Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
File: h5axwx_d4r1emPj7t3mKvEdJPPI.mft (raw, json)
Hash identifier: nn+v8cteGLCCC8uu87fTstkWe4MYOhdu7hXaguLmDLE=
Subject key identifier: BA:DF:24:74:33:9E:E9:6B:DF:F7:08:38:40:F1:68:8C:72:3D:59:17
Authority key identifier: 87:96:B1:C3:1F:DD:E2:BD:5E:98:F8:FB:B7:79:8A:BC:47:49:3C:F2
Certificate issuer: /CN=8796b1c31fdde2bd5e98f8fbb7798abc47493cf2
Certificate serial: 01977D1E5272318240DA0A91262AEE415A68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5axwx_d4r1emPj7t3mKvEdJPPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
Manifest number: 1229
Signing time: Tue 17 Jun 2025 09:00:28 +0000
Manifest this update: Tue 17 Jun 2025 09:00:28 +0000
Manifest next update: Wed 18 Jun 2025 09:00:28 +0000
Files and hashes: 1: Xaf_adaEk34l87Y0UzQQZjHD3uU.roa (hash: RtEuhMllYELC+PU6yqfyctqQo+07f0YVdbie5OODqqY=)
2: h5axwx_d4r1emPj7t3mKvEdJPPI.crl (hash: OE5TYIlIeYOzVNfK8Nd8FMnDyxarIbFkmBXk5RAnv34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5axwx_d4r1emPj7t3mKvEdJPPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:1e:52:72:31:82:40:da:0a:91:26:2a:ee:41:5a:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8796b1c31fdde2bd5e98f8fbb7798abc47493cf2
Validity
Not Before: Jun 17 09:00:28 2025 GMT
Not After : Jun 18 09:00:28 2025 GMT
Subject: CN=badf2474339ee96bdff7083840f1688c723d5917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:12:72:6c:d5:14:22:10:c4:29:d0:a4:3e:12:
23:ff:90:b8:58:54:bb:2d:95:04:14:1b:23:05:17:
a0:43:ed:b4:38:6f:0a:45:cd:c7:48:61:c0:94:c3:
63:36:86:6b:51:cb:c2:1c:49:c8:9c:14:a8:f1:a5:
1f:46:89:fc:56:fe:06:6f:af:60:f8:99:37:db:60:
b2:15:4a:16:a2:57:9e:3d:af:75:d5:a0:1c:2f:91:
a9:ff:35:fc:ea:96:1c:fd:01:1b:6b:df:9f:84:88:
f1:65:ed:67:ea:40:d7:da:df:5f:03:3c:60:93:79:
72:73:ad:4c:70:92:86:a1:e6:48:91:61:47:17:7b:
02:46:bd:86:a7:a0:b3:92:ee:43:7f:8b:53:0f:dc:
4f:08:82:fd:5c:10:73:89:b6:62:15:d2:0c:a3:6a:
fc:24:e2:58:5b:55:96:78:de:b1:59:1c:c2:f9:d9:
52:91:ae:1a:35:aa:4f:57:9b:bf:d7:cd:c7:64:1a:
38:71:46:f5:04:ea:f4:9d:45:14:3f:2c:f2:0f:f4:
25:cc:ec:70:20:0a:12:2c:e1:ff:99:ba:6c:0c:f8:
4f:f2:f0:7e:c2:d9:73:ca:51:a1:d0:89:44:a3:19:
11:84:a0:a6:dc:8c:75:d7:d0:8d:13:71:6d:0c:c8:
ea:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:DF:24:74:33:9E:E9:6B:DF:F7:08:38:40:F1:68:8C:72:3D:59:17
X509v3 Authority Key Identifier:
keyid:87:96:B1:C3:1F:DD:E2:BD:5E:98:F8:FB:B7:79:8A:BC:47:49:3C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5axwx_d4r1emPj7t3mKvEdJPPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:54:3f:c3:f4:9c:e8:e1:55:70:28:5a:3e:e0:d3:8d:60:60:
f4:cd:98:75:45:e8:77:cd:a0:e0:77:ce:31:14:a8:9a:d3:42:
dc:87:46:1a:eb:11:0f:b2:77:d8:e6:6b:79:fa:65:b7:dd:01:
7d:1c:3c:e9:75:74:04:51:5e:0e:d0:54:f7:3e:a0:f9:e2:b4:
68:16:7c:e3:8e:cf:20:e0:cc:70:6c:33:33:98:d9:d5:35:00:
97:a9:8d:f1:76:c9:c6:df:ab:03:9e:98:0b:bd:69:f9:39:7b:
51:1c:9d:58:6d:c4:92:77:e4:e8:ac:62:b9:1a:10:62:03:a3:
c5:d8:59:8a:8c:37:77:38:aa:26:de:6e:a4:8d:93:2d:8d:25:
21:77:4e:93:fa:5a:33:02:dc:c4:90:3a:35:49:f7:9c:9b:f9:
c5:fb:f2:09:6c:dc:14:75:d1:dc:2a:5b:9a:34:b4:18:8a:3c:
0d:fa:a8:d7:93:e6:a6:47:d3:cc:03:ca:0f:e4:d8:47:1e:c8:
23:b2:b6:26:4b:8b:3b:77:e4:57:9c:e9:a1:fb:db:13:96:25:
08:b5:08:ea:9e:f4:fe:57:3d:03:22:2c:b6:45:5b:5c:4e:d4:
f5:fb:c1:be:11:e1:33:77:9d:60:1d:ec:cc:6e:0e:29:48:f3:
0f:74:c5:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 12:21:20 2025 by rpki-client