Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: Ue89x0M43Qt33BUoZ3p4NH/HaQkoj35y31WzPUm3v40=
Subject key identifier: 70:77:BB:27:3D:63:2F:02:6B:43:31:C0:A4:E7:4A:79:B0:55:7E:E3
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 01976E18F3C5666A94B2C01B34B639B478AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 0505
Signing time: Sat 14 Jun 2025 11:00:18 +0000
Manifest this update: Sat 14 Jun 2025 11:00:18 +0000
Manifest next update: Sun 15 Jun 2025 11:00:18 +0000
Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=)
2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: ak61u/qNe3XxArJJxdqP81G+Zv075soyMUl6qg/TMcw=)
3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=)
4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 11:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:18:f3:c5:66:6a:94:b2:c0:1b:34:b6:39:b4:78:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Jun 14 11:00:18 2025 GMT
Not After : Jun 15 11:00:18 2025 GMT
Subject: CN=7077bb273d632f026b4331c0a4e74a79b0557ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:4d:3e:0b:76:1a:15:53:14:8a:82:61:1a:
23:db:90:f3:d2:58:dd:5c:8a:aa:fb:d3:af:c8:59:
40:41:6d:05:a5:bf:c2:28:df:26:9c:f5:c1:8d:10:
4e:d6:33:3a:ff:4c:bf:e0:2d:2a:cf:9c:b0:e0:39:
77:75:3d:8c:9b:ca:3d:1d:64:44:2f:ce:1f:4d:b7:
33:ff:d2:53:5a:aa:9c:73:49:0b:8e:da:d3:02:7a:
44:64:4a:58:7d:a9:51:47:01:4c:06:2d:47:8f:27:
ae:7f:ea:2f:db:2a:f2:fc:1c:8f:59:f3:3c:cd:f6:
93:f1:dd:b8:2a:cb:bd:bb:9c:7f:2c:59:51:6c:be:
f3:be:ef:b7:c2:17:92:7a:58:4c:ce:c6:6d:00:86:
1c:d4:51:af:f8:dc:3d:66:b5:2b:7d:cb:46:f2:3a:
ed:bd:90:55:ca:1b:7f:a1:c9:dc:03:f6:a8:bf:4b:
ca:61:7c:53:ec:ad:0c:76:b9:d1:fe:29:95:86:3e:
36:27:89:52:b7:3c:4e:7e:28:e5:41:4d:5b:0a:32:
99:0f:e8:d4:50:a1:b8:6b:f2:fa:3d:7d:55:4e:0c:
2e:e6:5f:23:07:83:5d:00:82:e0:70:e6:8f:26:f9:
b1:8b:e6:b5:1f:ee:fc:0c:36:f8:8e:87:7a:13:a0:
2f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:77:BB:27:3D:63:2F:02:6B:43:31:C0:A4:E7:4A:79:B0:55:7E:E3
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e1:b2:88:a9:bc:55:89:47:cd:e7:0e:3e:d0:39:e7:75:2c:
14:9f:e5:67:92:6a:5a:15:aa:89:9d:c9:1f:d9:49:86:8d:11:
53:fe:08:96:5c:fd:d2:13:7a:84:54:88:1e:4a:22:f5:16:af:
b3:e8:a5:30:62:23:47:cd:39:1e:75:6c:47:3b:da:2f:ec:a6:
88:f3:16:83:b1:e8:89:ac:14:40:7a:36:1e:08:21:41:e9:e8:
d2:ea:82:4c:7f:2b:a4:2b:63:8c:81:17:e9:a0:3e:b1:3d:a4:
48:0c:6b:61:22:73:f3:50:15:6a:25:54:b7:f2:a4:20:4b:09:
37:ef:99:dd:77:c7:1d:49:37:53:a3:a6:3d:f1:42:77:33:fc:
c4:a8:d6:97:97:3e:a9:d6:9b:39:0e:f7:9c:0f:91:d7:a7:a7:
f3:d7:ca:84:44:2f:40:15:f8:30:e7:07:ca:2e:49:35:5c:fc:
dd:34:5c:4a:41:96:16:c7:16:e0:7c:83:c6:a7:f4:97:1e:e8:
7e:fb:79:0a:b6:b5:cd:a1:fa:f6:d8:c6:74:09:e0:99:2d:91:
7a:e4:a7:ac:24:c1:f3:44:03:25:36:f6:99:3f:17:a9:a4:b5:
43:e0:e3:8e:47:2d:66:70:62:b5:a4:3d:6c:d2:9b:7e:7b:d6:
cb:6e:e1:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:42:05 2025 by rpki-client