Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: nsNx48nw62ChZk7BPVZP0sfB64yS8Rbaf+7WDoNqBaA=
Subject key identifier: E9:31:BC:50:CA:6A:C8:ED:38:5B:7B:F0:38:5B:AA:48:59:50:4B:69
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 0198D54DFD756454B1298C97DF42BEC57F50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 05:01:54 +0000
Manifest this update: Sat 23 Aug 2025 05:01:54 +0000
Manifest next update: Sun 24 Aug 2025 05:01:54 +0000
Files and hashes: 1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: pW+vgWJ9yVnMGc62KGhDEsoDT/3Wj9S3AMD3GsC6dBg=)
3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:fd:75:64:54:b1:29:8c:97:df:42:be:c5:7f:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Aug 23 05:01:54 2025 GMT
Not After : Aug 24 05:01:54 2025 GMT
Subject: CN=e931bc50ca6ac8ed385b7bf0385baa4859504b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f2:1f:78:87:25:db:fe:b5:8d:e8:24:d3:2a:
2f:42:12:c5:4e:5f:77:49:50:55:c9:e2:62:53:5a:
f0:17:44:93:e1:ed:d6:d6:ef:97:3e:1f:82:25:1a:
1e:c7:55:2c:d8:a2:46:83:5c:24:1a:57:f9:cb:74:
68:97:f9:98:4d:75:90:44:03:ed:30:48:e6:38:70:
13:b6:df:f4:02:18:03:d6:2b:f3:3e:a7:18:fa:d7:
26:37:b8:59:92:65:1d:e2:c9:e5:82:c2:8b:6d:2e:
e5:1a:8e:4f:e3:55:58:5d:22:8a:f7:21:48:bd:50:
f4:b2:e8:3b:d2:27:b0:ed:ac:0d:6b:d7:90:c5:d0:
8c:55:71:d1:d5:25:e5:50:fc:29:c8:ba:c2:25:b2:
8d:c3:1d:02:c5:46:aa:3a:40:cc:0f:cb:0d:9f:67:
ea:f9:a7:c6:ed:0d:a4:05:06:f3:b1:e2:c9:22:b9:
b3:6a:36:5c:91:95:7e:81:9a:81:a9:dd:18:fa:d1:
e4:8d:e7:6e:41:7a:09:bd:d2:03:71:fa:c7:ee:44:
d5:f5:ee:d8:6f:e6:71:00:52:52:d2:0e:cd:b0:4f:
8c:28:40:8c:b0:0a:ec:b8:cd:3b:f6:e8:7d:ad:07:
2f:cf:38:7c:e1:5f:2a:e3:fe:a6:29:6e:ba:e2:c3:
cd:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:31:BC:50:CA:6A:C8:ED:38:5B:7B:F0:38:5B:AA:48:59:50:4B:69
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:31:82:88:44:b6:dd:f6:65:93:b6:0c:64:97:36:ff:3f:27:
29:9f:1b:6c:c0:88:0b:52:09:e7:65:21:d0:a0:38:c4:bd:c1:
e7:a9:93:bc:f0:60:db:8e:5f:f1:f9:47:1b:23:84:39:46:7d:
c3:f0:e6:04:b6:df:b4:1f:77:01:89:71:24:89:f9:58:b6:4c:
2e:68:a9:c0:98:c5:74:fd:e9:1a:d3:de:3e:3a:0d:23:57:58:
93:6d:fe:e0:de:70:88:a2:b7:32:dd:8e:8b:a8:9f:72:fa:98:
e6:19:20:47:40:7b:4e:d4:69:4f:42:5d:44:34:d9:e9:93:4d:
2d:be:14:a9:24:aa:81:c2:5b:cd:59:e6:3e:f0:8d:4d:df:a2:
c7:5e:49:af:b4:47:25:e6:ff:52:35:2f:a0:65:4d:23:75:d3:
6c:8b:e4:78:13:5b:9a:7d:6e:34:b4:78:8f:fb:ec:97:ef:f4:
ac:45:3c:08:50:0f:2d:cf:7e:ab:5a:3c:2c:87:74:a1:e6:83:
56:55:c6:a0:52:e3:a2:31:61:8d:63:bb:06:7f:0b:0f:46:aa:
51:72:45:69:14:b6:38:9d:fc:ae:4c:c3:16:3b:fa:e5:a7:fd:
8b:74:f9:fa:9b:33:6b:ad:e2:d5:2c:ba:22:9f:08:2b:57:39:
0a:26:64:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:47 2025 by rpki-client