Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: oftY+DwXaUJBLsC+Uu/6U9Th8K37Gq70nSYsJKAnmDw=
Subject key identifier: 33:4B:2F:06:0D:A9:7B:67:07:F8:D1:76:CE:8C:97:19:7A:7E:EF:9A
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 01976C989E971A785414542FA2F83D722283
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 035A
Signing time: Sat 14 Jun 2025 04:00:30 +0000
Manifest this update: Sat 14 Jun 2025 04:00:30 +0000
Manifest next update: Sun 15 Jun 2025 04:00:30 +0000
Files and hashes: 1: Q_kLSJOWLJDEhyzkodJRQWJEfMU.roa (hash: 2p8AahImaC704aSN2Sau8pFCrbFVUG9Dz60aJg9x1m8=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: b14teFyE1/ckUVvrAbHN3oNsAo64AZvNmYwdBQ2ErJg=)
3: hl-bZEBFsh1ZChc40Z0fl2eFeDc.roa (hash: GoC7lm4BXzEaLJBGVeCTSYenfrijER5VgtT8WvoxW4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:9e:97:1a:78:54:14:54:2f:a2:f8:3d:72:22:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: Jun 14 04:00:30 2025 GMT
Not After : Jun 15 04:00:30 2025 GMT
Subject: CN=334b2f060da97b6707f8d176ce8c97197a7eef9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:44:05:29:3d:fa:66:1e:05:ab:91:5e:a4:17:
2d:24:1b:23:93:d3:58:dc:64:10:58:92:ba:04:a4:
fa:82:03:de:37:96:b5:e6:9f:54:5c:f2:96:40:7a:
bd:20:fc:b3:a2:8b:cd:05:e1:48:5e:2d:4b:b6:ee:
3d:ed:0c:ef:b6:e6:81:63:74:7a:34:1c:e9:28:30:
ad:31:1e:cb:ec:5d:8c:42:54:8d:5b:61:ef:3a:21:
66:1d:1e:9a:23:c4:04:0f:0d:39:9c:eb:82:2d:a4:
f0:b5:d5:dc:65:bc:29:6b:83:2f:aa:2c:20:6b:63:
bc:84:c2:22:83:64:69:ba:71:ef:49:32:a6:0f:f8:
99:2d:5b:fb:16:f1:0a:c9:e5:90:a5:40:86:72:3e:
a9:23:d3:08:03:35:ef:88:78:6f:87:4c:a6:d4:f6:
4f:84:0a:b5:5d:ec:83:44:67:e4:f5:37:c5:9e:eb:
4d:5a:8b:27:eb:f0:e6:ec:12:bc:33:b4:dd:46:a8:
1a:40:3d:94:5b:dd:cb:56:fd:18:57:81:b0:75:58:
8e:c0:e7:27:b8:85:df:39:a4:9a:8d:31:d5:f4:a5:
fc:d7:cc:67:7a:83:3f:69:f6:da:04:e1:b5:7f:01:
df:f2:aa:6d:68:0b:fd:67:57:ac:4e:cd:fd:a1:71:
88:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4B:2F:06:0D:A9:7B:67:07:F8:D1:76:CE:8C:97:19:7A:7E:EF:9A
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:f0:03:5a:7f:8b:6c:9d:68:38:d7:51:5a:52:95:10:be:e1:
02:00:f1:6c:c4:6d:81:63:d1:63:c4:42:2a:e6:7d:51:bb:fe:
95:08:e7:de:0b:c7:fb:1d:a7:18:0c:92:96:45:47:00:13:8f:
2a:e0:8a:e5:6e:97:e5:45:a9:a4:9c:0a:25:8f:88:b6:b4:f4:
3c:a5:9e:4f:d1:c5:0b:c0:6f:7a:2d:b6:d3:45:8b:a0:e5:5f:
f9:48:e4:37:2e:3a:0f:e5:c6:31:47:5f:66:e8:ee:20:d6:3d:
9f:1c:1f:14:07:3d:fb:f3:dc:f6:52:47:78:4b:3f:2e:17:2a:
cd:51:90:d5:27:87:76:e8:12:2e:41:1c:23:49:21:03:66:56:
69:80:1b:85:85:56:0f:f1:e8:01:0d:d8:e5:9c:b7:7c:1d:73:
13:d4:3e:04:c9:08:d6:bc:4f:45:f9:a1:00:68:51:05:71:24:
7c:e0:11:32:ac:6c:0a:4e:b8:28:f5:24:6e:22:a1:f3:23:87:
f2:2b:71:62:39:bf:51:ad:74:08:f1:49:66:2a:d9:30:f9:89:
83:05:0e:c2:76:7d:6c:d4:1c:5b:63:d2:42:24:86:cb:c4:f3:
5a:aa:1e:06:92:9a:4b:05:e1:bd:88:25:79:fc:f8:ce:b4:87:
54:3b:cb:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:37:50 2025 by rpki-client