Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: iTynhOYQE6lDQW8n1sItT9jk7bM/60XfDlXhn6GXmL4=
Subject key identifier: B7:43:9E:DB:A3:DC:2A:45:90:0D:14:15:1D:DA:03:66:FC:85:5A:3C
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 0197B77CD5A49508F888098382C89D5C6650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 052B
Signing time: Sat 28 Jun 2025 17:01:40 +0000
Manifest this update: Sat 28 Jun 2025 17:01:40 +0000
Manifest next update: Sun 29 Jun 2025 17:01:40 +0000
Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=)
2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: 0xjmO7GEMz0MOfVLCEJ/JXeRg7NfRyuMGkb9GzFMXLI=)
3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=)
4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:d5:a4:95:08:f8:88:09:83:82:c8:9d:5c:66:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Jun 28 17:01:40 2025 GMT
Not After : Jun 29 17:01:40 2025 GMT
Subject: CN=b7439edba3dc2a45900d14151dda0366fc855a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dc:3c:ff:be:cc:a4:59:f2:63:47:18:6d:59:
f1:ee:49:6b:3b:20:ff:ee:ee:5d:e9:28:b2:bc:d9:
98:34:33:fd:38:4d:04:67:07:54:9d:fc:b1:a7:2d:
3e:24:ba:31:34:5b:80:23:1f:8f:aa:25:58:f1:25:
ad:39:f3:ef:41:ec:30:f3:23:f1:67:c3:86:d9:9d:
aa:fa:f9:df:7a:3c:3b:ac:9e:82:2a:c5:5a:1c:84:
f4:9d:74:1f:d8:2b:68:56:ce:18:3b:95:9d:dc:66:
51:fe:35:17:42:aa:e7:92:b8:69:b8:37:40:e7:eb:
94:28:4b:a8:3e:8e:17:24:c8:ac:18:58:05:34:cb:
94:ce:00:3f:b9:96:d5:c2:49:69:7d:5b:c7:e8:0b:
f2:37:a6:fc:41:81:8b:e3:26:20:8c:42:d7:a3:be:
51:08:d5:94:a4:9c:34:b4:47:b3:8d:51:29:75:29:
fa:92:68:98:0c:aa:df:9e:9f:d7:c7:40:a2:ae:67:
47:f8:ea:dc:8f:68:0e:69:2f:29:3c:5a:51:3b:89:
a9:ed:e6:e7:e0:82:ba:14:17:7a:6b:80:5f:24:63:
a1:45:5b:10:58:97:d8:15:67:97:03:ef:7c:c2:d1:
25:be:98:3d:00:0d:e2:01:9e:5e:0f:b8:1f:56:e2:
89:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:43:9E:DB:A3:DC:2A:45:90:0D:14:15:1D:DA:03:66:FC:85:5A:3C
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:68:91:b3:8a:af:2e:ee:24:7e:28:5a:d0:8f:44:0c:1b:46:
3c:a7:32:06:e2:7a:48:4a:a5:64:42:5d:30:6d:a0:11:ae:7b:
c3:18:5e:da:f1:eb:76:48:3a:ed:c6:f2:8a:f2:07:5a:29:e0:
82:d7:82:97:02:78:56:2d:41:31:68:d0:fd:b5:51:b9:4b:84:
f4:00:ad:39:fd:96:e1:cf:c3:86:36:bb:a4:08:6c:d6:94:ea:
96:8f:bc:6a:05:cf:b1:1c:f6:47:a5:40:d0:b6:be:b2:ad:08:
96:4c:fd:63:34:8a:41:02:5a:6d:d8:71:a3:7c:14:ca:9c:51:
1d:de:d0:bb:20:64:10:19:29:6c:67:b6:33:14:50:27:76:d2:
50:ed:cc:df:ce:fa:a8:a9:0d:28:1a:15:5a:79:f7:17:24:a9:
7d:64:3b:02:4a:67:c6:19:0d:99:6e:3e:4c:8d:26:1b:36:63:
75:91:d7:24:96:ad:a3:3b:07:cd:92:e4:fe:4a:45:10:62:85:
69:62:1c:8e:32:3d:1e:76:aa:2f:d1:c7:a4:fc:54:e0:8a:2d:
57:b4:75:f0:26:fc:ef:a7:f5:68:5f:64:a5:2e:1c:c5:fe:f1:
9f:18:7f:ae:be:b0:fe:b3:c7:76:19:a7:43:64:46:5c:66:e9:
47:4b:35:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:44:41 2025 by rpki-client