Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
File: dpduc3A5pphnL-lSSt0zfR_1LP0.mft (raw, json)
Hash identifier: mERygrFyPGIrCjItp5JeD3vKu8I3fPeXH7VCN5L/9MI=
Subject key identifier: EB:D2:73:52:7C:EC:D4:16:26:67:90:66:24:F2:DD:55:A8:0F:43:F5
Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd
Certificate serial: 0198D6988CE0C6F0528BFF343CE5A3B5380F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 11:02:58 +0000
Manifest this update: Sat 23 Aug 2025 11:02:58 +0000
Manifest next update: Sun 24 Aug 2025 11:02:58 +0000
Files and hashes: 1: Rw3BYoyXYSEo6V5vN0qo3508qkM.roa (hash: sKlzeUwowKBMHyUl3VaDBvqX0srdSepcxCjN2qsXkZI=)
2: dpduc3A5pphnL-lSSt0zfR_1LP0.crl (hash: +MWZjFCND2r33ysVOt9HScX8btNEYDWu6cSqHbL1ssk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:8c:e0:c6:f0:52:8b:ff:34:3c:e5:a3:b5:38:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd
Validity
Not Before: Aug 23 11:02:58 2025 GMT
Not After : Aug 24 11:02:58 2025 GMT
Subject: CN=ebd273527cecd4162667906624f2dd55a80f43f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:91:92:e1:b4:fa:56:d6:98:5a:10:93:b5:27:
4f:8b:e0:d2:dc:31:85:a0:00:80:fb:ae:7e:a2:b3:
22:81:1a:3b:51:37:cc:c9:18:1d:5e:a8:d6:60:17:
a4:c6:59:d8:59:a8:d1:63:e7:ac:95:60:d9:77:a3:
5d:55:1f:b3:a7:56:6e:ec:c6:5d:53:b2:3e:dd:fc:
2e:a2:23:20:0f:b7:ce:57:df:d5:b8:ac:a8:93:91:
05:cb:83:86:34:c9:dd:a1:e4:f3:e7:cf:ee:0a:dc:
7e:69:22:f0:4d:c9:53:ab:33:f6:f4:95:90:8c:9c:
5e:0b:5c:31:5c:7b:4a:ef:7f:be:eb:3a:01:ec:a2:
83:fb:e7:3b:e5:db:8a:21:2e:e1:a1:15:cf:54:db:
f5:db:5e:dd:81:bb:8d:09:eb:2a:b4:22:cf:c0:27:
9c:39:41:39:b1:90:bf:5b:54:e0:ba:13:63:c3:9d:
a7:73:04:ca:ce:e4:3c:07:53:98:ca:20:69:18:59:
31:a3:54:5d:7a:77:79:e2:03:2c:3d:db:94:95:12:
13:a4:09:c5:5f:71:7b:c9:00:e2:3d:38:b0:f0:24:
c8:7f:d8:62:0f:e0:32:6b:d3:99:30:c0:1a:ce:b6:
77:0a:5f:db:40:8f:f5:22:e0:2d:2c:5f:64:df:be:
3c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D2:73:52:7C:EC:D4:16:26:67:90:66:24:F2:DD:55:A8:0F:43:F5
X509v3 Authority Key Identifier:
keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:f8:bc:92:4c:4a:80:63:ed:a5:54:73:13:05:11:1a:f8:15:
43:a6:9f:38:a3:d5:d4:57:d6:ff:3d:85:50:ff:d4:63:00:9f:
06:ce:34:db:36:90:77:76:b4:ad:b9:c9:4f:6e:25:04:cc:0c:
5a:36:0c:34:40:94:c1:0a:8f:cc:9b:da:51:65:c5:59:4f:f0:
