Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: a5f1mkc6krz5rNuJXqqneCO/O8SLcHCBRY/VRGWTLXU=
Subject key identifier: 85:BF:05:E7:2C:17:74:48:13:96:9A:CB:E9:9A:F0:9A:E8:FD:03:89
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 0197C94B800B8BEC7C090A189D01C6009F3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 038A
Signing time: Wed 02 Jul 2025 04:00:57 +0000
Manifest this update: Wed 02 Jul 2025 04:00:57 +0000
Manifest next update: Thu 03 Jul 2025 04:00:57 +0000
Files and hashes: 1: Q_kLSJOWLJDEhyzkodJRQWJEfMU.roa (hash: 2p8AahImaC704aSN2Sau8pFCrbFVUG9Dz60aJg9x1m8=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: bCFLvUyLSj4PoE9WthubY5jvAOWFStCMDiozCHZLW4o=)
3: hl-bZEBFsh1ZChc40Z0fl2eFeDc.roa (hash: GoC7lm4BXzEaLJBGVeCTSYenfrijER5VgtT8WvoxW4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 01:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:4b:80:0b:8b:ec:7c:09:0a:18:9d:01:c6:00:9f:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: Jul 2 04:00:57 2025 GMT
Not After : Jul 3 04:00:57 2025 GMT
Subject: CN=85bf05e72c17744813969acbe99af09ae8fd0389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ac:4e:6c:47:e9:47:2e:55:e2:c4:4c:e4:c9:
f3:7f:71:e1:d5:de:fc:f0:4a:dc:f9:6a:c4:b2:99:
83:98:c4:9b:4d:0a:49:bc:cd:78:bf:ab:bf:b6:2f:
f2:0f:68:2c:21:66:00:fe:93:e9:2a:6c:b6:19:fe:
1f:8b:e8:61:7f:13:9c:56:d3:0b:b4:b9:5b:8f:50:
75:49:4c:18:4c:bb:c2:66:db:bf:2f:d2:d0:31:aa:
df:39:62:45:be:13:12:a0:6d:f1:4c:c8:cc:86:f9:
ed:6d:58:99:4d:6d:17:e5:60:8f:23:ab:ac:69:08:
cc:f1:38:f7:4e:b3:a0:23:a9:c3:e7:ba:7f:cb:8e:
58:0d:bb:37:29:63:0e:a2:50:0f:52:30:42:e1:73:
fc:45:a3:a9:fa:1a:08:df:59:19:45:bf:f5:91:f9:
91:7c:db:5c:1d:21:bf:e9:72:b3:7f:58:68:11:58:
76:90:6b:c6:82:2a:5c:d3:78:9f:2e:9f:31:6f:40:
17:ab:c3:b4:13:76:17:a8:2b:2c:1c:18:5d:02:ea:
e6:9b:cb:67:a4:82:ad:9e:3f:e6:ff:62:fd:cd:37:
f1:58:84:31:e2:a1:63:b0:90:f6:37:7a:7c:61:98:
59:46:d8:b3:63:f6:d4:9d:1e:97:ef:2e:b3:f8:bc:
d0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BF:05:E7:2C:17:74:48:13:96:9A:CB:E9:9A:F0:9A:E8:FD:03:89
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:64:28:e5:bc:22:a7:d3:b9:08:ae:34:5f:02:29:87:30:89:
43:24:01:c1:50:d2:58:83:d8:ae:d7:cb:c1:2c:5d:82:43:b4:
ef:13:63:55:f9:88:a3:4a:39:42:bf:b7:4b:ea:dd:e9:6a:b0:
88:7d:4f:4a:35:a9:28:50:61:de:52:61:6a:f0:4b:9b:ca:c5:
2c:d4:fa:b7:e7:50:ef:0f:32:c8:81:4f:dd:57:52:31:a3:cc:
59:6e:00:75:42:d9:93:86:e5:c1:2c:ff:f3:2f:55:7f:b9:a6:
db:94:6d:56:98:a9:1b:01:d5:5e:39:ac:80:89:69:8b:f9:59:
a0:b0:1b:4c:82:70:a9:a8:b3:37:8b:5c:38:2a:5f:3a:f5:20:
f1:5e:33:49:14:e1:fc:b4:f3:6f:23:7c:6e:17:51:2f:43:d6:
ec:e5:b8:32:8a:af:8d:cf:8d:82:ca:0d:bb:0a:d6:8c:f0:f0:
44:6a:e2:06:79:4e:e9:e4:6d:9c:a7:7b:f7:24:a4:6f:c9:1e:
16:61:5c:b7:04:6f:37:3c:d7:69:69:4c:30:88:1f:c3:30:b4:
db:e8:23:ae:e7:c4:14:66:32:5f:13:55:47:a6:88:34:b6:9e:
82:bc:39:fe:7d:32:93:69:b1:4c:70:08:a3:45:62:af:1b:f6:
64:b4:98:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 07:28:42 2025 by rpki-client