Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: mJA6u9tYO0QF5E8Tfy3H75Wd0Nh55iVxKIX8VXCw+M8=
Subject key identifier: 02:F2:E6:43:A8:F9:79:B4:D6:A8:AF:2A:0E:37:14:1A:87:FB:E7:AB
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 0198D5BBBD0DB1B49B3534441A1271B5CA20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 0415
Signing time: Sat 23 Aug 2025 07:01:47 +0000
Manifest this update: Sat 23 Aug 2025 07:01:47 +0000
Manifest next update: Sun 24 Aug 2025 07:01:47 +0000
Files and hashes: 1: Q_kLSJOWLJDEhyzkodJRQWJEfMU.roa (hash: 2p8AahImaC704aSN2Sau8pFCrbFVUG9Dz60aJg9x1m8=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: pgV9MGnliMz7YL0dnRcvNEaDrdRC79KN57fMmxwoVyY=)
3: hl-bZEBFsh1ZChc40Z0fl2eFeDc.roa (hash: GoC7lm4BXzEaLJBGVeCTSYenfrijER5VgtT8WvoxW4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:bd:0d:b1:b4:9b:35:34:44:1a:12:71:b5:ca:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: Aug 23 07:01:47 2025 GMT
Not After : Aug 24 07:01:47 2025 GMT
Subject: CN=02f2e643a8f979b4d6a8af2a0e37141a87fbe7ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:46:76:bf:a8:90:d9:12:5d:b3:f4:7e:73:01:
5a:bc:26:61:ec:f5:06:b3:c6:e7:8a:cc:09:c0:b2:
c0:01:21:14:55:b0:58:d2:67:10:1d:28:07:e3:a8:
cc:20:a8:8f:19:3b:cb:b8:e3:29:c6:0f:47:30:df:
a3:94:5a:b8:2e:09:ca:1c:d2:60:45:3d:a1:78:3c:
68:75:da:c2:e8:40:81:f3:d2:ea:87:41:f4:7c:85:
84:f0:0b:19:7c:38:b0:be:cb:81:17:15:c6:2a:04:
a5:0a:60:23:c5:8f:25:ce:e7:2e:49:0b:61:d8:04:
40:65:fa:60:8b:dc:ef:7f:22:ad:ff:43:ee:b7:6d:
58:9f:dc:cb:64:62:df:f5:4e:f9:a8:49:c7:cf:4a:
74:40:0a:4a:4e:f1:92:fd:3e:4a:74:f3:1e:6e:d2:
e7:71:b8:b0:83:3c:0b:35:1e:41:4d:35:1d:6a:64:
21:ee:2c:ca:ee:90:b5:82:3e:e4:53:17:f5:8f:9e:
32:d0:c5:06:cb:2c:49:0e:ff:da:45:69:4a:88:8f:
64:fd:ed:dc:20:32:0a:3e:83:bb:e0:58:76:f1:8c:
a1:2a:39:da:34:b0:71:41:a4:50:0d:a0:b2:42:58:
9a:20:29:88:87:39:de:76:98:53:e8:7a:26:4e:a1:
9e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F2:E6:43:A8:F9:79:B4:D6:A8:AF:2A:0E:37:14:1A:87:FB:E7:AB
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:dc:04:cd:ff:1f:c0:4e:70:81:44:4d:98:40:17:98:ed:ce:
4e:30:c1:2c:bf:16:84:fb:c1:36:92:01:6e:c9:e3:ac:a6:0b:
63:4c:9b:62:d8:b0:91:4a:86:b2:cc:8c:df:a2:b1:ae:07:ba:
b8:3f:35:10:66:23:06:82:6f:e2:24:2d:62:aa:f6:b0:7e:ee:
d2:13:c3:08:a2:b6:34:68:3d:ac:6d:5a:a2:4c:ac:ae:77:45:
cf:f0:7d:a5:6b:4c:f9:6e:da:88:a7:1d:87:87:8d:ed:e3:b7:
c0:fc:c2:0a:ad:9b:1a:0d:44:1d:d8:b3:2a:10:a4:09:44:2b:
b2:f5:98:b7:52:ae:1d:d2:c1:c2:27:c0:4b:0c:13:23:2a:23:
2e:51:ad:74:88:5a:94:a4:94:e6:88:48:99:ed:49:06:48:a7:
e5:89:31:fd:7a:25:54:dc:e0:89:36:81:4b:cf:65:71:6b:fc:
7e:7c:51:99:c1:51:a7:a9:19:04:54:53:2f:a3:60:cc:06:8f:
34:c4:ef:fb:55:ff:22:eb:ce:35:5b:a7:11:ed:b7:2c:d5:85:
0a:f9:e0:be:81:97:d6:50:86:3c:be:a8:c7:04:0f:f6:4f:52:
d4:d6:c5:42:c1:28:e2:c2:34:07:17:4b:84:76:ae:6e:a8:ad:
ee:1e:b3:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:35 2025 by rpki-client