
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: dXKuKF4JM4+hkNU1aCD23stKxoSD5NUbTpcQoe8+1vM=
Subject key identifier: 97:60:DB:F0:80:15:2D:9E:32:FE:24:4C:8B:94:C9:DC:FD:A8:97:AF
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 019754FE0AEE5F2D3A3A3FBC3F2D8F898CEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 1584
Signing time: Mon 09 Jun 2025 14:00:24 +0000
Manifest this update: Mon 09 Jun 2025 14:00:24 +0000
Manifest next update: Tue 10 Jun 2025 14:00:24 +0000
Files and hashes: 1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: EvzHG8QP4+HHbOtL3vVLCZdLKdr6WPIqikUcXcwZXeM=)
3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:fe:0a:ee:5f:2d:3a:3a:3f:bc:3f:2d:8f:89:8c:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Jun 9 14:00:24 2025 GMT
Not After : Jun 10 14:00:24 2025 GMT
Subject: CN=9760dbf080152d9e32fe244c8b94c9dcfda897af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d5:65:72:67:1a:8b:79:9b:b0:4b:b2:6b:97:
70:c4:9e:e2:7c:52:9f:03:10:6f:1c:08:7f:46:20:
ee:84:aa:cb:70:d9:5c:c5:f6:a2:07:7b:df:2d:12:
0b:b9:38:8c:f0:e8:4e:76:4d:c0:c5:16:97:c4:d9:
1b:5c:70:e3:a8:6a:90:e1:30:24:cd:f0:11:41:f5:
fc:10:e0:17:ff:1a:07:01:f9:a3:22:31:c9:a4:80:
cd:37:8f:2a:c6:e3:8a:04:b5:1d:14:b2:63:db:cc:
15:10:67:c4:ed:61:0e:2e:ba:fe:8c:4e:d7:f1:12:
f2:83:0a:e1:d4:27:e8:8f:ca:e1:4d:ca:8a:ba:27:
bf:6b:6f:a6:73:17:8e:cb:ce:2e:64:02:1e:1c:66:
4f:ec:12:08:cf:65:a3:4c:e3:f1:bf:1d:00:82:ed:
51:ee:bb:3f:a7:93:da:61:ee:e7:5a:38:65:f3:65:
83:3f:58:bf:2d:16:b0:e5:b0:14:0d:0d:fc:92:cf:
16:8a:7f:24:41:47:f9:b9:1c:b6:45:f6:75:a4:ac:
84:a9:3d:a5:ad:a9:c0:32:95:ed:34:6c:17:b4:82:
8c:f4:99:77:56:76:b5:41:13:2e:44:d8:82:7c:ed:
8f:9a:45:1b:d2:6b:28:0c:92:b9:58:8b:96:c2:29:
cc:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:60:DB:F0:80:15:2D:9E:32:FE:24:4C:8B:94:C9:DC:FD:A8:97:AF
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:12:d5:2b:21:4a:0b:2d:3d:83:8f:19:9b:4d:73:06:88:26:
7f:8c:a3:13:6a:e1:bd:2e:7f:f9:d7:7e:2f:75:b2:71:fa:56:
d2:27:bb:75:81:f6:99:66:5b:1d:a0:79:02:b8:60:c7:af:25:
43:f3:4c:16:e4:27:be:c6:d9:d9:fe:9e:ba:99:fb:1e:e9:cc:
99:8a:3e:e7:7f:15:65:b9:d3:c4:94:33:c8:4d:37:5d:b7:33:
a7:b3:33:81:92:1c:26:61:8e:8e:a2:09:bf:2c:45:d5:d8:cb:
fe:cf:5d:42:a5:b8:3f:b4:b0:8c:6b:7a:1b:b1:2e:f7:85:f4:
2a:29:04:8b:f1:5c:43:5b:27:b4:97:62:de:0a:42:c1:e7:dd:
f7:e8:12:11:c5:55:43:90:62:69:91:d1:63:b8:3c:22:a3:d5:
b1:1b:66:91:68:71:8e:ba:b0:25:e7:76:f1:f0:5c:36:44:98:
d2:43:40:a1:2a:76:e3:88:55:73:af:e3:70:33:66:e8:2c:78:
d2:e9:6b:93:b5:ef:68:f0:96:db:b3:84:ac:0f:44:8e:31:32:
0e:c2:42:89:75:9c:7d:e9:92:dc:b4:fa:da:52:ec:fa:39:37:
bd:2f:1e:14:a9:ad:1a:78:94:b2:8b:c1:58:2d:df:cc:92:20:
a0:d6:b2:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 01:07:31 2025 by rpki-client