Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: 4pIrrTOSSHjppsHrGCro1gSmt9CyuGvtMpZN6j6aIO8=
Subject key identifier: 6C:7F:43:FF:EA:74:BF:95:A7:DF:48:41:E2:8B:F0:41:1D:92:01:CF
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 0199228C637FED92BE49770CB4323B6E3E02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 05:00:49 +0000
Manifest this update: Sun 07 Sep 2025 05:00:49 +0000
Manifest next update: Mon 08 Sep 2025 05:00:49 +0000
Files and hashes: 1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: iJTNveHqYHhYSh9hj5yCIABngF/z2kvwuIMImCKqsIw=)
3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:63:7f:ed:92:be:49:77:0c:b4:32:3b:6e:3e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Sep 7 05:00:49 2025 GMT
Not After : Sep 8 05:00:49 2025 GMT
Subject: CN=6c7f43ffea74bf95a7df4841e28bf0411d9201cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e7:ab:8e:87:17:5e:27:1f:86:fa:fa:be:c6:
2b:62:87:a3:70:7b:ea:bc:ec:57:24:36:bd:40:19:
96:80:ab:31:ac:8d:e4:e4:90:ce:0c:e2:ca:d4:4e:
97:f7:e6:4a:ec:3f:ce:8a:cd:70:55:41:9e:1a:9b:
65:dd:51:a0:47:08:d4:e0:d1:01:c9:1d:63:e7:97:
69:e4:1e:a4:36:60:a4:8c:e9:71:14:16:02:6a:f8:
e8:69:d1:d6:01:d1:e6:34:be:32:22:d3:69:52:7c:
14:ae:9d:d0:a3:e6:d2:09:f1:f6:90:c1:61:5b:86:
a4:58:cb:cb:7b:bd:03:62:58:62:e7:2d:96:eb:29:
8a:44:9d:47:19:3b:84:f9:3b:49:12:1e:40:29:65:
4f:fa:b0:ce:6a:5b:bb:95:54:f9:c6:ca:32:dc:ee:
2f:70:b1:52:3e:da:1b:02:9b:cc:58:bf:88:b4:9f:
77:5d:31:ec:d5:cb:8d:a6:2d:e7:1a:c1:5c:ad:bc:
ed:bb:cd:11:bc:b3:f7:b9:b0:e9:ed:2f:f1:26:c3:
f4:c1:eb:84:71:87:01:19:65:62:65:90:7c:65:bf:
c8:10:46:6f:91:2d:08:af:3a:7b:50:10:76:e6:29:
02:02:40:99:a7:82:bd:b6:0b:a8:32:22:d9:97:a6:
9a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7F:43:FF:EA:74:BF:95:A7:DF:48:41:E2:8B:F0:41:1D:92:01:CF
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:45:4d:69:72:b2:df:cf:5c:41:b4:bb:3d:75:09:06:74:b5:
a9:ae:9e:92:b5:63:9e:2b:40:c8:1d:e5:07:4e:2b:e3:f7:9a:
47:b1:59:77:2b:91:72:bc:d8:42:dc:59:46:77:3e:d5:16:54:
bd:b3:b1:4c:a2:a5:69:74:aa:d3:f7:a4:00:4a:f9:ec:37:07:
e8:60:2c:57:35:ec:6e:db:de:30:e4:a0:40:56:db:be:7c:5d:
cc:74:41:6c:77:59:0e:51:37:e8:8f:3f:5a:ed:e9:32:3c:31:
12:9b:e4:63:96:a1:9f:07:63:a7:1e:29:d2:42:3c:d7:ff:5d:
b1:f3:85:65:f8:24:50:cb:4d:5c:d5:b3:82:f0:b7:e6:5f:22:
c7:cb:91:b8:bc:26:b8:fa:0d:42:64:19:84:55:2b:c0:bf:f6:
00:39:49:c6:c8:39:ac:b8:52:7b:a6:01:ef:14:02:f7:39:02:
84:43:a4:bd:d6:52:eb:3a:e9:5e:92:70:09:73:23:bf:59:10:
06:74:08:77:40:90:1e:cc:b9:ee:03:d5:c7:dd:94:ad:a6:4c:
53:3e:9a:03:e4:c2:5f:b5:d6:65:48:da:6e:81:e7:54:56:2e:
3f:6f:0d:71:96:c7:73:e2:44:89:89:9e:d8:6a:3a:25:c8:f6:
5f:ad:1d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:05 2025 by rpki-client