Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
File: h7-ak2z5rSjsWNt5imD9cd9sN_M.mft (raw, json)
Hash identifier: gMDxQzE8SOilTO8fmQHUgxoXmuz0AFkk37tR5RbPUQE=
Subject key identifier: 5A:04:65:0E:A3:57:71:BF:DD:DE:1A:A6:25:8A:23:E7:DB:BF:A2:4D
Authority key identifier: 87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
Certificate issuer: /CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Certificate serial: 0196C15D343EB70C7158AE29CA2B05F0D3C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
Manifest number: 0DF7
Signing time: Sun 11 May 2025 22:00:32 +0000
Manifest this update: Sun 11 May 2025 22:00:32 +0000
Manifest next update: Mon 12 May 2025 22:00:32 +0000
Files and hashes: 1: h7-ak2z5rSjsWNt5imD9cd9sN_M.crl (hash: mTAjwurdK9E0aZW7fCGHgw4H9t5cFqGawrvlk7AsGTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 22:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:34:3e:b7:0c:71:58:ae:29:ca:2b:05:f0:d3:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Validity
Not Before: May 11 22:00:32 2025 GMT
Not After : May 12 22:00:32 2025 GMT
Subject: CN=5a04650ea35771bfddde1aa6258a23e7dbbfa24d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:bf:53:ec:f2:9e:98:a2:95:b6:b6:8c:06:39:
59:7d:d7:72:d7:a8:61:e4:b9:da:1e:ae:69:a9:05:
c1:cf:c5:2c:3f:04:19:3c:c5:e9:9b:37:86:55:30:
ea:13:cf:23:a2:d0:d1:25:d7:7b:6a:d6:7f:a6:3a:
f1:7f:79:7c:46:79:99:2d:78:55:76:91:00:c6:6c:
f5:75:fc:22:71:51:ed:07:8d:cd:88:9a:e5:0e:b8:
51:1f:59:a6:48:a1:de:b8:12:4b:8a:bf:38:86:5a:
4e:2f:6e:5d:a2:d0:93:5d:e5:36:ca:66:54:b1:e6:
ac:4c:52:8e:1b:5c:4a:63:5a:a9:cd:8f:0c:6f:3a:
8b:99:d2:9a:87:07:65:7f:b0:8d:6a:d1:be:d2:99:
dc:af:b0:cb:3d:88:8b:a5:e3:f8:e4:dc:4d:4a:0e:
dc:07:28:c3:22:e0:a3:c2:46:9a:f4:91:d3:8c:75:
15:6e:51:80:9e:3b:0d:e1:8d:09:18:78:17:9f:96:
17:61:5f:de:b3:a5:b7:84:b4:ab:aa:91:28:d5:d4:
05:d4:5d:50:53:dc:aa:a5:03:e1:fd:ba:27:a9:52:
3e:56:39:be:3f:07:e2:db:8b:b2:fb:3e:69:09:ee:
1e:46:05:d5:0f:0a:50:d2:e3:1e:79:e9:76:9d:a3:
f1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:04:65:0E:A3:57:71:BF:DD:DE:1A:A6:25:8A:23:E7:DB:BF:A2:4D
X509v3 Authority Key Identifier:
keyid:87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:e2:13:3a:17:05:bf:f3:ad:18:aa:83:e8:3b:7b:a8:e4:57:
bf:9c:ad:4d:10:89:4c:5b:ed:a2:ff:ae:06:43:64:04:fe:24:
fd:9a:1d:a8:37:48:d1:27:0a:dc:00:8a:be:f6:d6:da:18:87:
