Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: 0a83XtRuFs9XkAZM2rPGgmZ8VmR7P7oYPKZ89LiomeQ=
Subject key identifier: E4:13:C5:B1:6F:51:0E:49:8B:73:B5:3C:BF:E4:2E:B9:99:23:C7:BE
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 01965DCD1A48FC7777CFFC4B46A7666AB2E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 1504
Signing time: Tue 22 Apr 2025 14:00:44 +0000
Manifest this update: Tue 22 Apr 2025 14:00:44 +0000
Manifest next update: Wed 23 Apr 2025 14:00:44 +0000
Files and hashes: 1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: BeslNAKs8q9QuprfnYaIMjw3eVgiH7za9ycI4Z7obyg=)
3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:cd:1a:48:fc:77:77:cf:fc:4b:46:a7:66:6a:b2:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Apr 22 14:00:44 2025 GMT
Not After : Apr 23 14:00:44 2025 GMT
Subject: CN=e413c5b16f510e498b73b53cbfe42eb99923c7be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:74:77:02:b1:17:f9:12:fa:b3:88:bf:e9:1b:
7e:0f:87:5a:b9:33:74:f4:c3:8c:04:1e:39:4f:6a:
9c:18:59:d2:5a:0d:44:f5:76:e8:84:9f:8c:0f:f1:
37:30:d8:2e:31:44:d2:d5:18:fd:56:49:25:d4:4b:
bf:48:30:a0:da:1d:cd:31:1d:40:b8:47:fa:2c:b0:
b4:10:7e:6f:e0:23:83:17:f1:95:19:40:92:33:e9:
2a:82:1e:42:c8:e6:62:a9:ae:dd:e0:b3:5a:2d:fe:
12:0e:12:b0:74:96:ec:6f:36:52:5a:49:9f:cf:cd:
ed:21:6c:5e:bf:b3:9c:29:1f:1a:7b:c5:b9:9d:e2:
de:b2:d8:af:90:c3:d2:cd:a3:a2:6f:a1:b8:07:3c:
c0:88:1f:f9:f4:b9:83:97:ed:d2:f6:93:c8:2b:39:
a3:9f:f6:98:da:aa:42:b2:7e:fa:fe:05:df:4a:a0:
aa:4a:e8:cd:9c:2b:cf:20:d7:21:19:86:cc:cc:8f:
d6:95:94:d0:97:97:52:86:b9:de:b6:54:a4:e1:69:
73:b5:95:26:80:ea:73:df:9f:ea:4f:36:7e:a9:b3:
55:16:d7:f4:ae:ac:20:3e:34:3e:92:03:26:16:10:
8a:ba:90:1a:f3:ba:f5:e2:d2:4f:d8:32:2e:31:0f:
a9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:13:C5:B1:6F:51:0E:49:8B:73:B5:3C:BF:E4:2E:B9:99:23:C7:BE
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:c4:77:9e:5a:0a:24:60:36:92:b3:f4:12:a8:ce:b2:64:fc:
f1:a3:f3:90:27:35:53:e1:be:dd:99:e3:d4:f7:99:be:6c:e9:
86:ee:2d:e3:00:2a:03:21:79:c5:15:66:5d:a6:83:72:c8:54:
02:06:71:1e:43:9d:02:ee:ac:d9:69:73:ae:d2:f1:d5:ad:f3:
1c:27:b0:95:30:79:33:c8:55:5c:25:3f:af:eb:ba:06:be:8f:
ab:1b:8a:80:76:16:8a:5c:fd:67:76:23:79:7a:f2:16:7b:df:
a3:1c:23:dc:ab:51:76:fb:67:71:80:e7:bc:51:4f:39:09:0d:
2a:f0:f5:c4:e8:3d:b9:9c:08:c2:78:a7:c0:85:20:7a:c9:44:
06:b3:06:d8:e7:bb:82:2b:87:10:b5:b1:00:ec:66:d1:be:47:
eb:bf:0b:96:07:90:95:54:7d:1d:75:3a:30:6d:27:97:54:45:
51:c9:8f:18:da:74:fc:47:eb:20:f3:3d:a5:29:2e:d4:75:8c:
e5:61:7a:4f:61:67:a9:c4:50:b5:27:bc:6a:3b:67:d8:f4:eb:
52:28:5f:09:0a:1d:6c:2d:4d:99:54:fc:d5:fe:9e:22:66:8d:
aa:19:e8:42:5a:e4:ba:24:ee:9d:0f:7b:36:51:23:8c:cb:5d:
53:02:80:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 21:17:18 2025 by rpki-client