Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: nbViBT1JlRUK9ZH5SQUZlNWaqOIeSOD+qAVlvGjcc1M=
Subject key identifier: 94:5F:41:3F:8C:65:8E:AC:EF:83:C7:8A:1F:D1:1B:79:15:C3:4E:D9
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 0197B77C213727C4B8E1881BE4E77CAFFC37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 17:00:54 +0000
Manifest this update: Sat 28 Jun 2025 17:00:54 +0000
Manifest next update: Sun 29 Jun 2025 17:00:54 +0000
Files and hashes: 1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: SHblJku+LFbsZMbOO+0dPyFdRRb1FKanfVYXUA5Peps=)
3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:21:37:27:c4:b8:e1:88:1b:e4:e7:7c:af:fc:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Jun 28 17:00:54 2025 GMT
Not After : Jun 29 17:00:54 2025 GMT
Subject: CN=945f413f8c658eacef83c78a1fd11b7915c34ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:46:8c:57:8b:2f:30:fd:af:ac:42:7f:51:b7:
50:83:a0:51:a9:82:95:6f:ee:41:b4:1c:4b:c9:da:
8a:c3:c6:ad:98:b3:85:f8:3d:08:ef:fe:da:f6:98:
c6:e2:f8:61:17:89:88:cf:39:92:84:dc:b6:a8:ed:
19:8e:27:ce:3f:6a:d6:ad:87:25:fc:6a:48:c8:57:
94:d7:fb:e8:c2:4b:73:54:de:f2:bf:57:bd:78:2d:
1b:48:ea:2d:34:66:e0:0e:2c:d1:1c:fb:8b:cd:2f:
0c:5a:10:21:08:87:41:fd:04:a8:e0:b5:43:2a:99:
93:d2:1f:2f:ef:37:49:61:be:c0:dc:4f:21:51:9c:
4a:6a:82:c7:be:fe:1d:ea:0f:16:53:01:2a:26:b1:
05:29:03:93:e9:f7:7e:07:46:7b:e7:82:5f:37:a1:
55:0f:ab:fb:fa:03:3f:fa:51:18:55:57:32:75:e4:
be:8e:52:d8:59:4a:31:f2:8b:ea:d6:c1:ed:a7:a3:
67:58:23:b1:61:56:0f:20:8c:06:e7:3f:b8:e4:e1:
54:06:c0:de:ac:74:97:17:84:83:37:24:66:db:9d:
64:21:df:7f:3a:a6:a8:6a:37:3c:76:a1:de:b4:fc:
83:f8:9a:34:d3:00:35:f2:34:8c:b2:cf:43:e2:78:
e6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:5F:41:3F:8C:65:8E:AC:EF:83:C7:8A:1F:D1:1B:79:15:C3:4E:D9
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:4f:b1:4c:cc:ba:a5:d5:7f:f4:5d:25:75:17:b2:6e:09:62:
78:0e:67:7d:7a:0e:8a:4d:e2:61:b2:1c:ff:c2:ad:d9:67:7a:
63:99:06:36:f6:85:19:51:f1:be:ab:dc:e7:32:e4:88:67:4c:
c6:24:d7:5a:31:21:11:1e:14:38:41:93:5a:82:e9:d5:27:8a:
3e:66:86:ec:c6:06:1a:66:12:e1:df:ce:30:b2:52:d1:73:fe:
c5:4b:d3:f3:6b:73:43:d0:f5:01:9d:72:8f:d4:1b:f4:2d:cd:
d0:f9:16:24:61:a5:89:32:f7:5a:8f:92:6f:d1:a8:54:af:09:
68:dd:28:b2:2f:a9:7e:d7:01:35:7b:06:30:a0:f3:0d:d6:6a:
12:4f:82:ca:91:4a:10:54:ee:99:29:2f:d5:38:f3:10:7e:7b:
93:a2:3a:13:d9:e2:ee:8c:89:44:9f:9d:1e:c9:bd:15:22:87:
bc:25:8b:31:31:cd:4d:7d:5e:08:10:ac:0d:77:ff:4d:d5:76:
c5:cf:3e:0f:97:f6:85:45:81:3d:78:77:0c:0c:93:1d:5f:19:
f9:da:29:91:47:0c:d6:29:21:d3:26:98:2f:f1:fc:56:f1:ce:
55:ea:57:e2:3f:f7:7e:66:a5:21:8c:bb:81:de:2a:b9:5b:35:
31:2a:12:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:18 2025 by rpki-client