Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: xU6+OszW7nz9JVXDkeazxKHX5t5GpxJY+SHpHQrwQtA=
Subject key identifier: A2:DE:C8:04:A3:1C:DC:22:C5:44:85:96:DE:AD:EC:D7:56:D8:9F:9B
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 01988A69AD13C4190495C6770D5B01E648C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 03EE
Signing time: Fri 08 Aug 2025 16:00:37 +0000
Manifest this update: Fri 08 Aug 2025 16:00:37 +0000
Manifest next update: Sat 09 Aug 2025 16:00:37 +0000
Files and hashes: 1: Q_kLSJOWLJDEhyzkodJRQWJEfMU.roa (hash: 2p8AahImaC704aSN2Sau8pFCrbFVUG9Dz60aJg9x1m8=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: Gj5SniPVLh+vzzksZlWQulP3DhDioBQPjfeH/afvOfc=)
3: hl-bZEBFsh1ZChc40Z0fl2eFeDc.roa (hash: GoC7lm4BXzEaLJBGVeCTSYenfrijER5VgtT8WvoxW4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 16:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:69:ad:13:c4:19:04:95:c6:77:0d:5b:01:e6:48:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: Aug 8 16:00:37 2025 GMT
Not After : Aug 9 16:00:37 2025 GMT
Subject: CN=a2dec804a31cdc22c5448596deadecd756d89f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b0:7d:fd:c0:c6:3b:b4:99:53:e1:8c:35:3f:
67:a3:7d:d8:4d:fa:16:8c:ff:25:2f:e5:8f:cc:29:
ae:62:7b:dd:1a:a5:b2:02:89:b4:9c:cc:1b:aa:6b:
ba:b0:64:82:bb:57:ce:b8:b4:e0:41:64:04:aa:b9:
f4:42:d6:45:4e:53:53:a5:d7:d2:f0:07:25:a8:f9:
82:1b:7e:23:f9:f0:e3:9b:0f:4f:29:c3:b4:1e:05:
28:db:8a:9b:e8:e5:79:1e:b6:50:7c:aa:f5:a1:17:
84:33:f3:85:0f:aa:8b:99:9a:77:54:3c:b9:e6:a8:
a0:f9:db:2f:3e:99:1c:b6:65:8a:11:a7:d5:e6:f7:
49:71:e5:ef:9b:07:a5:59:6b:f4:72:71:5e:5a:4b:
a0:04:34:99:03:eb:f7:1c:df:0e:87:14:b0:e3:af:
1d:ab:5e:1a:ac:a8:53:d2:5d:4d:22:db:62:c5:67:
d4:97:0c:68:87:4e:a4:87:a0:0f:7a:e8:a1:82:94:
7c:93:0e:27:57:55:1f:2d:70:94:39:54:33:46:fb:
37:34:0d:5c:e0:ee:1f:f2:1a:73:a9:09:f7:9d:5a:
4d:d7:7e:1a:36:f8:c2:cd:99:81:79:c7:30:19:0f:
bc:49:19:f3:d0:0d:71:56:1f:22:1b:e2:03:c3:e0:
67:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DE:C8:04:A3:1C:DC:22:C5:44:85:96:DE:AD:EC:D7:56:D8:9F:9B
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:ac:0e:8e:63:a6:48:43:f6:cc:eb:0c:72:17:3a:14:03:8c:
0e:2a:12:9a:b7:36:6c:a4:09:a3:1b:35:20:f3:52:83:f7:3b:
4b:27:0b:2e:f6:3c:67:55:37:f2:0b:73:af:d6:a8:3a:d6:4a:
03:e8:a4:9f:16:93:af:99:09:0f:c2:57:d4:d5:0c:22:b8:3a:
c5:a1:b5:a2:68:cf:98:22:f8:18:d4:c4:ef:b4:b2:53:5c:e0:
bf:c0:93:7d:b8:c3:62:3a:3e:32:90:fd:ca:32:a5:38:a7:74:
34:85:74:c6:22:71:fb:00:21:f8:a1:91:be:a2:19:03:e8:da:
f0:30:88:38:c7:5a:9a:39:94:d7:14:93:40:9d:07:60:33:50:
dc:ab:b7:b1:4e:dc:48:ab:c8:98:14:d5:58:e7:f8:ab:b2:99:
76:1d:2c:1b:f7:f0:f0:35:e2:d2:a3:8a:3c:52:08:57:9a:8b:
7e:32:78:85:b1:7f:4b:73:d4:d2:13:30:59:cd:9c:11:04:c4:
9a:9b:45:2c:30:51:6b:80:7f:bb:7d:4d:94:c6:a2:30:c7:3a:
af:de:14:a7:52:85:eb:ea:c5:68:7d:22:ac:97:9d:15:87:cf:
b3:74:1a:df:4d:eb:1a:d0:7b:88:9b:2f:a9:05:bd:07:1a:b4:
af:fa:bc:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:08:39 2025 by rpki-client