Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: pmVXaf/5xZx4J5Y2HWIhVx2WCL3ZqHpBCSFIrdZOiEg=
Subject key identifier: 12:4F:AE:2E:9F:C2:E4:DC:F1:34:61:10:C7:74:CC:BB:60:76:7C:D9
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 019673795636ABFA556810B0662672D67FBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 02D9
Signing time: Sat 26 Apr 2025 19:00:53 +0000
Manifest this update: Sat 26 Apr 2025 19:00:53 +0000
Manifest next update: Sun 27 Apr 2025 19:00:53 +0000
Files and hashes: 1: Q_kLSJOWLJDEhyzkodJRQWJEfMU.roa (hash: 2p8AahImaC704aSN2Sau8pFCrbFVUG9Dz60aJg9x1m8=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: q8edm5TlRieG6+WjBCuInohmpPlUHAt2gM7QoEcR6fg=)
3: hl-bZEBFsh1ZChc40Z0fl2eFeDc.roa (hash: GoC7lm4BXzEaLJBGVeCTSYenfrijER5VgtT8WvoxW4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 19:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:79:56:36:ab:fa:55:68:10:b0:66:26:72:d6:7f:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: Apr 26 19:00:53 2025 GMT
Not After : Apr 27 19:00:53 2025 GMT
Subject: CN=124fae2e9fc2e4dcf1346110c774ccbb60767cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:87:f5:b3:3d:09:f8:3a:46:fd:06:53:99:f4:
fb:75:98:12:95:5e:96:20:92:94:2e:c2:7e:e0:5a:
33:87:91:7e:49:91:cd:c0:63:94:d8:86:ec:d0:85:
49:b5:e4:6b:07:5d:6c:f5:07:f1:4c:d2:ca:0a:05:
88:4e:0b:60:0f:ef:85:a7:6e:e5:46:03:4a:69:d7:
12:a4:64:31:1e:7d:f4:fe:4f:b3:b3:ea:98:ea:49:
75:17:07:9b:dd:38:bf:72:7b:be:9f:b9:e1:ba:17:
ba:de:d9:c9:fd:a7:5c:b9:64:2b:0a:0a:9d:aa:38:
9e:45:90:92:4c:a4:2a:0a:f8:16:31:27:c4:c8:4f:
7c:e9:47:ed:ee:97:32:74:05:26:ad:81:c8:a4:be:
70:05:65:0d:9a:9c:b6:25:9a:88:06:57:d9:7f:2b:
4d:49:f3:a3:fe:ed:06:1a:50:00:13:4f:a8:6d:d8:
9e:7e:f4:31:e7:f7:f2:82:c1:e8:66:6f:8b:16:c3:
b3:63:fb:12:1b:d2:f8:2f:54:18:fa:f3:00:29:29:
58:cc:ef:8e:8f:8d:0c:05:11:c3:9c:ec:bd:7a:84:
47:44:4f:1f:6c:a5:fa:e9:44:4d:d7:ae:c0:04:37:
ca:31:cc:96:c5:92:8c:3a:a8:29:29:92:31:83:c1:
66:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4F:AE:2E:9F:C2:E4:DC:F1:34:61:10:C7:74:CC:BB:60:76:7C:D9
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:63:ea:ad:89:21:53:bb:c2:a3:16:8d:92:d8:8c:02:5e:eb:
72:b2:ec:cf:57:b1:54:6d:3c:7b:63:20:29:4b:8c:07:a8:d6:
1f:48:ac:66:c1:70:3f:97:1f:31:1a:79:49:0e:1d:59:de:81:
de:d8:f1:ad:52:c7:8a:b5:4c:1f:80:df:04:44:d8:08:ee:34:
15:de:d7:dc:94:26:bb:16:de:3a:6d:db:74:4f:63:44:b6:49:
c7:bc:ad:36:f2:bc:a5:2f:2a:9c:ed:7d:6d:a8:f3:90:97:67:
ea:a5:b2:a7:ff:2c:81:08:84:09:dc:9f:6b:2f:af:2e:69:ac:
65:90:2e:13:73:cc:b6:d9:dc:ed:27:0d:de:4c:2c:61:bc:79:
d4:9a:42:a1:75:1b:d8:68:98:a3:b7:56:a5:07:6a:b2:ff:32:
36:7b:2d:53:84:57:01:ec:99:31:2d:de:b1:a9:a5:42:f3:6c:
f0:79:2d:31:f7:96:11:d7:04:10:3d:77:a0:00:49:9b:78:24:
96:78:ea:80:68:93:a5:08:d3:af:dd:27:99:3f:84:cb:75:71:
b1:0e:db:ec:c4:49:e5:f7:b5:d2:cf:14:9d:6e:1c:1d:f7:6e:
7e:b3:d8:bf:65:3b:70:2e:14:fe:8a:f7:53:71:68:b8:9a:e5:
b1:37:e6:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZzeVY2q/pVaBCwZiZy1n+6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZWQ5Y2I4MzQwYWMyMDk1YTRjYjA1MjhlNWVhMmY3Mzhj
ZWE2NzIwHhcNMjUwNDI2MTkwMDUzWhcNMjUwNDI3MTkwMDUzWjAzMTEwLwYDVQQD
EygxMjRmYWUyZTlmYzJlNGRjZjEzNDYxMTBjNzc0Y2NiYjYwNzY3Y2Q5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk4f1sz0J+DpG/QZTmfT7dZgSlV6W
IJKULsJ+4Fozh5F+SZHNwGOU2Ibs0IVJteRrB11s9QfxTNLKCgWITgtgD++Fp27l
RgNKadcSpGQxHn30/k+zs+qY6kl1Fweb3Ti/cnu+n7nhuhe63tnJ/adcuWQrCgqd
qjieRZCSTKQqCvgWMSfEyE986Uft7pcydAUmrYHIpL5wBWUNmpy2JZqIBlfZfytN
SfOj/u0GGlAAE0+obdiefvQx5/fygsHoZm+LFsOzY/sSG9L4L1QY+vMAKSlYzO+O
j40MBRHDnOy9eoRHRE8fbKX66URN167ABDfKMcyWxZKMOqgpKZIxg8FmewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBJPri6fwuTc8TRhEMd0zLtgdnzZMB8GA1UdIwQY
MBaAFIftnLg0CsIJWkywUo5eovc4zqZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDct
N2IyMWJmMzAzY2NjLzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDctN2IyMWJmMzAzY2Nj
LzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYmPqrYkh
U7vCoxaNktiMAl7rcrLsz1exVG08e2MgKUuMB6jWH0isZsFwP5cfMRp5SQ4dWd6B
3tjxrVLHirVMH4DfBETYCO40Fd7X3JQmuxbeOm3bdE9jRLZJx7ytNvK8pS8qnO19
bajzkJdn6qWyp/8sgQiECdyfay+vLmmsZZAuE3PMttnc7ScN3kwsYbx51JpCoXUb
2GiYo7dWpQdqsv8yNnstU4RXAeyZMS3esamlQvNs8HktMfeWEdcEED13oABJm3gk
lnjqgGiTpQjTr90nmT+Ey3VxsQ7b7MRJ5fe10s8UnW4cHfdufrPYv2U7cC4U/or3
U3FouJrlsTfmYQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 04:20:23 2025 by rpki-client