Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: ROcuyvAPYoB4TbhqBu4z2Yp9r5WDJ0yjMxNQ8csm2Vs=
Subject key identifier: 3A:97:6E:BD:63:90:3B:29:B2:BD:D2:63:0F:41:BF:FC:43:C9:BC:B8
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 0198D516376F37F4066D0F2CA86CCCAB7B77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 04:00:59 +0000
Manifest this update: Sat 23 Aug 2025 04:00:59 +0000
Manifest next update: Sun 24 Aug 2025 04:00:59 +0000
Files and hashes: 1: Bia10WQI4xw0UI_i-ndQUbuN950.roa (hash: cjV4yJiHMdoyYcYcYJ8yPol8C2FCborf12L6f+mp+8Y=)
2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: hp9JzSCFHxzMRW6ww3Du7WBNFyxE5BLFGRsRvBWJ7/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:37:6f:37:f4:06:6d:0f:2c:a8:6c:cc:ab:7b:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Aug 23 04:00:59 2025 GMT
Not After : Aug 24 04:00:59 2025 GMT
Subject: CN=3a976ebd63903b29b2bdd2630f41bffc43c9bcb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4b:aa:30:19:6d:56:b4:ec:57:88:eb:fd:2d:
64:c0:c9:10:2a:8e:db:5c:9e:bd:4f:01:a3:dc:48:
bd:64:70:17:5e:d4:2a:3a:73:9e:4a:6f:e8:d4:14:
91:56:c0:77:51:54:ad:b4:99:d2:33:fe:05:79:77:
80:38:d7:fa:1d:bb:a4:90:d6:9a:a5:a6:22:cd:90:
7b:ee:d6:8a:d6:f7:f1:c5:99:3f:af:53:18:9e:51:
e1:26:05:56:50:01:09:e7:3e:e0:aa:23:c9:09:00:
93:3d:a2:f1:d0:b9:91:4a:bf:74:66:0a:c9:cb:51:
49:36:a8:32:d4:0a:1d:6c:4e:c9:76:8f:dd:3e:08:
20:6e:41:45:e0:ea:c7:22:e3:a7:bb:81:92:69:5e:
88:59:cb:0a:71:82:c6:d6:62:6b:7e:df:d1:11:8d:
13:8a:2c:d8:62:03:90:65:b5:e7:2b:76:27:36:7f:
6f:91:69:53:74:6c:6a:b8:17:dd:cd:f0:de:17:68:
d6:17:67:c1:52:4f:40:04:4b:ed:d1:a0:2d:24:84:
83:92:c3:9f:25:8a:9a:b5:80:17:85:0f:04:92:e6:
64:16:9b:a5:91:ec:36:78:4e:86:b1:57:09:9d:96:
0a:03:e2:3c:97:97:46:22:98:1c:51:93:6e:07:09:
81:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:97:6E:BD:63:90:3B:29:B2:BD:D2:63:0F:41:BF:FC:43:C9:BC:B8
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:73:8b:0d:69:ec:70:8d:06:0d:77:c0:42:70:a5:47:63:fb:
66:37:2c:bc:8e:a5:2e:98:f0:c4:ff:1a:53:30:f6:90:52:7f:
37:26:66:8a:fd:ee:b2:c3:a5:74:af:f4:be:fb:6d:6c:fd:86:
0b:be:a6:f1:97:4a:81:69:06:2a:5b:82:7d:50:ba:d1:11:30:
c7:27:75:ed:67:70:93:95:4a:5d:90:a6:3c:1a:be:c8:d4:72:
0f:5c:35:19:87:5a:a7:da:71:24:b3:e0:d4:66:93:8f:50:09:
11:74:71:4b:a4:32:95:c7:66:e7:be:34:46:0d:c8:35:cf:7a:
0c:68:a8:89:00:51:89:4f:44:c0:a9:3c:99:66:c0:6c:1c:d1:
1a:00:e5:51:17:33:e6:97:bf:bd:0a:12:3c:83:59:cc:8d:cb:
23:62:79:4a:7b:21:db:34:92:c6:6b:dd:d3:f3:43:31:3b:e7:
06:2f:fe:9d:6a:4a:97:44:b4:49:47:aa:d2:0c:4b:5a:51:69:
72:de:0c:45:6c:45:30:dd:52:94:9d:5e:d7:2c:ed:1e:ad:b5:
a1:94:de:53:df:0e:69:a7:7a:1f:e0:b8:87:4b:8b:8b:2e:cc:
1d:65:24:9c:84:5b:f3:9e:0a:5b:84:d8:b3:10:41:e3:b1:03:
61:b6:bd:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:22:54 2025 by rpki-client