Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
File: duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft (raw, json)
Hash identifier: wwaMKNkwvrRuz+o6UkjAYYcX30cTq9tuIv5h04NDqJg=
Subject key identifier: B9:71:78:69:A9:B4:13:0B:48:4E:36:8C:8B:1B:9C:DF:6A:B1:5E:E7
Authority key identifier: 76:E2:AE:4F:E0:C0:D6:CB:07:49:B8:77:AE:15:5A:62:9F:E2:AF:D6
Certificate issuer: /CN=76e2ae4fe0c0d6cb0749b877ae155a629fe2afd6
Certificate serial: 0197B77C54AC9AE39CF3324FE012CB371F77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duKuT-DA1ssHSbh3rhVaYp_ir9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 17:01:08 +0000
Manifest this update: Sat 28 Jun 2025 17:01:08 +0000
Manifest next update: Sun 29 Jun 2025 17:01:08 +0000
Files and hashes: 1: duKuT-DA1ssHSbh3rhVaYp_ir9Y.crl (hash: iTaMhpTOkQ8RVZijDp35rJC8tXGKlzP1vM3Ku/y8e0I=)
2: x6TyoeiDznZ5SRtqywkNMGfQA5k.roa (hash: 1tj6LlfsRsB/tYIfqw9rOc/KrLH+6NOSUXP1XdEdR5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/duKuT-DA1ssHSbh3rhVaYp_ir9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:54:ac:9a:e3:9c:f3:32:4f:e0:12:cb:37:1f:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ae4fe0c0d6cb0749b877ae155a629fe2afd6
Validity
Not Before: Jun 28 17:01:08 2025 GMT
Not After : Jun 29 17:01:08 2025 GMT
Subject: CN=b9717869a9b4130b484e368c8b1b9cdf6ab15ee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2b:bf:af:c2:e6:bf:e7:8c:aa:3b:12:63:74:
d3:3c:3e:24:6d:8b:88:6f:f8:4b:7e:96:8a:82:8f:
2b:a7:30:f4:21:5f:26:22:65:c1:58:c1:6a:ba:2d:
2e:f8:07:b7:36:d7:36:8a:49:a2:e3:ea:dd:35:19:
f4:e6:5e:06:fd:2c:53:43:eb:f1:03:21:b2:72:ae:
be:2e:b8:c8:12:5b:f0:e8:81:a8:80:32:98:6f:5d:
61:ca:b4:0b:44:a9:f5:57:b0:0e:b8:62:ad:bd:21:
10:71:fc:55:11:61:75:9b:66:ed:37:8b:9a:54:15:
f6:94:5d:5a:9b:b1:9a:48:f4:64:e4:c1:e7:bd:41:
03:52:0e:9d:fd:fe:ed:ed:9d:c7:36:93:61:27:95:
a5:b9:87:ee:a0:e5:ff:93:55:3d:82:1d:5f:eb:e1:
a1:12:71:47:be:cc:ab:a7:64:8c:fd:bd:6d:5b:7d:
fd:97:ed:a0:dd:f9:97:0b:91:4a:dc:c7:30:b7:3b:
c8:8f:e8:ce:76:0d:58:6a:70:b2:1b:47:f7:27:cc:
8c:26:a2:6b:1d:63:56:96:ee:a0:7e:c2:41:90:ff:
67:9e:79:a0:73:db:9e:37:4b:e2:de:2b:4c:c3:86:
11:3b:23:22:c6:8e:48:04:ac:d6:58:f6:85:bd:23:
4a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:71:78:69:A9:B4:13:0B:48:4E:36:8C:8B:1B:9C:DF:6A:B1:5E:E7
X509v3 Authority Key Identifier:
keyid:76:E2:AE:4F:E0:C0:D6:CB:07:49:B8:77:AE:15:5A:62:9F:E2:AF:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duKuT-DA1ssHSbh3rhVaYp_ir9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:0f:56:1c:5f:a3:76:ab:7c:ca:ed:0d:f5:a0:c8:1a:25:7e:
e2:fd:dd:ee:2a:3e:73:c7:23:d3:ae:3a:36:95:b7:58:b0:09:
33:c5:34:12:43:cd:95:6c:12:a2:6b:56:58:f4:d2:e5:f3:61:
00:81:26:ae:0e:ac:34:3d:79:79:07:5c:84:d2:8e:84:2d:64:
50:97:dc:fe:d7:67:c5:62:ac:7b:f9:f8:ef:22:07:cf:7b:61:
ef:28:fd:e8:31:34:8c:89:ef:a5:56:0e:75:95:b3:9a:59:fe:
c8:5c:d7:5f:d2:35:10:2b:d1:9f:2e:8d:28:d0:5f:50:c4:24:
1f:b6:eb:28:bf:fa:56:ec:65:b5:a4:4b:17:e1:ff:8f:d8:01:
c9:4d:1c:7b:63:10:8c:ac:af:9d:99:e8:29:21:3c:fc:60:90:
10:de:02:f9:5c:9a:eb:0d:3d:c8:ff:37:97:3a:26:54:2d:05:
81:83:49:b4:e7:0c:9d:a3:2f:23:ab:35:fd:b0:8d:12:6d:17:
f0:7e:ad:99:b6:d3:41:c5:b1:2d:ad:9b:f8:81:90:e1:72:20:
db:1c:42:5a:e9:f1:32:be:2f:f1:28:81:74:69:88:2c:33:02:
6f:82:26:54:b0:54:cf:b4:08:98:e0:0b:c0:25:40:a9:4f:9f:
58:b3:97:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:49:25 2025 by rpki-client