
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: 4tqmi6PRHk5V8E1k54XLZGpuCaenqFRHFhRg1QnfsZQ=
Subject key identifier: 20:28:61:96:FC:DA:2A:03:98:5C:99:41:3D:E8:62:D8:C1:EB:41:2C
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 0197647128CC727FF689BE4E1D4DDBCEE79E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 158C
Signing time: Thu 12 Jun 2025 14:00:26 +0000
Manifest this update: Thu 12 Jun 2025 14:00:26 +0000
Manifest next update: Fri 13 Jun 2025 14:00:26 +0000
Files and hashes: 1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: SBzrEQXlBsJ9c3rpmsbzvKjsHR6jvIf2xO/k57UH+UI=)
3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 14:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:71:28:cc:72:7f:f6:89:be:4e:1d:4d:db:ce:e7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Jun 12 14:00:26 2025 GMT
Not After : Jun 13 14:00:26 2025 GMT
Subject: CN=20286196fcda2a03985c99413de862d8c1eb412c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:f7:88:34:73:bd:21:9c:87:27:5b:9e:81:
fe:0d:5e:0e:aa:44:4f:6d:f8:0c:29:63:d1:5f:13:
bf:10:c9:b3:2f:bf:0f:3b:45:e5:6a:9e:0c:cb:ea:
65:16:2c:52:f8:f7:81:23:55:dd:a9:16:72:d7:09:
5d:56:56:16:67:90:bf:b7:7b:f7:e9:72:46:d7:10:
ca:d6:4c:02:e4:5a:d6:d7:d6:dd:a3:00:f7:e8:2c:
49:8f:3f:84:6a:ed:98:de:0a:fe:de:25:f5:c4:53:
6c:11:52:46:f4:77:7c:cb:46:58:2a:ae:8a:81:6a:
26:ce:53:4c:7b:02:6c:34:18:d6:b4:6b:ad:2d:1c:
30:32:1f:d0:8b:cb:c4:9d:35:a4:35:a3:af:51:30:
cf:e0:d4:9d:c5:22:65:8d:11:12:cc:7d:1a:01:b1:
0d:b8:90:00:4a:45:8d:a7:7c:1c:5b:fd:a4:ae:07:
5e:b5:62:08:7b:ec:af:9a:e0:ee:6a:7e:b6:b1:ca:
94:02:26:38:0e:1d:2d:7f:70:4c:37:49:95:14:75:
5e:c5:29:15:7e:13:0a:88:f5:0e:6d:fc:e8:58:b7:
59:de:02:65:86:91:cd:b2:6a:89:21:c5:51:79:cb:
69:61:88:c1:96:6f:d7:39:39:06:2e:bf:61:c9:81:
14:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:28:61:96:FC:DA:2A:03:98:5C:99:41:3D:E8:62:D8:C1:EB:41:2C
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:03:25:c0:6c:00:6b:26:5f:eb:3a:91:bc:d5:69:a0:9b:4a:
c8:69:13:ee:4a:c7:d6:44:ab:d7:51:9a:a3:ba:15:79:e7:d4:
92:f1:d0:b4:48:c6:3a:f7:4b:41:0e:8e:ff:0d:6f:c8:a0:9e:
0e:6d:b8:78:2f:7e:f4:53:78:a8:1f:c1:cf:d9:98:49:62:74:
80:86:22:61:a3:30:a8:3d:dd:df:4b:3b:bb:23:93:4f:73:61:
65:18:15:2d:23:a6:50:61:53:f2:21:62:5d:d4:40:38:8b:56:
b8:1d:54:a7:44:63:eb:bd:82:50:ce:5e:98:e6:90:60:ea:58:
1a:8e:1b:6e:75:01:36:d9:5f:ef:65:4e:30:2a:97:d5:96:ca:
4d:47:1e:de:d8:a7:0f:96:f5:aa:ee:2d:46:91:a3:56:d4:bd:
12:ca:64:de:71:93:86:a5:1f:49:26:a4:b2:57:3e:5a:ff:d5:
f4:2b:64:30:8f:f2:c0:c3:96:0c:f6:d1:ef:c1:12:31:82:1a:
12:2b:52:7b:d6:fd:61:51:1d:43:6d:ec:b5:80:dc:e5:e6:77:
fd:ce:8d:04:15:ab:4e:de:ba:4d:b7:05:98:1c:a5:10:18:7d:
60:ca:62:7a:10:fd:bb:ee:7a:c0:1d:78:a5:63:55:43:19:5f:
90:9a:cb:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdkcSjMcn/2ib5OHU3bzueeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDFmNTAxOWE5NzBiYTViZTBjNzU0ZDIwZjc4NjcxODE4
ZjRhMmUwHhcNMjUwNjEyMTQwMDI2WhcNMjUwNjEzMTQwMDI2WjAzMTEwLwYDVQQD
EygyMDI4NjE5NmZjZGEyYTAzOTg1Yzk5NDEzZGU4NjJkOGMxZWI0MTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFX3iDRzvSGchydbnoH+DV4OqkRP
bfgMKWPRXxO/EMmzL78PO0Xlap4My+plFixS+PeBI1XdqRZy1wldVlYWZ5C/t3v3
6XJG1xDK1kwC5FrW19bdowD36CxJjz+Eau2Y3gr+3iX1xFNsEVJG9Hd8y0ZYKq6K
gWomzlNMewJsNBjWtGutLRwwMh/Qi8vEnTWkNaOvUTDP4NSdxSJljRESzH0aAbEN
uJAASkWNp3wcW/2krgdetWIIe+yvmuDuan62scqUAiY4Dh0tf3BMN0mVFHVexSkV
fhMKiPUObfzoWLdZ3gJlhpHNsmqJIcVRectpYYjBlm/XOTkGLr9hyYEUnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCAoYZb82ioDmFyZQT3oYtjB60EsMB8GA1UdIwQY
MBaAFCkB9QGalwulvgx1TSD3hnGBj0ouMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUt
MmIyZjJiODkwOGNjLzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUtMmIyZjJiODkwOGNj
LzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARAMlwGwA
ayZf6zqRvNVpoJtKyGkT7krH1kSr11Gao7oVeefUkvHQtEjGOvdLQQ6O/w1vyKCe
Dm24eC9+9FN4qB/Bz9mYSWJ0gIYiYaMwqD3d30s7uyOTT3NhZRgVLSOmUGFT8iFi
XdRAOItWuB1Up0Rj672CUM5emOaQYOpYGo4bbnUBNtlf72VOMCqX1ZbKTUce3tin
D5b1qu4tRpGjVtS9Espk3nGThqUfSSakslc+Wv/V9CtkMI/ywMOWDPbR78ESMYIa
EitSe9b9YVEdQ23stYDc5eZ3/c6NBBWrTt66TbcFmBylEBh9YMpiehD9u+56wB14
pWNVQxlfkJrL4w==
-----END CERTIFICATE-----
Generated at Thu Jun 12 23:59:32 2025 by rpki-client