Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json)
Hash identifier: bkxFuhkJv/1yr0l39KjmA224zmFK8EqtQevayRpGqUQ=
Subject key identifier: 78:E0:F9:C1:92:B8:C6:9E:1F:9F:B6:CA:08:48:6C:B9:C3:1B:CD:D2
Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310
Certificate serial: 0197B6A1A491F20140878085555AD09B6F18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
Manifest number: 0EFC
Signing time: Sat 28 Jun 2025 13:02:16 +0000
Manifest this update: Sat 28 Jun 2025 13:02:16 +0000
Manifest next update: Sun 29 Jun 2025 13:02:16 +0000
Files and hashes: 1: 5yn4zHauZM75VAijpeMoQrgxCO4.roa (hash: XNQWDr0wgLOmyX40wHgFFl4XUTUYTIzKWa/lVOSFR8o=)
2: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: JmD/r6Mwp1s1wOJOxid6/D0Xcw8xHeR8kIgZ+gQgGDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:a4:91:f2:01:40:87:80:85:55:5a:d0:9b:6f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310
Validity
Not Before: Jun 28 13:02:16 2025 GMT
Not After : Jun 29 13:02:16 2025 GMT
Subject: CN=78e0f9c192b8c69e1f9fb6ca08486cb9c31bcdd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:01:b5:33:b2:20:08:ce:ba:4c:2f:3f:b1:a3:
7f:ef:26:e7:c8:a1:4b:d4:b5:53:39:20:27:56:cb:
46:e9:d4:c4:22:04:17:b6:59:f2:b8:b6:93:55:f3:
45:06:6b:24:cd:20:24:77:9b:be:95:b5:a5:d3:78:
58:f6:32:c8:4a:55:8b:ff:02:46:ed:bb:42:ce:a7:
5a:b1:ac:7a:af:5c:5b:7f:0a:53:fe:b1:41:b0:a3:
50:ea:7a:81:3a:58:a2:bf:88:95:b8:e3:31:eb:69:
db:11:b3:93:c5:cd:b7:43:b4:2e:53:91:93:8d:34:
a0:64:e9:78:95:04:04:e6:25:83:15:37:31:95:c6:
b8:a7:d4:73:eb:86:59:87:60:7b:d9:38:62:fc:5e:
c2:ae:e3:9d:f3:99:6e:0d:7f:f1:88:84:33:6e:2e:
91:52:ca:06:00:bf:7f:4d:9d:59:d4:ea:bf:6d:6a:
fd:e3:a4:75:4f:20:ee:8a:ba:f8:80:05:4e:fc:07:
81:c7:8a:a9:a4:56:9f:1c:d5:98:11:8c:90:28:ef:
72:a8:c8:0c:e9:4a:cc:73:03:55:13:c7:4c:0f:09:
1b:5a:de:13:cc:05:dc:72:ca:2d:e4:a9:80:9f:14:
1d:60:bf:da:bc:65:07:d7:0a:cf:2e:08:a9:ae:1d:
9f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E0:F9:C1:92:B8:C6:9E:1F:9F:B6:CA:08:48:6C:B9:C3:1B:CD:D2
X509v3 Authority Key Identifier:
keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:cc:0c:ce:89:88:fc:e5:bf:71:a2:82:89:bf:8f:49:99:8e:
23:2a:64:82:40:5c:87:f2:23:21:61:1b:1b:24:33:99:9d:ab:
31:78:6b:30:b6:3b:33:a5:a3:d5:ef:c9:98:ce:8e:c6:63:3b:
35:9a:1f:38:1c:5a:7e:01:a9:e4:2e:42:50:87:8d:e0:28:e8:
2e:6a:b3:56:8b:17:89:0c:d2:d8:f7:e1:ef:6d:04:1c:60:a0:
5a:a3:91:23:d0:43:3c:62:3d:cb:e9:bd:dd:53:23:c4:cf:50:
73:eb:54:48:08:83:ec:bb:da:d5:a0:71:98:1e:9b:06:39:b1:
02:d1:5b:e1:38:2b:1d:cc:a6:b9:d3:0a:ff:87:70:c9:94:82:
2e:b4:a5:74:26:d9:02:bb:ef:a9:12:6a:0d:bb:b3:d3:48:d6:
56:d1:74:d1:fd:5b:77:9a:70:41:29:b2:20:5a:b6:80:85:ff:
6a:19:9e:a8:6f:d5:a4:ae:a2:83:0b:3b:72:26:a5:d7:54:04:
5f:0d:5c:fe:b6:76:69:ae:7d:66:8c:d5:09:30:1a:d1:20:27:
eb:8f:ec:d9:66:5d:9d:cf:9d:03:02:09:86:d2:ea:5f:4d:cd:
7d:fc:0c:95:1b:03:f0:e9:f8:5c:e7:1b:15:ad:b0:24:d4:d0:
6c:88:34:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:21:26 2025 by rpki-client