Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json)
Hash identifier: vwZLq1d15tfrCy+LhPqJW7EMDAvId+3J+SvzxWKaeOM=
Subject key identifier: D0:9F:1A:1F:17:F3:21:EB:2F:77:21:1C:3C:4E:A0:F0:5D:0A:AB:C5
Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Certificate serial: 01987DF7DCB0B4A4D3FAB6620D9E68D471B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
Manifest number: 0B7C
Signing time: Wed 06 Aug 2025 06:00:52 +0000
Manifest this update: Wed 06 Aug 2025 06:00:52 +0000
Manifest next update: Thu 07 Aug 2025 06:00:52 +0000
Files and hashes: 1: 4lHY4uWeqHmvoaNymD_moDG2Lyw.roa (hash: JlxlEX1JbWtrSymgf6LUCml6ssBX/gAxppMm1dFFwtA=)
2: JAuA883iG3ecktuhBvPjwiYE2gs.roa (hash: 2XmurE8d9+/OzcrvAO2f2ROqPHe6N2R65dp7AYrb+WA=)
3: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: s00FttxStnEIWZc4sKP64sCv+si5AU4bpWVIbo6lcgc=)
4: W3b2c3aWBkGLPIRx0_mmFrVFSVU.roa (hash: Rq6QPKASLV/oR+YlvSOZH+p9bkYj2tEbh35TLa/W+TE=)
5: cu9GyWa_Lwnd02KODnjE_h5McWk.roa (hash: 44QiQ8pIvo7mzZfC+ZjzIe/89Qsc6m4rb8gND25Z0Gw=)
6: xyRoD48_RddLMyzaWVm2RVSdNnw.roa (hash: 9GofeWtQdMUnPq68/CDpAq5ljzoKlzyYm0VUKW07EJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:dc:b0:b4:a4:d3:fa:b6:62:0d:9e:68:d4:71:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Validity
Not Before: Aug 6 06:00:52 2025 GMT
Not After : Aug 7 06:00:52 2025 GMT
Subject: CN=d09f1a1f17f321eb2f77211c3c4ea0f05d0aabc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7a:6c:77:d2:6a:e8:f8:7d:f2:b5:3a:33:dd:
2d:1b:47:c0:aa:f9:23:4b:8b:42:57:c8:ec:3f:f0:
e4:9c:c2:a9:76:3b:25:d8:48:9e:d8:ff:8d:44:91:
1f:a2:11:19:35:7a:1d:e8:21:d5:6c:95:9b:08:64:
d8:09:8f:43:96:da:49:45:cc:61:71:20:0b:21:ad:
29:69:91:a6:46:9e:74:65:fa:1b:ea:a5:90:aa:73:
5a:4b:c8:3b:39:ae:6d:e9:ab:fd:d0:b6:47:99:a5:
3e:b3:d7:09:a8:a3:a6:19:2c:c6:50:30:a8:f9:ce:
e5:ef:45:f2:44:f3:e1:f6:02:38:9d:09:e6:94:0b:
71:b5:7f:a0:f2:61:2e:45:91:4a:c7:a0:4d:0d:75:
8c:ca:94:1d:db:93:f9:dc:1a:28:be:4c:91:15:4b:
cc:40:bf:0c:20:d2:30:e3:0d:d4:16:7a:5d:9d:b9:
be:eb:a3:95:ab:5b:8f:5a:18:c6:7b:2f:67:73:33:
6f:1e:a3:51:f7:b8:3d:ec:6d:36:30:6e:19:1a:94:
22:32:c1:12:97:ea:b7:2e:af:90:51:cb:b9:83:40:
4b:a4:f7:6a:e3:cb:07:4b:71:aa:dd:ec:cb:06:68:
29:b5:91:0e:e2:0e:f9:a6:ca:75:d4:2c:49:6f:ba:
80:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9F:1A:1F:17:F3:21:EB:2F:77:21:1C:3C:4E:A0:F0:5D:0A:AB:C5
X509v3 Authority Key Identifier:
keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:5c:64:be:53:df:a6:a9:7a:ac:71:28:d3:44:ab:32:f2:e7:
4c:d2:b2:22:ec:a5:ec:8f:7f:29:14:65:ce:ae:e4:a4:a7:fc:
d4:14:ed:4f:64:96:05:5f:dc:3e:db:60:5b:25:49:66:8f:ee:
89:1a:41:d9:dd:e2:fa:5c:8f:23:eb:bd:57:40:84:70:b9:93:
2a:10:1c:7a:f5:e5:b0:f5:b5:4e:21:34:78:b8:c6:43:61:2d:
37:1e:5c:f7:de:b7:9e:69:50:d6:2b:00:c6:42:fa:7b:df:13:
a1:db:8a:b6:7a:62:2e:eb:90:c8:df:04:ef:b7:d5:48:59:11:
c4:5e:6c:fb:3e:df:31:f3:89:03:96:1f:b5:b6:84:c7:25:20:
29:31:e4:8b:d5:92:17:32:4d:b8:a0:46:b3:bd:a2:42:27:90:
cf:99:05:0f:30:d1:3c:5a:26:86:8e:99:23:99:79:78:c9:55:
e3:7a:c6:b0:03:84:fe:29:6c:31:a3:8a:2b:72:dd:19:c1:2e:
70:fa:3b:3b:61:be:19:a2:74:65:1f:ba:76:5a:fb:23:b4:32:
e6:1b:d0:76:eb:1f:3f:e3:61:d4:9f:69:ac:e1:f0:e0:e3:ea:
2f:15:8d:57:99:1c:0b:76:5b:1e:25:75:45:e7:68:d2:c2:b9:
71:cf:49:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 12:43:42 2025 by rpki-client