Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
File: dpduc3A5pphnL-lSSt0zfR_1LP0.mft (raw, json)
Hash identifier: l6GVEIDwemB1dY75TAd22FNc/zOhcoEUylQBZVLMsPg=
Subject key identifier: A0:74:37:1A:46:58:F1:46:B3:5A:91:CB:28:9F:3C:E0:22:CF:F8:AB
Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd
Certificate serial: 019923D61E86AA59E349B909310FC8464A27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 11:00:59 +0000
Manifest this update: Sun 07 Sep 2025 11:00:59 +0000
Manifest next update: Mon 08 Sep 2025 11:00:59 +0000
Files and hashes: 1: Rw3BYoyXYSEo6V5vN0qo3508qkM.roa (hash: sKlzeUwowKBMHyUl3VaDBvqX0srdSepcxCjN2qsXkZI=)
2: dpduc3A5pphnL-lSSt0zfR_1LP0.crl (hash: jivZnlVl1EZwrsnuCm6hViELQ0FpC2c8LkX5S6d3OlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d6:1e:86:aa:59:e3:49:b9:09:31:0f:c8:46:4a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd
Validity
Not Before: Sep 7 11:00:59 2025 GMT
Not After : Sep 8 11:00:59 2025 GMT
Subject: CN=a074371a4658f146b35a91cb289f3ce022cff8ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:10:cd:40:87:13:19:b1:cf:e6:35:70:40:65:
71:33:a3:65:bc:aa:cc:53:a4:da:b7:83:4a:a5:6e:
b5:2d:e9:67:6b:90:ea:99:cd:af:2a:04:e3:04:72:
f8:91:d9:95:f8:ed:bd:9f:dd:59:1d:f5:65:03:4f:
a4:06:64:64:18:90:60:2e:40:b8:5e:cd:8f:b6:0d:
e4:21:87:84:67:7b:7f:a0:09:4f:60:37:1e:73:c9:
4f:bd:df:ad:f7:54:46:34:61:c1:a0:f5:62:40:d1:
eb:7b:77:d1:b9:67:16:9e:95:c5:3a:23:16:78:35:
03:f8:d0:32:e0:50:01:f5:84:29:a0:78:98:d3:5c:
10:a8:05:8c:65:e0:e9:d3:28:16:19:69:62:6e:d5:
04:00:de:50:45:b1:b8:86:de:6c:82:e6:af:52:b2:
87:b3:cf:0c:a4:c0:a6:31:2d:32:13:64:45:b1:d2:
52:fd:c5:69:b5:4d:a7:b9:99:77:69:68:28:62:87:
28:35:44:95:6c:0b:4f:fd:dd:06:6b:ea:89:c7:9b:
45:b8:a5:da:57:0b:be:24:f9:9a:9b:6a:12:4d:8b:
ed:e9:07:bd:fe:18:9f:28:db:f6:53:0b:69:b2:8b:
00:87:b1:77:ff:4e:00:aa:b8:6a:8c:de:69:ff:f4:
df:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:74:37:1A:46:58:F1:46:B3:5A:91:CB:28:9F:3C:E0:22:CF:F8:AB
X509v3 Authority Key Identifier:
keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:e7:93:47:d2:21:2d:ac:0d:2c:07:f2:b2:98:61:72:61:41:
ce:c6:f6:28:b6:99:ab:19:d5:ac:66:07:56:1b:74:f9:1b:eb:
2b:9e:b1:cc:90:ef:de:fe:35:27:3c:85:21:43:68:2a:39:48:
12:96:b0:63:76:67:b9:2e:9f:9b:6a:79:f2:73:cf:0e:34:aa:
07:5d:3f:b7:2d:24:83:22:dc:1d:80:5f:17:04:68:db:1b:3a:
56:40:d0:4b:2d:2f:60:5e:11:3c:81:94:48:e0:9e:0a:d0:ff:
b1:cb:dd:87:38:7d:dc:49:3e:0a:60:fd:77:58:3b:ca:5e:57:
bc:0c:6e:55:fe:b2:f9:b2:22:0a:3a:ff:be:66:31:14:58:f5:
09:36:a5:74:4c:22:e9:2d:4f:e1:d5:4f:45:c9:0b:0c:0a:36:
b1:6c:10:ce:5a:c3:d3:aa:3e:42:23:23:9a:ac:4d:2f:e4:d9:
87:81:33:e9:5f:5a:dd:88:a2:0c:0c:77:b6:68:f7:74:51:80:
f1:6f:0f:d0:42:f3:96:fd:d7:c1:b2:03:d5:8d:31:b7:2f:a8:
88:21:9e:73:be:ef:fa:c6:a1:c0:53:01:0e:47:7d:41:5a:fc:
25:0c:61:50:54:7d:2a:8d:f9:97:4b:cf:7e:d5:f0:d7:7e:1d:
ef:ee:d2:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:37:09 2025 by rpki-client