Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
File: dpduc3A5pphnL-lSSt0zfR_1LP0.mft (raw, json)
Hash identifier: Cih9MYdvrgQudWH8EbQNN7onz96PtHwkx+KpBrjXvD0=
Subject key identifier: 6C:7E:56:1E:8E:F8:5A:3C:A0:11:EE:99:EE:AA:48:6C:41:0B:F8:8C
Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd
Certificate serial: 01969ED16AE7BC00DAB3E11436F70E0C918A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
Manifest number: 1524
Signing time: Mon 05 May 2025 05:00:46 +0000
Manifest this update: Mon 05 May 2025 05:00:46 +0000
Manifest next update: Tue 06 May 2025 05:00:46 +0000
Files and hashes: 1: Rw3BYoyXYSEo6V5vN0qo3508qkM.roa (hash: sKlzeUwowKBMHyUl3VaDBvqX0srdSepcxCjN2qsXkZI=)
2: dpduc3A5pphnL-lSSt0zfR_1LP0.crl (hash: j1b9ws+jNCB/dAzGbSzsxnm/2zU2YsVDydBJIHZJp/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 05:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:d1:6a:e7:bc:00:da:b3:e1:14:36:f7:0e:0c:91:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd
Validity
Not Before: May 5 05:00:46 2025 GMT
Not After : May 6 05:00:46 2025 GMT
Subject: CN=6c7e561e8ef85a3ca011ee99eeaa486c410bf88c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:3d:be:8f:5a:4a:b8:cc:fb:91:42:77:7d:83:
ec:e8:e9:f7:0b:14:e2:09:e9:92:3b:f2:13:f0:98:
d8:73:62:95:5f:69:63:9c:50:53:1a:dd:8f:a7:fb:
65:69:ad:08:61:48:bc:ad:8d:83:19:2f:26:9b:39:
ed:48:7d:e1:4f:de:f3:28:3b:7d:f8:71:24:e9:85:
bd:22:5f:54:23:95:1a:b8:fd:3b:6d:98:eb:f8:47:
54:f6:70:3e:0f:1e:41:89:29:59:2f:ee:c3:d6:2a:
33:33:3e:02:0c:07:f3:d7:08:b6:e2:db:45:ea:48:
f7:d5:1f:a5:61:d1:47:8e:52:72:19:9d:81:43:f3:
fc:a9:8f:7d:9d:81:38:82:53:ab:79:01:d4:26:28:
a0:0d:ba:0f:12:50:2c:0c:1c:0d:e2:55:81:80:45:
c6:fa:8f:f3:8b:34:53:19:58:43:45:05:0a:e3:30:
0c:1d:ff:83:07:2d:88:e6:78:a2:e8:ed:b2:a6:46:
1f:7e:6f:c7:53:a6:de:61:d5:8d:84:d9:90:cd:c9:
9c:6a:ed:5d:b8:76:d6:04:14:44:4b:68:8e:9a:2b:
1b:46:c1:d5:e5:e7:4e:d9:a5:e6:90:bd:f6:32:88:
dd:ba:2d:89:19:ad:ae:34:6b:3e:09:2a:bf:a5:31:
7c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7E:56:1E:8E:F8:5A:3C:A0:11:EE:99:EE:AA:48:6C:41:0B:F8:8C
X509v3 Authority Key Identifier:
keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:2c:d8:45:8d:2d:80:b4:4a:e2:4e:11:94:8e:b1:5e:4a:97:
21:33:80:8e:6e:b8:04:54:c6:d6:c8:81:a1:8d:d9:c9:4b:c9:
68:ef:98:5d:f6:31:d5:61:7e:f3:fa:6a:3d:7a:d1:c2:aa:0b:
96:74:9c:f3:79:9a:59:ff:6b:ab:f2:e2:84:25:bb:cc:27:e8:
96:45:b3:34:07:43:78:db:8d:0d:ae:76:8e:f3:63:ee:b5:7c:
f9:6d:a0:b3:bb:a0:e7:41:a2:09:cf:e4:8d:ce:72:a2:93:23:
00:11:36:01:48:a3:5f:0b:27:b9:8a:b4:79:f3:3e:8e:29:7f:
18:77:5a:2c:24:92:5b:46:71:17:76:f2:48:dc:99:96:85:e6:
7d:55:b0:6c:04:1c:5a:3d:04:8f:39:94:ba:39:eb:87:ae:d7:
c9:7c:a0:57:10:2c:f8:68:1e:2b:92:c4:a0:8a:07:d3:d3:e2:
7f:70:8a:15:08:ae:98:5d:8e:13:e5:ba:93:d1:fb:32:85:18:
91:4f:c4:21:a2:1c:5f:77:01:48:cb:e7:7e:13:e1:b7:9d:19:
89:f6:e5:2d:76:03:bf:a5:4d:da:92:74:ce:65:a4:b8:17:f2:
37:a6:7b:22:82:0c:3e:62:34:61:61:d5:0d:e7:e9:fe:0a:67:
90:28:c2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 14:17:27 2025 by rpki-client