Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
File: h5axwx_d4r1emPj7t3mKvEdJPPI.mft (raw, json)
Hash identifier: I05pDR2371hwzhGBQ9Ga12POrau2EUWDJP23/ZIPKnk=
Subject key identifier: CF:D5:EE:C4:90:3E:C3:E6:94:9D:D9:DF:15:32:51:7D:D7:32:C4:5C
Authority key identifier: 87:96:B1:C3:1F:DD:E2:BD:5E:98:F8:FB:B7:79:8A:BC:47:49:3C:F2
Certificate issuer: /CN=8796b1c31fdde2bd5e98f8fbb7798abc47493cf2
Certificate serial: 0198898E966A8CAA823DF6DDCFA20DAAF686
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5axwx_d4r1emPj7t3mKvEdJPPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
Manifest number: 12B4
Signing time: Fri 08 Aug 2025 12:01:19 +0000
Manifest this update: Fri 08 Aug 2025 12:01:19 +0000
Manifest next update: Sat 09 Aug 2025 12:01:19 +0000
Files and hashes: 1: Xaf_adaEk34l87Y0UzQQZjHD3uU.roa (hash: RtEuhMllYELC+PU6yqfyctqQo+07f0YVdbie5OODqqY=)
2: h5axwx_d4r1emPj7t3mKvEdJPPI.crl (hash: xfiKfUtyjYECuNFzHNDryVpdc4y4IVaUhA8Q7hJQefs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5axwx_d4r1emPj7t3mKvEdJPPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:8e:96:6a:8c:aa:82:3d:f6:dd:cf:a2:0d:aa:f6:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8796b1c31fdde2bd5e98f8fbb7798abc47493cf2
Validity
Not Before: Aug 8 12:01:19 2025 GMT
Not After : Aug 9 12:01:19 2025 GMT
Subject: CN=cfd5eec4903ec3e6949dd9df1532517dd732c45c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d5:7f:47:43:22:dd:33:1f:73:2d:e7:35:04:
d8:14:b9:9a:61:45:fd:ff:30:19:07:f3:0f:57:f3:
ab:32:5d:9f:c4:4f:1b:af:67:1c:91:c2:f9:ef:a9:
80:74:bd:8a:54:b9:84:07:7f:0c:f1:dc:13:5c:ea:
fe:38:58:56:3f:ae:fe:e9:d4:b5:9e:c9:c9:45:7a:
58:3a:f0:b1:5d:71:78:d5:46:aa:25:34:b4:2b:c1:
83:88:bd:16:7b:41:27:73:df:52:1e:6a:92:1d:0f:
29:68:26:cd:e2:50:f7:bb:c5:36:40:08:76:3f:de:
42:f4:97:74:37:bf:ac:05:55:73:f1:48:06:d3:e2:
4d:df:fe:90:38:46:0f:90:c4:51:5c:a5:93:27:45:
fd:a3:0c:88:6c:47:7d:34:0e:31:1a:44:d2:c4:da:
9a:a5:16:8c:b7:70:56:d6:c7:49:ae:17:cd:9f:27:
2b:fc:e6:e6:f7:4d:d6:03:b3:5b:85:df:20:b1:a3:
e4:6c:3a:e9:49:88:ed:9d:af:ff:3f:a4:4a:cc:02:
9e:2d:a7:d5:88:60:f3:fe:45:67:f8:12:b2:36:9c:
fc:c7:00:6d:66:fc:58:71:64:87:2a:1b:06:42:58:
bd:b3:b0:7e:b8:79:25:8c:26:a4:f3:cd:f1:29:dc:
bc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D5:EE:C4:90:3E:C3:E6:94:9D:D9:DF:15:32:51:7D:D7:32:C4:5C
X509v3 Authority Key Identifier:
keyid:87:96:B1:C3:1F:DD:E2:BD:5E:98:F8:FB:B7:79:8A:BC:47:49:3C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5axwx_d4r1emPj7t3mKvEdJPPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/2343a3-d0f2-4e8a-87d4-4ae3306da793/1/h5axwx_d4r1emPj7t3mKvEdJPPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:9e:46:ef:4c:70:bd:15:a4:4b:48:bf:a5:a5:44:a4:fc:97:
06:a3:2e:72:5c:08:ca:65:46:3e:17:db:01:97:33:15:83:45:
0e:55:5e:ad:4c:0c:d1:2e:ce:f8:ef:ee:7b:ef:fd:f6:b0:9c:
92:ac:ea:de:41:09:62:2c:40:5e:87:a8:ef:24:59:5a:01:c5:
4d:99:67:1b:b8:e3:ad:a1:97:16:bc:6f:32:3a:9f:cf:5d:43:
32:57:6e:73:34:b5:c8:bc:40:73:21:d1:e6:38:03:53:08:d7:
60:c6:3f:34:ae:34:23:94:f4:0c:bd:db:98:a9:6d:7e:ee:80:
fb:62:70:cc:4a:e2:b0:da:f3:ae:49:1d:4e:f3:b4:88:a5:e2:
3c:67:4d:6e:f6:90:26:7b:4b:ce:57:0c:ed:0f:01:34:cc:f4:
57:88:a4:3a:d8:32:f9:cb:ae:9e:dc:39:46:34:25:51:d3:29:
5c:8c:7e:99:7f:d9:c4:53:61:1c:da:8e:80:80:74:69:92:ab:
98:2c:14:b2:b5:09:e2:94:6b:64:18:b7:44:2f:fd:80:43:f5:
28:26:2d:b7:45:ae:6e:9d:64:73:fa:b9:a1:10:2c:b9:ef:6a:
ff:8f:63:c6:c7:8d:46:4d:b9:d8:3e:64:1a:eb:88:3a:05:aa:
d3:5b:71:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 20:46:13 2025 by rpki-client