Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: Z71/Y+PekPXJaurbZJBV65v9KY9gXD646b1lrHVmL2Y=
Subject key identifier: 4D:7B:9E:8E:48:2E:0F:1E:42:2E:78:C0:D0:EC:31:59:BC:1C:33:BF
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 0198D54EA7D9FD33B5A5860585E4FDEF3755
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 05BF
Signing time: Sat 23 Aug 2025 05:02:38 +0000
Manifest this update: Sat 23 Aug 2025 05:02:38 +0000
Manifest next update: Sun 24 Aug 2025 05:02:38 +0000
Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=)
2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: gH0pKN0WwAb8IzGVmP0YNYoXuJPqjuC7InsinneqgGU=)
3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=)
4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:a7:d9:fd:33:b5:a5:86:05:85:e4:fd:ef:37:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Aug 23 05:02:38 2025 GMT
Not After : Aug 24 05:02:38 2025 GMT
Subject: CN=4d7b9e8e482e0f1e422e78c0d0ec3159bc1c33bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fd:27:63:9c:94:2e:59:d6:0d:68:e2:f5:25:
2f:15:b6:e5:c0:63:22:89:57:59:31:c1:9d:1d:2a:
05:0d:c1:e8:af:ad:e4:35:e4:67:b3:f7:b4:e2:30:
ea:66:2c:93:71:4b:7f:dc:5a:a6:36:21:69:da:af:
2f:22:a3:d7:3f:16:f4:33:e2:c1:36:5a:9f:3a:14:
e3:ed:08:57:54:79:8d:fe:8f:e9:8b:20:55:9f:b6:
80:ca:57:2c:cf:f7:a5:22:2d:84:31:ca:99:ac:ca:
f3:3f:ff:6a:4a:f5:7f:56:3c:35:53:72:29:72:ac:
a7:bb:89:1d:f7:b3:09:fd:c8:15:07:78:51:09:b6:
4e:f7:b1:0f:d7:9e:41:84:c1:ee:e2:ca:af:c4:30:
a6:1a:68:85:2d:1f:9a:43:bd:c5:be:23:f8:79:8d:
93:56:cd:18:63:32:93:58:23:5d:98:24:4e:34:ec:
5a:bd:49:a7:a8:a7:02:0a:11:a4:b1:f5:ce:ce:8b:
2b:e7:d8:50:94:4c:3e:dc:d9:a4:b1:f1:b0:b9:c3:
47:7b:22:e9:ae:a5:15:56:37:6d:78:54:9b:16:d8:
d0:b9:ff:78:49:47:bb:5a:bd:df:59:88:fe:7f:22:
0b:96:fa:48:55:fd:36:ac:9d:9c:78:5f:73:6c:f0:
e2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7B:9E:8E:48:2E:0F:1E:42:2E:78:C0:D0:EC:31:59:BC:1C:33:BF
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:ef:6c:11:71:60:1a:1b:18:c8:9a:37:fd:72:bd:7e:a6:70:
70:e6:a0:46:02:d7:96:13:7e:83:fc:15:e9:c8:df:dc:26:1d:
10:cc:61:45:66:9c:9d:17:bb:bd:2a:89:c0:9d:0e:5e:7f:9a:
12:43:f7:3b:50:3f:30:48:3d:bc:5f:35:31:f4:48:31:34:de:
a8:0a:b4:3e:ea:b0:32:6b:f3:00:4f:b8:2f:22:97:49:94:20:
71:4c:6c:89:81:21:74:f1:15:0c:b5:90:1b:8f:c0:bf:ac:80:
a4:04:75:1d:dc:4a:57:e3:b4:4c:0d:bd:8f:b8:75:cd:0f:ad:
df:80:3c:df:66:1e:35:56:ae:be:ff:3f:89:15:06:b2:d2:d0:
67:e1:e8:84:35:08:a5:24:0e:86:18:fe:fb:14:c8:9b:69:18:
6e:e3:2d:a1:bb:87:2b:0f:95:c3:22:a5:a9:cc:95:ab:b8:95:
d9:3d:e2:5f:23:94:49:db:05:43:49:af:b6:02:1f:a5:06:e1:
ff:2f:c3:35:85:3b:34:6c:2c:db:da:c6:22:b4:47:59:33:5d:
b6:29:db:95:89:90:21:21:19:6a:f4:85:60:83:11:b3:4c:21:
b6:2d:f6:3e:aa:bd:28:47:30:7e:bf:0f:55:6e:59:65:ef:6d:
d7:57:4c:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTqfZ/TO1pYYFheT97zdVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDg1ZmM1MzRjMTNlMDg4MmUyNjBhODk1ZjNjZjBjNTU0
M2VmMDgwHhcNMjUwODIzMDUwMjM4WhcNMjUwODI0MDUwMjM4WjAzMTEwLwYDVQQD
Eyg0ZDdiOWU4ZTQ4MmUwZjFlNDIyZTc4YzBkMGVjMzE1OWJjMWMzM2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/0nY5yULlnWDWji9SUvFbblwGMi
iVdZMcGdHSoFDcHor63kNeRns/e04jDqZiyTcUt/3FqmNiFp2q8vIqPXPxb0M+LB
NlqfOhTj7QhXVHmN/o/piyBVn7aAylcsz/elIi2EMcqZrMrzP/9qSvV/Vjw1U3Ip
cqynu4kd97MJ/cgVB3hRCbZO97EP155BhMHu4sqvxDCmGmiFLR+aQ73FviP4eY2T
Vs0YYzKTWCNdmCRONOxavUmnqKcCChGksfXOzosr59hQlEw+3NmksfGwucNHeyLp
rqUVVjdteFSbFtjQuf94SUe7Wr3fWYj+fyILlvpIVf02rJ2ceF9zbPDiQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE17no5ILg8eQi54wNDsMVm8HDO/MB8GA1UdIwQY
MBaAFCkIX8U0wT4IguJgqJXzzwxVQ+8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWIt
YzMyOTcxMjllNGQzLzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWItYzMyOTcxMjllNGQz
LzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALO9sEXFg
GhsYyJo3/XK9fqZwcOagRgLXlhN+g/wV6cjf3CYdEMxhRWacnRe7vSqJwJ0OXn+a
EkP3O1A/MEg9vF81MfRIMTTeqAq0PuqwMmvzAE+4LyKXSZQgcUxsiYEhdPEVDLWQ
G4/Av6yApAR1HdxKV+O0TA29j7h1zQ+t34A832YeNVauvv8/iRUGstLQZ+HohDUI
pSQOhhj++xTIm2kYbuMtobuHKw+VwyKlqcyVq7iV2T3iXyOUSdsFQ0mvtgIfpQbh
/y/DNYU7NGws29rGIrRHWTNdtinblYmQISEZavSFYIMRs0whti32Pqq9KEcwfr8P
VW5ZZe9t11dMdw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:07 2025 by rpki-client