Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: QzMUM5adG6dXcTo0Dm1n0/8iN0un/CjynX9EMxAX4Us=
Subject key identifier: 1A:EB:38:CC:61:D0:56:0D:D6:78:F9:DF:74:46:6A:D0:EE:D5:97:1D
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 0196C15D8D4C34A7CB492CF33448AF301D8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 1536
Signing time: Sun 11 May 2025 22:00:55 +0000
Manifest this update: Sun 11 May 2025 22:00:55 +0000
Manifest next update: Mon 12 May 2025 22:00:55 +0000
Files and hashes: 1: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: 5VMcF6Sz1OR0mhlYusvlfVpMMZT3RYlSQIKBn1/7rUE=)
2: iAKwu0FCFCsG-u4j0uUU3e7V0to.roa (hash: aFD2zsZtjltC/vwpNr5sAlXxHDjwIU9VRcONuFQwgo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:8d:4c:34:a7:cb:49:2c:f3:34:48:af:30:1d:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: May 11 22:00:55 2025 GMT
Not After : May 12 22:00:55 2025 GMT
Subject: CN=1aeb38cc61d0560dd678f9df74466ad0eed5971d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a2:43:ac:9c:56:bf:06:8d:25:b4:3d:b5:cc:
dd:05:50:33:15:28:e6:ea:b7:51:b7:84:31:f9:51:
c7:f2:a8:81:75:1c:c7:76:3b:9e:67:00:6e:7f:48:
08:47:40:c4:6e:bf:ea:13:12:54:a8:3c:b2:89:ca:
ae:f9:8e:61:64:b3:d6:75:72:1a:0f:d8:e0:8e:fb:
af:a1:f6:a1:96:e0:24:f1:5b:c0:29:79:01:f5:69:
a4:8a:3e:ca:7b:23:79:73:e1:4f:0d:11:2f:46:ed:
d8:4f:44:9a:5a:fc:bb:d1:07:7b:d3:10:c6:82:d0:
07:95:4f:d6:50:a5:63:4e:7c:87:e6:d5:93:92:4d:
bc:9d:10:33:c8:d6:3e:79:2e:14:1f:c5:40:91:9d:
4c:59:55:67:71:e8:7a:46:db:17:3c:8b:6e:a1:9d:
d3:03:eb:4a:3e:d2:d5:28:b5:5b:43:9a:02:10:19:
95:ba:6f:15:36:40:f3:e5:a3:b6:e5:e3:25:e3:2f:
a8:db:2d:53:1b:c8:23:46:b4:13:0a:2c:c3:06:16:
06:8f:26:f2:0d:76:75:b6:4f:d8:34:3f:90:17:eb:
ac:5c:cb:96:a0:2b:7e:b3:e8:0b:f8:c0:5b:b7:2f:
fa:e9:e9:51:36:7e:10:fc:14:75:fa:de:1e:50:67:
94:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:EB:38:CC:61:D0:56:0D:D6:78:F9:DF:74:46:6A:D0:EE:D5:97:1D
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:7e:76:5a:f6:1b:3c:bd:46:39:34:47:bc:79:7c:da:30:51:
1c:e0:6a:4d:cd:7c:a7:9f:41:d2:b5:d8:23:31:da:c2:8c:72:
9f:84:4e:14:7a:6c:41:7a:cc:c8:95:b5:97:c9:74:88:19:1f:
da:0a:39:89:79:9e:2b:c0:8d:cf:17:8f:cd:4f:3b:c8:45:e6:
3e:88:fe:1c:a2:d2:8d:35:48:3a:64:b2:6f:c4:40:ff:68:07:
65:24:b5:6a:d1:2d:4a:32:32:bc:23:d4:8f:c8:71:f3:b4:7c:
f6:15:eb:40:b8:d0:04:3e:4a:0f:84:06:c2:df:70:bd:76:3e:
ce:c1:22:97:cd:90:b7:b2:d4:86:c7:e0:e7:8d:f0:2b:bd:e9:
09:25:94:30:84:38:42:4d:b7:25:b4:d1:a6:54:12:f1:b3:bf:
9e:f3:e0:36:92:9a:84:fb:c6:37:f6:6a:13:8b:2c:41:ca:e4:
73:c0:5e:f2:3b:84:7c:89:12:b2:37:8a:d8:c3:c8:1c:93:50:
61:ea:9b:ad:83:4d:c9:7b:2e:75:22:4e:98:46:05:2c:6b:8b:
b9:b9:6e:07:74:b3:dc:ee:20:f7:2a:84:d0:c0:54:53:53:57:
55:f1:fa:46:48:8c:1c:c4:ab:8f:62:3f:19:3b:36:2a:ef:2b:
59:bc:e0:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 01:19:01 2025 by rpki-client