Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: h1qSay8NkVlT5XD5DiwbVjg/oLWfrm3uRHq5ia1eh1o=
Subject key identifier: B7:97:1B:73:84:7E:35:C5:26:52:6A:07:00:9B:ED:EC:CD:E3:CF:FA
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 0199FD6ACE67D09C3FF38F5C5D9EFAE8E472
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 17:00:59 +0000
Manifest this update: Sun 19 Oct 2025 17:00:59 +0000
Manifest next update: Mon 20 Oct 2025 17:00:59 +0000
Files and hashes: 1: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: dcv2xeKlsdGAH2i6m+Ugco0ymPsUxHhN6lMu8g7nHfY=)
2: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:ce:67:d0:9c:3f:f3:8f:5c:5d:9e:fa:e8:e4:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Oct 19 17:00:59 2025 GMT
Not After : Oct 20 17:00:59 2025 GMT
Subject: CN=b7971b73847e35c526526a07009bedeccde3cffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d8:4a:bc:0d:9b:b3:64:3e:e7:9d:c3:19:c1:
21:a8:04:17:ee:a0:4f:35:46:ec:85:a1:d9:6c:ad:
c4:25:d0:0f:e5:81:11:5a:67:0d:a4:28:b8:92:0c:
f2:17:5d:c9:7f:0f:cc:b7:f3:e2:76:a8:3c:4b:36:
16:8e:76:39:5b:8a:8e:53:2a:99:d6:d2:14:6b:a4:
87:77:54:07:c0:07:d8:9d:01:1e:91:15:a1:aa:6a:
58:64:df:48:6c:66:bb:8e:df:93:a8:96:7b:3c:c8:
45:0f:fc:6a:2a:91:85:bb:e9:44:98:5f:0a:fc:1a:
dc:2f:0b:10:b2:e3:5f:1e:2c:8b:4e:26:79:e5:e0:
f4:10:7f:68:3c:78:9a:eb:20:02:fb:da:5e:39:fb:
4f:96:39:12:31:04:4a:3e:63:6e:97:ab:b6:d8:7a:
8a:eb:28:1b:8c:55:21:b6:1d:a3:3c:8c:76:e1:b4:
37:37:af:af:72:85:d8:ac:c9:5d:45:12:2a:b8:e4:
a6:21:b5:2b:fc:ce:41:f9:a4:e0:7e:fb:09:78:97:
02:d1:ae:32:79:ba:11:15:d6:32:0e:c8:8e:ba:cc:
2e:47:cf:3d:b2:3f:82:fa:fd:37:79:47:40:d6:45:
62:fc:c0:a3:eb:e9:eb:2f:d4:d3:dc:93:ee:c8:5f:
fe:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:97:1B:73:84:7E:35:C5:26:52:6A:07:00:9B:ED:EC:CD:E3:CF:FA
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:9d:dc:63:87:86:7c:4a:72:23:fb:36:0b:cb:88:73:8e:96:
07:b4:c3:c4:f2:e9:b6:23:55:1a:2d:dd:67:3c:92:b9:3b:ff:
9b:11:27:1a:d2:fa:75:59:71:f1:94:57:52:03:50:6a:f5:9e:
06:91:c6:12:29:72:56:a4:01:cf:86:65:f1:bb:8a:b8:59:f9:
f0:d5:12:6f:f9:56:77:6c:c5:21:ac:66:ff:aa:21:bc:c0:48:
fd:bd:d0:39:89:aa:16:c2:c4:02:7d:76:21:b3:d7:c8:c6:6b:
45:df:cf:94:87:de:ab:84:26:ac:30:41:f8:25:aa:e6:3e:fb:
bc:21:71:21:db:4d:89:57:84:9b:14:21:1f:e5:d0:38:c2:db:
44:bf:ac:89:52:51:6c:fb:25:95:65:ee:14:d0:7b:77:39:b8:
b1:f8:b7:f9:e8:5f:e3:c6:2a:84:ee:a0:18:84:c7:4c:5e:59:
c4:1d:05:9e:7d:01:f1:3f:4e:d8:f4:3f:17:5c:9d:24:35:e2:
e1:d0:80:17:2e:6d:b5:0e:e3:05:c2:e5:cd:82:7e:60:52:e3:
3d:ef:7d:ef:b2:ee:cf:3f:57:23:37:db:0e:e1:83:17:58:0d:
e1:dc:ea:f8:0c:31:d9:ec:0d:42:a2:b2:93:0a:1a:f4:36:ad:
20:9f:c5:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:29:51 2025 by rpki-client