Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json)
Hash identifier: 92nxV0IosFh0R95VL1+bqEX1It7g/hMznWaHBqV94dQ=
Subject key identifier: A6:5C:06:BD:7C:DC:E5:AE:F3:3F:AB:C0:E7:25:41:2C:9A:32:34:54
Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310
Certificate serial: 01965726EED0A345FE6DE637BAD3EBC1730B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
Manifest number: 0E46
Signing time: Mon 21 Apr 2025 07:01:31 +0000
Manifest this update: Mon 21 Apr 2025 07:01:31 +0000
Manifest next update: Tue 22 Apr 2025 07:01:31 +0000
Files and hashes: 1: 5yn4zHauZM75VAijpeMoQrgxCO4.roa (hash: XNQWDr0wgLOmyX40wHgFFl4XUTUYTIzKWa/lVOSFR8o=)
2: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: l0vnUobz/lbKNspqjbd3CLOVJKXd8GTqSjKCNWhx3uQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:ee:d0:a3:45:fe:6d:e6:37:ba:d3:eb:c1:73:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310
Validity
Not Before: Apr 21 07:01:31 2025 GMT
Not After : Apr 22 07:01:31 2025 GMT
Subject: CN=a65c06bd7cdce5aef33fabc0e725412c9a323454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:08:97:41:a2:02:41:cf:00:02:57:38:9f:26:
c8:ab:98:ce:b4:8a:74:86:d3:64:95:ad:08:07:61:
26:64:c6:60:ce:92:25:b3:0b:67:5d:73:bd:32:c3:
72:16:17:3d:ca:4e:22:d0:38:c9:d2:61:e0:52:48:
49:d5:f0:cf:53:11:8e:3f:af:91:fa:d5:33:b2:7a:
c8:8d:69:64:07:b6:3f:2c:9d:76:f5:25:1b:f0:d4:
a5:c9:ac:cb:1a:c2:d8:cc:35:9f:35:f3:df:ee:5b:
ad:b5:da:26:fc:b5:be:20:55:6e:85:e3:ee:17:74:
f0:f1:54:e7:8b:fd:61:28:77:ad:0a:10:c3:af:80:
2a:51:88:b3:83:27:f5:6a:bf:5b:e1:49:7e:e6:4f:
58:b3:58:e7:e9:7e:89:e0:38:e7:91:7f:fa:02:ef:
51:f0:2b:b7:2b:aa:38:dd:72:f0:f7:2f:31:09:33:
e4:6d:8e:d9:66:bc:46:0e:a1:e3:5e:28:5c:fe:d7:
f4:98:31:73:0c:3a:47:21:2f:05:2c:65:32:2b:5c:
24:e4:6f:a8:8f:99:fb:87:f6:f3:29:03:11:72:8f:
14:7b:57:cb:92:52:b6:7a:ae:8f:68:27:de:f6:38:
36:21:57:41:22:83:a4:ef:5c:cd:1f:0c:85:73:11:
2d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5C:06:BD:7C:DC:E5:AE:F3:3F:AB:C0:E7:25:41:2C:9A:32:34:54
X509v3 Authority Key Identifier:
keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:f1:2c:83:37:85:ab:0c:e6:fa:30:95:c4:cb:9e:a7:26:e0:
45:3a:ad:dc:c9:bf:36:b9:96:4a:e9:9c:9c:7e:86:b4:83:08:
03:3a:0a:bb:3f:8e:c9:bc:07:3e:a7:9a:61:95:41:d1:19:2c:
d4:87:26:f3:36:2b:9b:20:2d:85:d5:33:2e:4d:16:17:a2:c9:
63:b8:c9:17:2f:9f:ca:04:11:cb:7c:89:bb:71:b8:60:3b:22:
dd:6b:32:0c:5a:a3:cd:88:a6:d0:a2:cb:dc:da:ff:fc:ce:53:
86:d9:7a:83:f4:96:b1:5c:ff:9b:99:70:84:bb:28:d6:a6:40:
14:be:99:a3:f4:bb:e3:08:4d:1e:07:11:b4:42:a2:15:1b:86:
33:8d:41:24:2b:a4:57:63:40:41:5c:5d:f1:26:7d:ea:93:74:
b0:d6:91:5c:9f:73:ce:34:93:53:1f:ab:5e:20:3e:3f:d5:92:
07:0e:0b:8e:f8:9d:05:d5:59:a2:76:47:50:8f:c7:d8:2a:33:
c2:4b:e9:4c:2d:b8:5d:bc:e1:11:92:ea:7d:f1:77:00:f1:be:
cf:30:1f:bc:7d:76:93:aa:71:f9:53:1f:1c:b0:60:0c:b0:64:
59:80:d5:c9:f3:a6:ef:fe:2d:b1:ad:68:40:23:84:aa:cb:2a:
12:23:be:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:41:25 2025 by rpki-client