Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json)
Hash identifier: UH/8GUhNLCJmJuJQM8Q8DVheg6KpAVQUP8lAL5PXbJA=
Subject key identifier: D6:A5:CD:12:EF:C0:1C:A9:96:25:D0:81:C9:B5:A1:47:B8:51:49:B9
Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310
Certificate serial: 01974C6937DD9AF10F4999D824F1D936B17F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
Manifest number: 0EC5
Signing time: Sat 07 Jun 2025 22:00:53 +0000
Manifest this update: Sat 07 Jun 2025 22:00:53 +0000
Manifest next update: Sun 08 Jun 2025 22:00:53 +0000
Files and hashes: 1: 5yn4zHauZM75VAijpeMoQrgxCO4.roa (hash: XNQWDr0wgLOmyX40wHgFFl4XUTUYTIzKWa/lVOSFR8o=)
2: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: rMueRn0KoDlw5E/bWuqaQr/HCVGmwjZqo7yJ6o+jb+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:37:dd:9a:f1:0f:49:99:d8:24:f1:d9:36:b1:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310
Validity
Not Before: Jun 7 22:00:53 2025 GMT
Not After : Jun 8 22:00:53 2025 GMT
Subject: CN=d6a5cd12efc01ca99625d081c9b5a147b85149b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8d:ff:ae:e8:ae:37:7d:85:89:b7:36:45:87:
2b:d3:4d:ba:36:03:d8:bb:d4:67:09:bd:c1:ee:fc:
f1:bb:d4:30:ac:96:74:eb:0e:a3:09:a1:4a:b2:9d:
fe:e5:51:2e:93:ef:af:3f:39:41:b8:ad:68:d4:57:
61:c9:9e:27:ba:75:56:8a:0a:b9:e6:3b:86:37:5f:
d2:f8:6c:01:61:ba:82:9d:58:47:cc:f3:ad:bc:72:
f6:ef:4f:b7:3c:6b:f5:81:98:c4:fb:53:03:8e:32:
82:92:1e:89:df:47:6d:b4:be:c7:89:c1:0c:ea:92:
00:6d:39:fd:a4:74:f4:03:b2:b4:9f:95:63:79:f5:
7a:b9:f3:d5:c4:6f:bc:f6:52:74:0e:c8:80:8b:af:
60:b2:f9:d5:cb:0a:ce:fd:dc:f2:9e:e2:f2:df:92:
39:ff:e5:1d:6e:a4:96:b8:40:c5:fb:9c:e0:2d:0f:
9e:10:67:ea:1a:91:db:8b:3b:7a:96:55:61:b5:a3:
a5:f3:d3:0f:37:68:84:ac:13:49:1e:b3:c8:a0:7d:
90:57:61:53:45:38:f8:7b:1a:54:98:69:cb:0b:e2:
22:33:b7:66:95:9a:c7:61:de:24:0b:94:22:da:1f:
e6:8d:e1:b1:0b:de:58:b9:82:95:1b:eb:e3:46:92:
88:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A5:CD:12:EF:C0:1C:A9:96:25:D0:81:C9:B5:A1:47:B8:51:49:B9
X509v3 Authority Key Identifier:
keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:18:38:d4:6f:12:b9:57:61:2d:02:ff:3c:ee:57:00:bf:3b:
8c:e6:86:ad:f4:a1:5f:79:3d:9a:bb:83:49:3d:42:d1:d5:eb:
07:c8:ed:62:e4:88:4e:30:ce:72:95:7c:59:7b:72:a6:bc:b4:
2f:81:75:05:bf:bc:47:db:f2:61:fa:46:d2:a0:0a:7f:3c:69:
73:f6:3d:c8:34:47:13:0d:e0:ca:15:a1:41:02:c4:66:3c:f7:
25:26:a9:ac:fa:55:bd:95:02:9b:52:73:d5:9a:b3:3a:d2:20:
eb:30:cc:84:aa:34:45:4c:e9:43:ac:c0:54:a1:a7:4a:37:74:
9c:29:24:7e:9e:97:73:27:2a:ff:5d:13:7d:60:42:a0:7c:5a:
49:38:e0:63:f9:c6:aa:54:17:13:e0:46:eb:65:e8:5e:82:2c:
d1:87:bb:fd:2b:6d:97:7a:fc:80:61:c9:f2:17:50:85:b1:9a:
00:03:1a:c2:5b:1e:29:3b:dd:87:02:89:0b:75:95:69:f7:d4:
60:d7:a5:8b:25:c4:d4:aa:ef:3d:f5:a2:d6:da:91:73:b4:9a:
37:75:80:b0:05:7e:7f:77:6f:6b:10:9d:59:73:c4:98:b0:1d:
65:b3:bc:77:3d:c6:eb:98:87:fc:44:fc:6f:52:5c:37:de:7f:
2d:9a:68:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:22:35 2025 by rpki-client