Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: vqTVL0l26CfDJ2two5gMBopMPMP1MndiFQPdT1qg2dw=
Subject key identifier: 9F:29:CB:0A:81:1E:18:C8:8A:21:ED:AD:49:1E:6A:13:75:39:B8:17
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 01960376F9B3E88F4950E5138EC5937C3656
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 029F
Signing time: Sat 05 Apr 2025 01:00:50 +0000
Manifest this update: Sat 05 Apr 2025 01:00:50 +0000
Manifest next update: Sun 06 Apr 2025 01:00:50 +0000
Files and hashes: 1: Q_kLSJOWLJDEhyzkodJRQWJEfMU.roa (hash: 2p8AahImaC704aSN2Sau8pFCrbFVUG9Dz60aJg9x1m8=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: CLrPVaBj/OZdiPYq7f3z7GhxO9uIpx12v16uAY33MFQ=)
3: hl-bZEBFsh1ZChc40Z0fl2eFeDc.roa (hash: GoC7lm4BXzEaLJBGVeCTSYenfrijER5VgtT8WvoxW4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 01:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:03:76:f9:b3:e8:8f:49:50:e5:13:8e:c5:93:7c:36:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: Apr 5 01:00:50 2025 GMT
Not After : Apr 6 01:00:50 2025 GMT
Subject: CN=9f29cb0a811e18c88a21edad491e6a137539b817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:71:c4:e2:22:e7:02:71:af:e4:7a:9b:45:b6:
11:1c:7d:c9:56:3f:09:67:f0:30:02:6d:c1:12:95:
fe:3d:d5:16:6d:2f:a5:a0:54:33:08:50:75:89:d8:
d8:76:ec:e8:57:5d:c2:b9:98:db:c7:47:f7:80:b3:
9c:b6:1f:92:54:68:b8:20:67:3f:1b:8e:27:75:5a:
c5:d2:87:2b:19:b4:63:8d:db:b4:f5:1b:84:2e:fc:
74:a5:43:8d:aa:38:60:9a:b7:f7:35:6d:1b:ec:e4:
8e:6b:98:8f:b4:33:0e:ec:98:8e:18:29:84:2f:d0:
73:c0:3e:51:8f:69:82:19:1d:04:8d:02:a2:0a:20:
a6:f1:69:e3:88:93:0b:70:13:e0:08:7e:95:e3:08:
21:89:5b:4e:1a:04:ac:68:a4:92:76:87:d9:52:55:
74:02:97:60:ea:03:9e:67:35:2b:a2:4c:89:56:1b:
f6:24:26:83:e4:b3:bd:62:dc:2e:14:a3:f8:35:62:
33:be:c9:9d:23:ef:a6:0c:1a:1e:2f:3b:ac:2c:fe:
20:e4:5b:6a:9e:77:0f:b2:c4:fe:8a:c7:7f:90:22:
5b:fd:e4:90:64:1d:08:ce:72:d2:e3:ac:39:4a:d3:
d0:60:70:94:7a:ef:8a:57:11:01:de:3c:7d:fb:ae:
78:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:29:CB:0A:81:1E:18:C8:8A:21:ED:AD:49:1E:6A:13:75:39:B8:17
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:d2:98:3b:d1:b0:96:d1:cf:58:84:92:c8:5a:e8:f1:74:4c:
db:84:a5:fa:9f:c5:59:a5:eb:6f:a8:d7:8a:7b:d0:99:4b:5e:
e6:01:b5:34:b6:53:58:1f:51:08:38:e6:ee:ad:d4:e7:20:63:
8f:9e:ba:0d:74:f8:52:2b:d9:20:0c:6e:fc:67:20:cf:83:37:
de:19:e7:ef:2d:3e:5b:b6:49:b7:63:31:00:a5:9c:a1:e1:93:
85:44:d3:be:8a:1c:2a:ad:2b:f1:b1:aa:95:d8:b4:9c:b6:d3:
9e:3c:15:28:4b:aa:0c:3d:06:22:7b:29:0b:74:3c:6a:40:67:
39:71:cf:e8:65:c7:e4:e8:86:2c:34:7f:57:34:d6:c3:4d:b4:
d1:d6:fa:18:b7:f6:a7:fe:09:4e:c8:a8:4a:77:c3:34:ec:e4:
15:e4:eb:09:f8:5a:04:d1:1b:a8:6a:10:03:30:8f:fc:3c:1d:
94:e0:83:d3:52:78:c4:40:db:ab:10:97:02:c6:f3:46:1a:c2:
d9:77:24:41:29:85:ff:f6:f2:61:02:4b:46:57:fb:91:12:16:
31:77:46:0b:a4:28:5a:ec:1f:d2:7c:2e:f8:fa:ec:89:da:47:
6f:80:3f:f4:01:1d:29:97:78:51:0c:11:56:ab:b3:86:2b:bd:
a0:f5:e6:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:01:10 2025 by rpki-client