Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: i79Vt5gJCRAZiIJeR0UMjdGXNpEv+/DRh4C6aBIYJKQ=
Subject key identifier: 05:FD:B6:1D:A3:9D:5A:B7:9C:E0:06:3B:36:85:BB:64:ED:64:E7:AD
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 0196846C596FE6B1598CEB3FDBA7A91317D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 048C
Signing time: Wed 30 Apr 2025 02:00:15 +0000
Manifest this update: Wed 30 Apr 2025 02:00:15 +0000
Manifest next update: Thu 01 May 2025 02:00:15 +0000
Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=)
2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: pj5HZ7QrDTdDf30SEjJw83iDstvZkSjMbnFjJsC9hx0=)
3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=)
4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:6c:59:6f:e6:b1:59:8c:eb:3f:db:a7:a9:13:17:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Apr 30 02:00:15 2025 GMT
Not After : May 1 02:00:15 2025 GMT
Subject: CN=05fdb61da39d5ab79ce0063b3685bb64ed64e7ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c9:45:c3:d1:77:a0:a7:83:46:50:c8:5b:c3:
90:b3:c6:f1:d2:b0:7a:62:d3:fa:01:db:67:24:ce:
57:24:eb:0f:47:72:2c:b8:5e:0b:6c:51:f1:02:9b:
59:84:71:a9:55:9c:48:67:70:68:f6:a7:d0:c8:33:
66:10:3a:e6:ae:e8:d6:ef:1a:c0:9e:f0:46:25:a2:
14:2c:70:f5:53:ba:56:2b:3e:09:39:bf:3c:ef:cb:
c3:ff:63:d2:f0:cb:04:5b:80:2e:5c:d6:37:03:62:
07:e8:d5:b7:af:c4:75:26:33:09:11:29:69:e2:ca:
ca:f1:21:b8:b4:be:15:6d:56:c1:a7:7f:96:68:f2:
2d:e1:a2:fc:ab:8e:72:05:ec:4b:8f:5d:30:73:cb:
df:8f:be:6b:56:3f:5d:51:f7:85:a4:2b:22:e6:a7:
e9:c4:e0:53:45:a7:0d:d9:d4:1c:30:e4:e8:0c:71:
c8:43:5c:90:de:cc:19:37:9e:7f:0b:22:5c:d5:d1:
b5:00:a7:21:8f:cc:ba:c1:ce:f3:d4:4c:5a:c5:8f:
74:02:5f:c5:3a:fc:c6:2f:fa:93:9f:53:8b:42:e2:
54:cf:e6:fe:bc:c2:f4:94:ff:b1:0e:4d:3d:72:aa:
7d:d1:87:23:82:10:00:a7:41:c7:23:c5:ea:6f:b5:
3e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FD:B6:1D:A3:9D:5A:B7:9C:E0:06:3B:36:85:BB:64:ED:64:E7:AD
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:03:4b:bf:27:3d:35:38:ce:f8:ed:63:47:fc:87:ef:5f:22:
fd:c2:42:ef:9f:86:66:1b:6c:79:75:d7:74:28:16:a7:ab:7f:
d2:81:a9:70:e5:27:44:35:d6:a5:52:d1:d5:a5:5c:49:42:55:
f3:12:f7:26:f7:da:87:6c:f8:ed:40:8c:5c:60:a0:2f:9f:60:
80:95:26:ac:9f:12:1c:4c:29:98:34:89:3e:92:ff:7d:19:29:
c4:cd:5b:a5:a8:0a:8a:13:9f:88:47:ad:18:7e:4d:2c:a8:f4:
5b:55:70:b7:41:08:ac:12:a8:30:d5:0f:c4:0b:b7:18:92:5e:
ff:d2:90:10:1b:78:7d:48:60:c2:63:e6:d5:87:e1:5d:c6:25:
26:54:cc:f9:32:b3:35:f1:d7:6c:66:b3:49:5d:aa:34:6f:c5:
09:81:ac:d7:21:97:63:7d:39:99:d2:5c:33:2f:bd:99:46:d5:
20:77:2c:6a:78:b1:a8:cb:47:28:c6:7f:13:7d:7a:9a:58:57:
f5:98:44:79:98:73:4b:02:29:45:70:15:03:4d:d1:38:43:87:
71:5c:c1:74:a8:c4:0a:5a:0e:d9:a0:e9:4b:22:d5:0e:f8:52:
f3:eb:7b:5a:85:05:df:9e:e3:6d:04:9c:55:f9:5a:82:38:ee:
84:4d:dd:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 04:38:56 2025 by rpki-client