Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: fNgsVwIUAuISBP3LHApkbwJ77padBODknc6V/1+WCnY=
Subject key identifier: E2:CB:23:CD:BA:52:65:D3:0A:21:F1:0B:71:46:A9:AD:CA:6C:83:D0
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 0196BA7F910E286F6E52574C27FB44205EE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 04A8
Signing time: Sat 10 May 2025 14:00:44 +0000
Manifest this update: Sat 10 May 2025 14:00:44 +0000
Manifest next update: Sun 11 May 2025 14:00:44 +0000
Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=)
2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: gpPw6Hxg7WJjkO04vkmy6chyuN1jPMK1fXV9B75wdzs=)
3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=)
4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:7f:91:0e:28:6f:6e:52:57:4c:27:fb:44:20:5e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: May 10 14:00:44 2025 GMT
Not After : May 11 14:00:44 2025 GMT
Subject: CN=e2cb23cdba5265d30a21f10b7146a9adca6c83d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1e:ec:41:b1:77:9f:0a:ee:83:03:71:80:10:
4a:a3:64:63:b1:6c:62:7d:3e:23:30:7e:c0:83:e8:
c3:11:ca:97:72:65:be:83:6c:a2:22:f2:42:a2:f7:
0d:a0:09:95:ed:00:c6:58:ff:99:a9:33:01:73:cb:
96:fb:1b:89:8e:dc:3c:51:2c:48:b4:db:26:31:72:
ba:6a:eb:de:80:6e:a5:80:aa:12:3b:66:86:ec:fa:
62:fc:f1:b9:4f:ab:67:e1:2b:9b:a3:6f:76:8d:5b:
0e:69:e4:0a:6a:26:d7:ae:d3:44:ea:6c:8e:56:4e:
7c:90:40:5c:ad:43:27:d0:b3:74:56:63:b8:b8:93:
00:1b:78:e0:61:d7:bd:97:bb:cc:d5:e8:b1:90:f7:
e8:9e:8c:3e:34:8e:8b:18:1f:ab:89:bb:63:17:94:
13:36:01:b4:e7:29:c1:d2:59:5c:79:cf:cc:24:ab:
bb:7a:e3:67:0b:4d:45:fb:f3:a4:1f:d1:e9:68:56:
27:3d:34:23:6a:8c:86:e8:6a:a7:33:e7:b8:f8:23:
a5:b7:ca:c0:5d:07:4d:5c:f8:ab:22:cb:69:ca:13:
c0:cf:d7:74:f7:e7:43:25:1b:15:20:cc:62:99:ef:
d5:37:b0:fe:79:19:4e:2d:15:64:14:ac:21:28:e6:
f2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:CB:23:CD:BA:52:65:D3:0A:21:F1:0B:71:46:A9:AD:CA:6C:83:D0
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:4c:24:c3:ea:f9:ba:cf:2c:ac:2e:8e:59:cf:3c:07:9a:c3:
3a:43:bf:57:56:94:ea:8e:7e:2e:39:98:84:35:e0:98:f6:92:
42:87:4a:10:77:f7:e0:bd:70:27:01:ae:4e:18:39:d5:53:1c:
db:36:89:ee:e3:55:c3:cf:cc:99:46:96:84:13:09:f6:2e:4b:
0e:9d:24:d6:cf:34:09:d9:6f:58:55:b0:61:a5:de:50:b4:7e:
4a:43:5b:d1:78:60:4c:61:17:22:d9:2d:ae:d2:23:dc:fe:0b:
35:32:bb:44:2f:a4:05:5a:03:30:fb:81:c8:da:b3:9a:8b:d7:
9f:77:4a:0a:f6:c9:ad:8c:6c:f8:c1:ae:94:29:86:dc:1c:bf:
77:91:67:a8:3b:ea:09:60:46:97:37:9f:cc:7b:d9:3b:98:f2:
be:02:3b:39:4d:8c:47:98:10:ef:dc:2c:70:70:d7:1a:df:a4:
2d:37:86:40:a2:8d:08:1b:f6:e2:39:b4:1f:43:20:34:5c:2a:
b8:08:55:0f:45:36:42:6b:1f:3f:df:b5:28:3a:55:e7:eb:6e:
15:1a:1b:4b:99:50:fd:67:f8:b7:15:89:d2:60:37:42:cc:13:
a7:62:0e:4a:8c:cd:fc:92:73:54:2f:6f:f8:dc:df:0c:8e:0e:
f4:44:32:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa6f5EOKG9uUldMJ/tEIF7iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDg1ZmM1MzRjMTNlMDg4MmUyNjBhODk1ZjNjZjBjNTU0
M2VmMDgwHhcNMjUwNTEwMTQwMDQ0WhcNMjUwNTExMTQwMDQ0WjAzMTEwLwYDVQQD
EyhlMmNiMjNjZGJhNTI2NWQzMGEyMWYxMGI3MTQ2YTlhZGNhNmM4M2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2h7sQbF3nwrugwNxgBBKo2RjsWxi
fT4jMH7Ag+jDEcqXcmW+g2yiIvJCovcNoAmV7QDGWP+ZqTMBc8uW+xuJjtw8USxI
tNsmMXK6auvegG6lgKoSO2aG7Ppi/PG5T6tn4Subo292jVsOaeQKaibXrtNE6myO
Vk58kEBcrUMn0LN0VmO4uJMAG3jgYde9l7vM1eixkPfonow+NI6LGB+ribtjF5QT
NgG05ynB0llcec/MJKu7euNnC01F+/OkH9HpaFYnPTQjaoyG6GqnM+e4+COlt8rA
XQdNXPirIstpyhPAz9d09+dDJRsVIMxime/VN7D+eRlOLRVkFKwhKObyAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOLLI826UmXTCiHxC3FGqa3KbIPQMB8GA1UdIwQY
MBaAFCkIX8U0wT4IguJgqJXzzwxVQ+8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWIt
YzMyOTcxMjllNGQzLzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWItYzMyOTcxMjllNGQz
LzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAckwkw+r5
us8srC6OWc88B5rDOkO/V1aU6o5+LjmYhDXgmPaSQodKEHf34L1wJwGuThg51VMc
2zaJ7uNVw8/MmUaWhBMJ9i5LDp0k1s80CdlvWFWwYaXeULR+SkNb0XhgTGEXItkt
rtIj3P4LNTK7RC+kBVoDMPuByNqzmovXn3dKCvbJrYxs+MGulCmG3By/d5FnqDvq
CWBGlzefzHvZO5jyvgI7OU2MR5gQ79wscHDXGt+kLTeGQKKNCBv24jm0H0MgNFwq
uAhVD0U2QmsfP9+1KDpV5+tuFRobS5lQ/Wf4txWJ0mA3QswTp2IOSozN/JJzVC9v
+NzfDI4O9EQySg==
-----END CERTIFICATE-----
Generated at Sat May 10 19:44:10 2025 by rpki-client