Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: cDA+xhrphVoMYlaFOHTfZ9Sv5S7gFRPZDPzSvceQ0Do=
Subject key identifier: 6B:72:94:5E:BD:69:8B:A1:7B:2E:18:16:8A:4B:FE:20:9A:95:03:B0
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 0196C0B8AA735B2CD7101AAF5D738A2B8F11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 0301
Signing time: Sun 11 May 2025 19:00:49 +0000
Manifest this update: Sun 11 May 2025 19:00:49 +0000
Manifest next update: Mon 12 May 2025 19:00:49 +0000
Files and hashes: 1: Q_kLSJOWLJDEhyzkodJRQWJEfMU.roa (hash: 2p8AahImaC704aSN2Sau8pFCrbFVUG9Dz60aJg9x1m8=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: KVn1l8isXz0lRkTUemJ+7KtlvomFuIZuruWFzB5/Z2U=)
3: hl-bZEBFsh1ZChc40Z0fl2eFeDc.roa (hash: GoC7lm4BXzEaLJBGVeCTSYenfrijER5VgtT8WvoxW4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:b8:aa:73:5b:2c:d7:10:1a:af:5d:73:8a:2b:8f:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: May 11 19:00:49 2025 GMT
Not After : May 12 19:00:49 2025 GMT
Subject: CN=6b72945ebd698ba17b2e18168a4bfe209a9503b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c8:80:a9:02:0f:cd:ee:07:cb:6b:f6:93:39:
d2:56:39:34:ac:d9:55:68:50:41:92:1f:a7:d6:08:
b0:2b:24:df:02:99:94:1a:90:f0:f5:e1:16:71:65:
68:41:58:9f:fd:02:b1:2f:9d:ad:99:40:6b:2f:a7:
23:ef:96:35:01:25:df:05:0a:6a:53:7a:a8:1a:18:
23:0d:be:6d:14:57:c4:c6:e7:50:e6:15:01:71:96:
c7:01:ec:5b:8d:3c:ed:cd:32:3f:c8:89:35:db:d4:
9d:72:05:76:b2:0d:9c:8e:02:e9:ff:06:14:33:3e:
4b:7d:17:7b:b8:ea:92:ee:16:df:0f:ef:31:f1:43:
10:40:e3:fc:06:27:b6:a3:d4:fb:f2:f9:d1:df:08:
e9:cb:dd:10:e5:86:7c:52:93:c7:f3:8c:21:ec:bf:
78:b0:4a:51:56:48:88:70:c4:0e:e4:2e:76:e1:3f:
c7:cf:67:f0:0e:08:5f:d4:cf:66:3d:e2:8f:2e:07:
76:d3:16:93:c8:8d:e7:94:c6:e9:50:22:0a:70:14:
24:8f:79:63:01:7a:93:38:9e:12:1f:d7:d5:36:96:
bb:10:43:01:97:44:4d:b8:44:14:05:73:ce:89:b7:
c3:7c:d2:2a:d1:33:9e:ff:23:05:6d:2e:0b:13:92:
30:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:72:94:5E:BD:69:8B:A1:7B:2E:18:16:8A:4B:FE:20:9A:95:03:B0
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:4c:80:d0:91:60:71:0c:93:98:ee:00:84:53:0e:0a:43:a3:
43:a4:18:f9:f2:99:ac:c3:6d:b7:cd:b3:ed:b3:29:3a:af:2d:
80:c6:70:65:d2:73:41:13:6c:60:dc:1c:1a:6b:56:86:df:1a:
c7:cc:fa:81:61:ff:86:8e:47:d4:cb:66:9b:de:88:c2:be:27:
df:21:b5:c3:bd:44:78:37:7f:b1:70:1b:0e:2c:20:4f:f1:42:
0f:17:89:2c:38:44:2d:d9:c5:10:16:95:29:97:4c:0e:a4:02:
40:0e:af:d8:8b:3a:90:4e:36:5c:29:34:0c:59:67:b2:66:b7:
13:d5:14:b0:a3:af:26:d4:00:de:b1:0f:b2:e0:b6:4c:12:ab:
37:a2:65:28:f9:eb:be:a2:36:2b:6b:b5:59:99:13:1d:08:38:
3c:17:30:37:9b:e4:96:ba:90:dc:54:85:dc:5e:94:cc:34:34:
ae:31:16:39:e9:01:ef:88:27:de:89:6b:9d:ac:fa:1e:ea:64:
33:b9:74:a8:05:ce:80:f4:c2:2c:46:dc:54:72:31:c8:1e:aa:
85:ed:ce:c0:fb:a7:e2:af:d6:e5:69:cf:61:0c:42:15:6c:84:
be:e5:37:41:7f:b4:9d:f6:18:dd:cd:6a:78:8b:79:08:0a:1d:
fa:a9:5e:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:21:25 2025 by rpki-client