Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
File: h5axwx_d4r1emPj7t3mKvEdJPPI.mft (raw, json)
Hash identifier: 0l8oeO2hQZsAvYryW8UfB2/E3QqK2VPl9ad+Dkv0hC0=
Subject key identifier: DD:43:4E:B8:7B:78:D8:EC:84:27:19:C8:BF:66:D2:37:6A:A6:01:D5
Authority key identifier: 87:96:B1:C3:1F:DD:E2:BD:5E:98:F8:FB:B7:79:8A:BC:47:49:3C:F2
Certificate issuer: /CN=8796b1c31fdde2bd5e98f8fbb7798abc47493cf2
Certificate serial: 019683FEE59D540B45ABBF327A9E2EECF966
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5axwx_d4r1emPj7t3mKvEdJPPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
Manifest number: 11A8
Signing time: Wed 30 Apr 2025 00:00:42 +0000
Manifest this update: Wed 30 Apr 2025 00:00:42 +0000
Manifest next update: Thu 01 May 2025 00:00:42 +0000
Files and hashes: 1: Xaf_adaEk34l87Y0UzQQZjHD3uU.roa (hash: RtEuhMllYELC+PU6yqfyctqQo+07f0YVdbie5OODqqY=)
2: h5axwx_d4r1emPj7t3mKvEdJPPI.crl (hash: xLFbE0fGfMRmOcfAKzqOVxlGpMGUr4cJfoqoE1mQIhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5axwx_d4r1emPj7t3mKvEdJPPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:fe:e5:9d:54:0b:45:ab:bf:32:7a:9e:2e:ec:f9:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8796b1c31fdde2bd5e98f8fbb7798abc47493cf2
Validity
Not Before: Apr 30 00:00:42 2025 GMT
Not After : May 1 00:00:42 2025 GMT
Subject: CN=dd434eb87b78d8ec842719c8bf66d2376aa601d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7e:eb:be:49:9b:67:6b:a1:3c:01:69:71:86:
2c:94:ae:e1:7f:ea:f6:37:03:99:5b:ac:6e:47:e6:
f4:7d:98:f4:c1:b3:5c:16:d2:d0:99:9d:5c:c5:9a:
9a:73:14:6b:a9:24:54:6a:46:12:94:dc:92:36:f7:
08:2b:8a:ac:1d:37:f0:76:75:97:57:95:7b:3a:6a:
1d:8c:54:c4:9b:fe:62:14:79:64:96:97:3b:ce:0d:
82:78:ee:7e:37:a0:59:3d:58:1a:bf:67:d0:69:c7:
79:41:ef:b7:86:5e:2f:c1:aa:a5:58:b4:f0:0b:eb:
14:a7:b6:5b:ec:df:5f:35:40:93:9a:92:23:36:2d:
2b:52:fd:60:b5:9d:3f:e8:b3:1b:7a:e5:bd:2f:36:
30:8c:7d:ef:e2:55:27:40:ff:d8:a8:f8:0e:d1:95:
50:41:38:c3:f8:0e:78:7d:0f:21:5b:5f:9a:53:b5:
35:4c:6e:0d:96:39:d1:69:3a:87:0b:62:f4:f5:6c:
91:f1:ec:50:90:75:eb:a5:27:33:a9:39:51:6f:a9:
31:c7:83:60:1f:a6:fc:3c:e1:17:5b:1e:5d:44:ae:
c5:06:42:82:64:c7:d3:60:a5:57:30:70:dc:3b:f1:
f4:62:d3:37:dc:20:05:b3:cf:86:de:7d:9a:84:cd:
48:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:43:4E:B8:7B:78:D8:EC:84:27:19:C8:BF:66:D2:37:6A:A6:01:D5
X509v3 Authority Key Identifier:
keyid:87:96:B1:C3:1F:DD:E2:BD:5E:98:F8:FB:B7:79:8A:BC:47:49:3C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5axwx_d4r1emPj7t3mKvEdJPPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:63:08:6e:b4:a0:ce:2e:27:51:34:d8:4c:67:f5:a8:b1:ba:
35:b3:d4:f4:53:08:55:c7:65:32:1e:f9:72:0b:28:2c:d5:ec:
90:d3:57:8e:95:df:1d:b1:2c:ea:56:5f:87:3e:58:32:2d:df:
99:1c:29:70:38:a9:37:e3:42:c0:22:36:f3:16:76:a9:05:75:
00:94:d3:14:d9:cb:5d:8c:77:54:ac:d3:f7:0b:fa:c7:83:68:
11:f8:6d:6f:8e:12:98:cd:61:ff:f5:d3:0d:f0:3b:6f:c2:a2:
cd:48:c0:78:d3:86:7e:b3:bb:13:b2:5a:21:9e:e9:4f:95:fe:
27:c5:d4:ec:88:15:e1:07:98:e6:4c:95:83:13:65:19:af:3b:
86:d5:08:26:be:49:e5:db:6a:81:6f:a4:6f:84:cf:d5:0b:65:
50:77:3f:af:de:54:30:3c:7a:d1:59:05:f2:7b:56:6c:1e:e9:
1d:c5:0a:81:36:f3:eb:11:fa:a9:d9:91:91:85:9b:34:eb:a8:
85:6e:88:06:2a:96:a8:c0:a3:46:74:2b:d7:25:cf:14:30:6f:
6a:a9:3b:a3:2e:2a:d0:fb:44:a6:0b:f3:cc:ad:30:28:86:8d:
3c:91:4a:9f:3b:6c:08:aa:59:11:9c:31:96:93:64:4d:fc:bc:
60:b8:23:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 10:15:47 2025 by rpki-client