Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: O4ijSQbt9dt0KSaqU8MTctkBh7XN1L53T4TactWSiK8=
Subject key identifier: B1:8F:D4:F8:C2:7A:CD:17:1B:D5:FC:C2:89:A2:DA:64:6D:64:96:B9
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 01968C266EF3F11B4083247F01CEF0C592E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 151C
Signing time: Thu 01 May 2025 14:00:51 +0000
Manifest this update: Thu 01 May 2025 14:00:51 +0000
Manifest next update: Fri 02 May 2025 14:00:51 +0000
Files and hashes: 1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: muc01vhKrB395sdBtRVSauAEivfqP2x0dM4Jf+baEFQ=)
3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8c:26:6e:f3:f1:1b:40:83:24:7f:01:ce:f0:c5:92:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: May 1 14:00:51 2025 GMT
Not After : May 2 14:00:51 2025 GMT
Subject: CN=b18fd4f8c27acd171bd5fcc289a2da646d6496b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:68:62:4b:bd:f3:f2:24:48:ec:8b:95:01:3b:
96:53:60:6f:3c:dc:a0:f0:8a:8a:94:0a:23:3f:8b:
a8:85:ef:8e:65:8f:3f:da:44:f2:da:44:40:77:7c:
60:17:55:8e:dc:69:cc:93:f0:88:3e:f0:50:5e:d2:
7b:17:97:dc:df:9b:b9:a3:bb:a8:dd:a6:0d:99:ca:
ca:1f:70:b4:db:cd:cd:e5:9b:2d:22:d2:4a:b0:3b:
ce:08:17:ff:03:c8:27:d7:60:a8:81:99:53:ab:54:
f2:74:53:1e:7f:6e:42:db:33:49:24:f7:98:b9:41:
0c:f0:06:70:8f:89:2f:bb:aa:9c:a1:81:de:4b:19:
ad:c6:f6:d0:7e:d8:f9:4a:0f:a2:fb:e1:90:a1:37:
36:25:7b:e9:64:3d:6f:c2:50:86:3b:ed:4a:33:14:
41:f7:de:e5:fd:60:d9:f6:be:9f:38:9d:16:db:94:
d8:e3:ee:5f:e0:f6:a8:cd:9d:6d:13:1e:a1:ff:26:
ec:ee:14:43:55:e8:de:ed:3a:09:16:5b:55:cd:ec:
2e:47:64:4d:e0:4d:e3:9b:b0:ee:28:ea:28:9b:69:
ef:98:ba:e8:53:9c:0e:f2:4f:c3:f5:46:08:98:42:
ea:53:2c:32:b6:7e:77:be:3c:81:23:92:7e:75:5d:
67:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:8F:D4:F8:C2:7A:CD:17:1B:D5:FC:C2:89:A2:DA:64:6D:64:96:B9
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:26:38:7b:2d:1e:b9:7f:a0:68:a2:01:5e:a4:91:7a:57:31:
81:45:6e:2f:a1:f4:c4:d2:1e:09:91:13:6a:fa:ab:fd:86:a8:
dc:66:6d:0b:17:5a:d3:65:ba:b8:06:75:ac:ea:83:d7:8e:43:
e6:bc:04:e3:61:a5:1d:45:de:74:8f:59:f7:90:93:03:07:8a:
fb:e2:73:f7:e9:58:6c:9c:48:65:95:9a:db:40:e3:c0:13:a5:
16:0d:5d:61:7c:7f:09:1e:ec:4f:d0:64:89:22:93:32:f5:43:
1d:b9:8b:55:e9:1b:66:43:96:19:7d:48:1a:32:1f:fd:0c:06:
62:e7:26:b3:43:94:88:88:fd:ed:f9:cf:59:5a:c5:76:ef:ec:
28:c8:39:29:25:8f:90:a3:1f:81:32:92:35:fa:ee:45:09:42:
53:1f:e4:f5:be:18:8c:6d:04:ac:81:85:b3:d4:b5:96:64:a8:
80:18:63:fb:e7:7d:8e:c7:49:24:16:e2:07:fe:8f:22:22:d0:
91:b3:46:94:c4:aa:f1:b4:10:ef:e4:a2:d1:97:3d:56:3b:b0:
7a:58:80:a5:8b:5e:44:59:dc:31:f6:76:c4:a9:2d:60:6c:c6:
aa:0f:80:64:06:48:b0:e2:2d:85:d8:c3:20:2f:90:07:05:37:
8f:6a:64:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 17:23:01 2025 by rpki-client