4f:5c:1f:5b:72:f7:ff:a5:f4:6d:d7:32:47:5c:d3:c9:b9:cf:
d8:4b:af:9f:17:c8:8c:45:0b:23:f1:0a:45:86:d0:b2:36:ac:
56:24:dc:cd:db:ed:2d:b8:9d:c8:7e:e6:c4:27:e8:1b:fa:f8:
29:d4:c4:0d:1f:af:bc:32:bb:2a:38:d7:49:db:c8:4b:a1:d3:
44:1c:5e:19:56:21:81:cd:67:2e:15:b9:73:53:0e:91:dc:de:
f7:7d:e7:61:ea:8c:d6:7b:ab:a3:11:a2:ad:99:e3:97:7c:f4:
81:0f:18:c9:d1:6e:b3:a3:98:0d:7a:62:88:e2:c7:d6:a0:6c:
63:9d:5f:bb:d0:2c:73:cd:25:b7:2e:db:6e:a9:57:2b:ba:38:
a6:27:6c:70:08:58:38:49:85:8d:2d:6c:2f:45:02:b1:d3:32:
71:8e:1c:08:81:54:9f:11:91:45:ab:95:91:6d:6e:62:6b:5f:
68:f2:a3:5f:82:45:55:df:1b:de:7c:77:f5:7d:68:48:43:d5:
15:ea:f2:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbBXTQ+twxxWK4pyisF8NPEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3YmY5YTkzNmNmOWFkMjhlYzU4ZGI3OThhNjBmZDcxZGY2
YzM3ZjMwHhcNMjUwNTExMjIwMDMyWhcNMjUwNTEyMjIwMDMyWjAzMTEwLwYDVQQD
Eyg1YTA0NjUwZWEzNTc3MWJmZGRkZTFhYTYyNThhMjNlN2RiYmZhMjRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6r9T7PKemKKVtraMBjlZfddy16hh
5LnaHq5pqQXBz8UsPwQZPMXpmzeGVTDqE88jotDRJdd7atZ/pjrxf3l8RnmZLXhV
dpEAxmz1dfwicVHtB43NiJrlDrhRH1mmSKHeuBJLir84hlpOL25dotCTXeU2ymZU
seasTFKOG1xKY1qpzY8MbzqLmdKahwdlf7CNatG+0pncr7DLPYiLpeP45NxNSg7c
ByjDIuCjwkaa9JHTjHUVblGAnjsN4Y0JGHgXn5YXYV/es6W3hLSrqpEo1dQF1F1Q
U9yqpQPh/bonqVI+Vjm+Pwfi24uy+z5pCe4eRgXVDwpQ0uMeeel2naPxLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFoEZQ6jV3G/3d4apiWKI+fbv6JNMB8GA1UdIwQY
MBaAFIe/mpNs+a0o7FjbeYpg/XHfbDfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDctYWsyejVyU2pzV050NWltRDljZDlzTl9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy81NmM2Y2ItYTM2ZS00ZTFjLWE0MzIt
NGY5Nzc3MmIwMTgwLzEvaDctYWsyejVyU2pzV050NWltRDljZDlzTl9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy81NmM2Y2ItYTM2ZS00ZTFjLWE0MzItNGY5Nzc3MmIwMTgw
LzEvaDctYWsyejVyU2pzV050NWltRDljZDlzTl9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADeITOhcF
v/OtGKqD6Dt7qORXv5ytTRCJTFvtov+uBkNkBP4k/ZodqDdI0ScK3ACKvvbW2hiH
T1wfW3L3/6X0bdcyR1zTybnP2EuvnxfIjEULI/EKRYbQsjasViTczdvtLbidyH7m
xCfoG/r4KdTEDR+vvDK7KjjXSdvIS6HTRBxeGVYhgc1nLhW5c1MOkdze933nYeqM
1nuroxGirZnjl3z0gQ8YydFus6OYDXpiiOLH1qBsY51fu9Asc80lty7bbqlXK7o4
pidscAhYOEmFjS1sL0UCsdMycY4cCIFUnxGRRauVkW1uYmtfaPKjX4JFVd8b3nx3
9X1oSEPVFeryfw==
-----END CERTIFICATE-----
Generated at Mon May 12 07:44:47 2025 by rpki-client