Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: u54JrMeOJOaPUAQkKUPG4J2XSNkvo1TJ0/Q1b5XIbRA=
Subject key identifier: 4C:5E:68:E7:53:7A:52:77:00:36:5A:2E:B3:BE:7F:17:FD:61:17:C6
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 01987E663B7FD0E641DABB1BE4BD7AA7F93A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 0592
Signing time: Wed 06 Aug 2025 08:01:25 +0000
Manifest this update: Wed 06 Aug 2025 08:01:25 +0000
Manifest next update: Thu 07 Aug 2025 08:01:25 +0000
Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=)
2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: u92yVSrihds7m7ytWIJYPDF6nGbC1fH918r9rAQtSrI=)
3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=)
4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:66:3b:7f:d0:e6:41:da:bb:1b:e4:bd:7a:a7:f9:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Aug 6 08:01:25 2025 GMT
Not After : Aug 7 08:01:25 2025 GMT
Subject: CN=4c5e68e7537a527700365a2eb3be7f17fd6117c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a1:d1:5d:c3:91:8e:1f:f4:fa:cb:2b:fd:5d:
96:0c:ae:66:2e:56:ba:d9:0d:9b:a8:e4:af:01:2c:
52:40:bf:8f:11:81:02:d3:68:9f:ea:f4:1f:7b:b7:
f1:0b:ce:b2:89:c6:7c:d5:5c:8b:1e:5f:17:0f:60:
6d:9f:62:af:30:2f:4f:3d:80:61:63:63:5c:d7:95:
be:10:9a:5b:2a:be:3d:09:f8:5e:88:a0:62:4f:14:
fa:d6:21:68:e8:af:8f:fe:7d:67:99:c3:aa:92:13:
51:76:2d:ce:31:12:b5:be:74:33:05:0e:43:27:28:
d6:18:13:50:24:90:be:7f:a0:96:13:0f:0d:ea:97:
d0:b0:9a:58:08:7d:7b:05:02:6b:d2:f5:b5:0e:b8:
45:1e:db:e6:77:55:98:43:80:77:d6:98:8a:ab:25:
21:32:c2:3c:b5:e2:46:53:27:78:3a:94:2f:65:2a:
6b:63:c6:0b:93:00:f9:65:6c:16:e9:eb:4e:5c:45:
38:ba:93:33:11:c2:a9:fa:6b:b5:20:27:78:32:64:
44:f9:a7:53:ab:00:44:69:47:c8:89:3d:0d:4a:9a:
c0:24:17:91:33:c8:c6:87:80:d3:61:9c:5f:6e:ac:
c0:aa:cc:8e:b6:1a:f3:da:f5:35:9a:f6:40:2c:11:
de:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5E:68:E7:53:7A:52:77:00:36:5A:2E:B3:BE:7F:17:FD:61:17:C6
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:60:e7:54:0e:c1:ba:f6:be:cb:42:34:3f:ef:e9:8b:d6:07:
d3:28:10:0b:44:81:80:b2:ae:38:1b:39:26:7b:a0:aa:fd:e5:
74:5c:c0:49:a3:a4:a3:b7:d5:43:c8:61:6a:41:31:65:de:31:
92:a7:75:b0:dc:c9:c7:21:92:1f:ff:76:44:55:95:29:a8:6f:
4c:bf:5d:78:a1:b9:9e:f2:99:04:0e:6b:05:7c:3c:5f:d0:d4:
e5:a2:de:8d:5a:8d:30:c4:a0:90:6c:bf:98:7a:2f:37:b8:b3:
d7:fb:ac:21:d1:a4:3b:c5:b6:41:00:cd:37:35:64:2a:53:62:
87:88:b2:f1:78:9e:f8:1b:5a:3c:55:1d:d1:5f:fa:43:cf:d9:
f1:da:31:6a:c4:20:23:32:19:95:9f:53:c8:14:ee:7c:f8:e7:
8d:58:69:d9:b8:ec:6d:54:55:27:1b:5a:1f:52:b6:b2:a5:a4:
a5:af:0a:00:a5:38:84:a7:0f:09:46:d3:39:dd:8d:a3:7e:0b:
8b:fd:de:40:c4:1a:40:23:80:c9:7e:0b:4f:30:2c:1f:fa:c2:
68:82:d0:9e:9c:bd:75:b9:73:27:0b:37:96:5f:5e:66:ed:0b:
70:6f:44:65:ee:a8:76:be:b0:d3:c2:80:00:6c:96:da:ab:04:
3d:9d:9d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:08:19 2025 by rpki-client