Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
File: dpduc3A5pphnL-lSSt0zfR_1LP0.mft (raw, json)
Hash identifier: Pn7K9AUpCbGajOZlmh4RT4U94fuUb6xt+WK4X6n38sk=
Subject key identifier: 6C:F9:B3:39:04:A5:70:68:A5:1E:E4:ED:02:88:37:5E:80:F3:AF:74
Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd
Certificate serial: 0197B6D7AC71A9C4CD1AE071D2FBBA577917
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 14:01:16 +0000
Manifest this update: Sat 28 Jun 2025 14:01:16 +0000
Manifest next update: Sun 29 Jun 2025 14:01:16 +0000
Files and hashes: 1: Rw3BYoyXYSEo6V5vN0qo3508qkM.roa (hash: sKlzeUwowKBMHyUl3VaDBvqX0srdSepcxCjN2qsXkZI=)
2: dpduc3A5pphnL-lSSt0zfR_1LP0.crl (hash: LJOecmXuy4RWgU+3oeq7I1UvzV/Md6eQuZexodFA9OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:ac:71:a9:c4:cd:1a:e0:71:d2:fb:ba:57:79:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd
Validity
Not Before: Jun 28 14:01:16 2025 GMT
Not After : Jun 29 14:01:16 2025 GMT
Subject: CN=6cf9b33904a57068a51ee4ed0288375e80f3af74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7d:8b:1c:da:6b:fa:c4:9f:01:e4:47:ea:9f:
6f:15:8d:ce:48:2b:80:c2:65:52:39:f3:83:d6:73:
55:e6:54:a3:7b:7c:c6:fe:91:9f:77:9a:d8:b1:6c:
da:23:84:94:61:72:8a:12:c8:15:de:15:b6:ca:9a:
59:be:b6:db:fd:66:be:d9:c2:4c:f4:49:7a:cd:52:
b6:d9:72:e7:66:df:14:fe:3f:a2:c2:5f:6a:2f:87:
81:50:90:17:d9:64:23:d9:b5:30:80:f1:92:12:8a:
0f:36:15:7b:88:a6:7b:93:ee:63:1c:9f:9b:a7:71:
fc:6e:e1:85:66:ba:51:9d:c8:70:39:85:29:65:83:
54:b4:f2:a8:b1:65:75:66:6c:37:88:2d:e2:ef:d2:
96:6e:b1:fa:af:31:3b:07:0b:97:50:d6:be:ba:e9:
34:c1:5b:85:25:9f:8f:23:6c:03:cc:3b:a6:62:6f:
e7:60:9b:4c:1a:e2:86:85:b6:ed:06:63:25:14:5b:
a7:04:9d:b9:98:37:66:15:b6:56:5d:04:a6:39:0f:
91:f7:b9:b2:df:ba:64:e3:0d:6e:00:98:0e:ed:a1:
c6:43:7c:77:90:6b:f0:53:b3:34:73:97:ca:ba:03:
e8:4f:4b:5c:0d:cf:f3:dd:27:f3:9a:3d:f6:a8:00:
1d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F9:B3:39:04:A5:70:68:A5:1E:E4:ED:02:88:37:5E:80:F3:AF:74
X509v3 Authority Key Identifier:
keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:5c:65:91:95:01:ed:4e:57:1d:07:1b:b7:30:53:9e:d0:88:
7f:a1:7e:0b:e1:16:fc:cf:40:ee:fb:b0:63:5b:ad:bd:18:2e:
ec:71:ac:88:26:30:d7:4a:ae:22:ee:b0:26:e0:3f:a1:d2:bc:
53:7b:e0:54:ac:10:28:59:8d:2c:8b:05:69:58:4e:9d:aa:d3:
8a:d7:99:34:c6:25:30:70:73:7b:52:0e:a8:f3:63:1b:27:d2:
48:5b:04:8c:62:a7:fb:9f:f8:28:05:bf:f6:18:ed:bc:57:d3:
5f:fa:98:02:95:79:0a:cc:26:86:89:6b:f5:1f:fd:40:bb:9a:
3f:b6:74:38:3a:b6:6f:fb:ed:b5:e7:36:70:2c:20:31:a8:70:
fc:d4:dc:12:c4:75:28:f7:c7:b5:14:91:13:be:5e:f5:d0:ca:
24:86:7e:ef:80:4b:74:d8:db:ae:3a:08:63:41:7d:c6:81:48:
d5:aa:d2:48:37:de:98:42:f7:e0:75:78:c2:89:83:f3:2b:3c:
e3:13:db:0a:29:78:38:de:93:4a:d3:1f:cf:a0:e9:f0:94:be:
cc:81:07:48:29:24:da:e4:c4:28:c1:be:5a:ab:58:a7:45:7c:
34:25:c8:68:ea:2b:f0:50:7e:7e:c6:30:a4:a0:aa:d1:95:92:
03:61:92:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:02:00 2025 by rpki-client