64:79:58:55:da:26:38:c9:d0:25:d5:7d:a7:46:39:9e:18:25:
28:f9:6e:98:81:b1:4a:fb:d1:50:9b:62:25:86:31:9c:b1:56:
d9:36:9f:4c:35:96:09:2e:09:b2:d5:e9:a4:53:16:51:5c:23:
c8:45:c9:37:39:7d:ee:5b:76:19:62:e6:78:c1:56:94:d5:a5:
82:99:50:fe:76:e3:f7:b3:a3:66:d1:ea:8a:81:8a:7e:5c:48:
67:8f:9c:ca:15:a8:e9:4b:1b:d6:e4:a5:01:16:0f:d4:57:ab:
cf:c5:93:9a:cf:8e:d5:62:7b:29:fc:c3:7b:5b:12:33:35:b1:
62:86:6e:8d:2d:49:27:ed:f2:08:a2:20:f9:ff:0a:9b:52:92:
0f:9d:67:51:e9:e1:a5:51:e8:40:42:2a:ed:12:c2:02:66:c6:
72:7a:7a:5c:b5:f8:ae:49:15:e5:22:79:ba:fb:70:0b:a3:6f:
fc:f7:ca:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWmIzgxvBSi/80POWjtTgPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OTc2ZTczNzAzOWE2OTg2NzJmZTk1MjRhZGQzMzdkMWZm
NTJjZmQwHhcNMjUwODIzMTEwMjU4WhcNMjUwODI0MTEwMjU4WjAzMTEwLwYDVQQD
EyhlYmQyNzM1MjdjZWNkNDE2MjY2NzkwNjYyNGYyZGQ1NWE4MGY0M2Y1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA25GS4bT6VtaYWhCTtSdPi+DS3DGF
oACA+65+orMigRo7UTfMyRgdXqjWYBekxlnYWajRY+eslWDZd6NdVR+zp1Zu7MZd
U7I+3fwuoiMgD7fOV9/VuKyok5EFy4OGNMndoeTz58/uCtx+aSLwTclTqzP29JWQ
jJxeC1wxXHtK73++6zoB7KKD++c75duKIS7hoRXPVNv1217dgbuNCesqtCLPwCec
OUE5sZC/W1TguhNjw52ncwTKzuQ8B1OYyiBpGFkxo1Rdend54gMsPduUlRITpAnF
X3F7yQDiPTiw8CTIf9hiD+Aya9OZMMAazrZ3Cl/bQI/1IuAtLF9k3748JwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOvSc1J87NQWJmeQZiTy3VWoD0P1MB8GA1UdIwQY
MBaAFHaXbnNwOaaYZy/pUkrdM30f9Sz9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHBkdWMzQTVwcGhuTC1sU1N0MHpmUl8xTFAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC80NzcxYzUtMjZmNi00YzdkLTk4NTEt
ZjUxODllYjEzYTE3LzEvZHBkdWMzQTVwcGhuTC1sU1N0MHpmUl8xTFAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC80NzcxYzUtMjZmNi00YzdkLTk4NTEtZjUxODllYjEzYTE3
LzEvZHBkdWMzQTVwcGhuTC1sU1N0MHpmUl8xTFAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl/i8kkxK
gGPtpVRzEwURGvgVQ6afOKPV1FfW/z2FUP/UYwCfBs402zaQd3a0rbnJT24lBMwM
WjYMNECUwQqPzJvaUWXFWU/wZHlYVdomOMnQJdV9p0Y5nhglKPlumIGxSvvRUJti
JYYxnLFW2TafTDWWCS4JstXppFMWUVwjyEXJNzl97lt2GWLmeMFWlNWlgplQ/nbj
97OjZtHqioGKflxIZ4+cyhWo6Usb1uSlARYP1Ferz8WTms+O1WJ7KfzDe1sSMzWx
YoZujS1JJ+3yCKIg+f8Km1KSD51nUenhpVHoQEIq7RLCAmbGcnp6XLX4rkkV5SJ5
uvtwC6Nv/PfKXg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:27:20 2025 by rpki-client