hash identifier: JYjEoRzrexYfGMBUBVigxs1brozKMO77YhGaNq4ACuc=
Subject key identifier: 1F:26:E9:DE:DC:A6:E4:64:BC:DE:CD:05:79:DB:F5:6E:EC:DB:7B:9B
Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd
Certificate serial: 01974AB1B8C7F8E29870831BCCD88E6BE673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 14:00:50 +0000
Manifest this update: Sat 07 Jun 2025 14:00:50 +0000
Manifest next update: Sun 08 Jun 2025 14:00:50 +0000
Files and hashes: 1: Rw3BYoyXYSEo6V5vN0qo3508qkM.roa (hash: sKlzeUwowKBMHyUl3VaDBvqX0srdSepcxCjN2qsXkZI=)
2: dpduc3A5pphnL-lSSt0zfR_1LP0.crl (hash: Bvxt78BXX8TnVwNqHnPPYigf2eoHx4xf999RcaJau6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:b8:c7:f8:e2:98:70:83:1b:cc:d8:8e:6b:e6:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd
Validity
Not Before: Jun 7 14:00:50 2025 GMT
Not After : Jun 8 14:00:50 2025 GMT
Subject: CN=1f26e9dedca6e464bcdecd0579dbf56eecdb7b9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b7:7d:b1:f3:45:e3:38:72:0c:9d:bb:fc:82:
06:89:42:f4:7c:4a:18:31:58:3c:a9:96:66:3d:9f:
17:f0:c8:98:c9:01:51:b0:d7:aa:e1:00:9b:1c:6e:
76:af:e6:62:53:8c:3d:6f:0f:32:ce:b3:74:0c:d8:
f2:8d:f1:fc:30:16:e9:51:3d:b4:1f:77:41:8b:f1:
9a:7a:53:2b:a9:0e:f5:d9:fd:5d:d4:69:ab:17:d6:
12:b4:4e:56:09:ad:75:c4:0c:f6:ce:cc:c7:2b:24:
9b:bd:75:20:4f:ea:0b:ed:00:d1:18:e3:8b:12:01:
e7:6e:b8:a1:db:9f:cb:2f:14:10:87:c5:ae:48:2d:
1d:40:ac:e1:54:a8:6e:7d:24:ef:3a:db:c4:5a:67:
cf:9a:97:04:85:0a:af:0f:05:1b:8f:8b:1a:ea:f5:
36:ea:28:a4:b9:2e:4a:34:fb:27:a9:96:26:99:1c:
e1:a8:55:92:2f:e7:00:a5:e7:dd:d4:94:73:43:46:
80:15:0e:85:fe:08:02:47:e3:96:4c:9a:f8:45:35:
23:95:d5:7e:e2:45:9d:3a:70:8d:1e:cb:04:35:f1:
1c:a7:77:0b:c9:64:9b:1d:2e:89:a6:8c:af:97:a4:
cd:12:a8:7a:0c:99:7e:2b:b9:ab:86:61:5d:6b:68:
79:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:26:E9:DE:DC:A6:E4:64:BC:DE:CD:05:79:DB:F5:6E:EC:DB:7B:9B
X509v3 Authority Key Identifier:
keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:8b:67:c9:d0:15:84:7f:07:db:cc:a1:09:27:4a:dc:04:5d:
aa:f4:45:84:b2:88:f7:e9:b3:eb:f1:fc:fc:32:4b:5c:01:50:
a8:ae:97:b4:42:6c:44:14:78:9d:14:05:ab:29:6a:8e:48:92:
33:5e:e4:a7:38:ab:0f:a5:eb:0e:5f:63:5a:b1:0e:2e:34:07:
88:5e:b5:e4:05:27:60:63:e0:dd:e8:d6:e5:e3:85:f4:d7:88:
