Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json)
Hash identifier: qUu2/zeMk5CggsMwzqD3ctSh6hJTTVBHcMLyYe2Cmxk=
Subject key identifier: E8:4E:4C:CE:F7:D7:06:0E:E1:1A:64:96:AC:53:E1:E1:65:D7:76:DF
Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310
Certificate serial: 0198D472CFB5A64F1882C01F5DA6B2562244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
Manifest number: 0F90
Signing time: Sat 23 Aug 2025 01:02:30 +0000
Manifest this update: Sat 23 Aug 2025 01:02:30 +0000
Manifest next update: Sun 24 Aug 2025 01:02:30 +0000
Files and hashes: 1: 5yn4zHauZM75VAijpeMoQrgxCO4.roa (hash: XNQWDr0wgLOmyX40wHgFFl4XUTUYTIzKWa/lVOSFR8o=)
2: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: oRbH1WiyhrNZWkXYLwC+Rs66AzI25k0YrNGsLsqHzzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:cf:b5:a6:4f:18:82:c0:1f:5d:a6:b2:56:22:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310
Validity
Not Before: Aug 23 01:02:30 2025 GMT
Not After : Aug 24 01:02:30 2025 GMT
Subject: CN=e84e4ccef7d7060ee11a6496ac53e1e165d776df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5b:2f:8a:26:0b:dd:e5:b6:9b:11:06:1b:54:
23:c5:e8:07:72:c8:7e:87:f0:21:d3:67:ca:0e:ef:
d0:8a:1e:86:e8:05:e4:f0:01:21:e0:d9:c0:d5:44:
0c:fe:43:24:9e:3b:3c:0c:23:1a:8b:e6:2c:6e:7e:
e2:cd:94:ef:51:41:04:24:ab:28:ea:3f:8c:f3:30:
54:4f:93:2f:48:fe:cb:a1:db:67:44:2b:78:e8:8e:
b2:2d:06:08:a1:1b:40:3b:21:51:51:b8:af:3c:60:
2e:cf:e9:40:c7:ff:c3:37:47:9d:45:15:4d:d5:8f:
ed:5e:23:e3:98:f0:05:ee:8a:8b:4f:c1:96:ef:a5:
05:46:6e:82:bb:1a:e2:6a:d6:57:d0:9c:ca:3e:21:
75:0b:eb:2c:87:93:86:70:0f:1f:5f:ff:e3:9d:e8:
e6:8b:01:2e:6a:01:6e:aa:36:34:2f:a1:e6:a5:b9:
0c:46:02:07:58:4a:bb:28:19:0f:ff:ba:0b:fd:e8:
79:8b:52:fa:bb:0e:c4:97:0e:3e:d0:12:7d:24:12:
f7:0d:88:9f:fb:56:c2:62:9d:c5:31:83:2f:b4:b4:
5c:99:0e:85:97:bd:0a:97:ea:32:a7:b8:47:46:c3:
22:2e:d9:3c:14:31:50:d7:9d:ff:45:2a:fe:f7:06:
11:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:4E:4C:CE:F7:D7:06:0E:E1:1A:64:96:AC:53:E1:E1:65:D7:76:DF
X509v3 Authority Key Identifier:
keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:9e:1c:54:a0:54:1c:83:4f:82:be:40:9d:fa:a3:84:35:ef:
a2:d5:da:94:9b:ba:b0:b3:c3:95:88:45:39:f9:af:12:e7:94:
35:e9:06:b2:e7:29:5d:7c:44:36:56:c9:37:2a:3f:fa:4c:2e:
0b:f3:85:c9:7c:5a:6a:20:fc:b2:dd:ec:c5:6e:28:0b:fd:b5:
6a:b7:13:c1:2b:35:13:d3:d0:64:4c:76:02:9c:0e:bd:86:94:
09:56:1b:d7:cc:4c:58:27:57:8f:a7:94:db:6d:c9:e2:e1:bf:
9d:fc:bb:e1:fa:de:bd:db:78:47:49:69:02:d8:56:9c:91:3b:
cf:c2:07:a0:bd:91:df:c9:40:67:15:4b:d5:01:e1:4d:d2:57:
62:d7:ce:80:73:0b:7a:d6:4a:62:70:b5:5b:17:52:54:99:60:
93:1f:0f:bd:3e:d5:25:57:18:71:70:eb:2d:b6:a8:90:3c:5a:
82:7e:fd:6c:a1:d3:89:50:5a:b7:ab:d8:1f:48:d3:b1:c4:13:
79:37:c1:b1:1f:77:93:a5:f1:ab:79:31:f8:92:4e:e6:bf:1a:
6f:9b:f9:26:3c:45:87:02:81:81:fd:ae:c6:70:90:f6:94:92:
61:58:63:3a:f0:c7:a5:60:56:8d:a2:d2:cd:f2:a9:a9:74:ea:
f8:6f:1b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:27 2025 by rpki-client