0e:5b:62:28:4f:30:3b:73:86:00:d6:93:fd:4f:38:23:a0:28:
7f:76:93:93:2a:ef:ba:56:40:91:12:62:d9:b5:24:5b:8f:78:
97:34:96:f8:0a:5b:dc:ca:0c:94:bb:5a:a5:4c:56:f1:72:52:
dd:9f:f2:bc:c1:e4:fb:b0:56:00:d4:5a:fb:fb:2e:ba:ba:8a:
ca:35:df:73:72:59:a9:4b:92:48:f6:fb:1d:31:63:25:a0:6a:
0f:54:44:0c:87:16:75:aa:f5:8a:d4:02:a9:bb:7d:c0:3e:62:
c4:08:66:bf:75:76:1a:b3:d0:1b:ac:54:3f:da:a6:ff:da:44:
a4:8c:5a:35:71:0d:7e:da:61:5a:0e:13:f9:a8:e3:ee:04:99:
b9:4b:64:f9:7f:e3:9e:40:c6:2e:e7:1f:f2:fd:cb:ae:61:95:
9e:fe:e8:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKsbjH+OKYcIMbzNiOa+ZzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OTc2ZTczNzAzOWE2OTg2NzJmZTk1MjRhZGQzMzdkMWZm
NTJjZmQwHhcNMjUwNjA3MTQwMDUwWhcNMjUwNjA4MTQwMDUwWjAzMTEwLwYDVQQD
EygxZjI2ZTlkZWRjYTZlNDY0YmNkZWNkMDU3OWRiZjU2ZWVjZGI3YjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzrd9sfNF4zhyDJ27/IIGiUL0fEoY
MVg8qZZmPZ8X8MiYyQFRsNeq4QCbHG52r+ZiU4w9bw8yzrN0DNjyjfH8MBbpUT20
H3dBi/GaelMrqQ712f1d1GmrF9YStE5WCa11xAz2zszHKySbvXUgT+oL7QDRGOOL
EgHnbrih25/LLxQQh8WuSC0dQKzhVKhufSTvOtvEWmfPmpcEhQqvDwUbj4sa6vU2
6iikuS5KNPsnqZYmmRzhqFWSL+cApefd1JRzQ0aAFQ6F/ggCR+OWTJr4RTUjldV+
4kWdOnCNHssENfEcp3cLyWSbHS6Jpoyvl6TNEqh6DJl+K7mrhmFda2h5GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB8m6d7cpuRkvN7NBXnb9W7s23ubMB8GA1UdIwQY
MBaAFHaXbnNwOaaYZy/pUkrdM30f9Sz9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHBkdWMzQTVwcGhuTC1sU1N0MHpmUl8xTFAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC80NzcxYzUtMjZmNi00YzdkLTk4NTEt
ZjUxODllYjEzYTE3LzEvZHBkdWMzQTVwcGhuTC1sU1N0MHpmUl8xTFAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC80NzcxYzUtMjZmNi00YzdkLTk4NTEtZjUxODllYjEzYTE3
LzEvZHBkdWMzQTVwcGhuTC1sU1N0MHpmUl8xTFAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJotnydAV
hH8H28yhCSdK3ARdqvRFhLKI9+mz6/H8/DJLXAFQqK6XtEJsRBR4nRQFqylqjkiS
M17kpzirD6XrDl9jWrEOLjQHiF615AUnYGPg3ejW5eOF9NeIDltiKE8wO3OGANaT
/U84I6Aof3aTkyrvulZAkRJi2bUkW494lzSW+Apb3MoMlLtapUxW8XJS3Z/yvMHk
+7BWANRa+/suurqKyjXfc3JZqUuSSPb7HTFjJaBqD1REDIcWdar1itQCqbt9wD5i
xAhmv3V2GrPQG6xUP9qm/9pEpIxaNXENftphWg4T+ajj7gSZuUtk+X/jnkDGLucf
8v3LrmGVnv7oww==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:44:25 2025 by rpki-client