Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: ba64XWfbuM2kPoB8r96wr2QorBuV3OWn+hoP0hgapRM=
Subject key identifier: 70:56:78:45:6C:99:4E:F4:05:02:46:35:85:75:CD:2D:FD:6F:FA:BD
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 0199228D3CCFB010C56FABE823A7BF517826
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 05E7
Signing time: Sun 07 Sep 2025 05:01:45 +0000
Manifest this update: Sun 07 Sep 2025 05:01:45 +0000
Manifest next update: Mon 08 Sep 2025 05:01:45 +0000
Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=)
2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: SKGuFqy4S8KnEjf9lK++x+G1osOr42y0eClD4kktDKg=)
3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=)
4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:3c:cf:b0:10:c5:6f:ab:e8:23:a7:bf:51:78:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Sep 7 05:01:45 2025 GMT
Not After : Sep 8 05:01:45 2025 GMT
Subject: CN=705678456c994ef4050246358575cd2dfd6ffabd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5a:68:e2:01:96:23:ba:19:0e:7e:50:47:8a:
e9:61:59:52:0b:d1:52:4c:56:53:f6:7f:5d:e4:d5:
ef:2d:aa:68:08:26:2e:6b:86:8f:4d:44:3e:6e:3e:
a0:13:60:69:03:90:20:9e:4f:6e:35:36:23:00:fd:
69:73:9d:3e:f7:5f:35:6e:f7:76:7f:f0:fe:72:42:
09:60:83:05:ba:44:cc:71:18:93:b0:59:35:9d:dc:
98:48:62:81:c6:b4:75:ba:0a:d7:26:59:90:3a:e1:
28:46:41:61:84:ad:46:40:d7:fe:42:32:77:14:74:
e7:e3:66:71:fd:df:2b:7d:30:dc:da:11:b6:b1:63:
0a:cc:44:96:19:cd:e0:6b:a4:8c:6d:77:60:33:f3:
c6:34:83:45:42:3e:39:f8:42:ec:e3:24:e8:3b:a0:
55:80:df:e7:00:00:3c:25:49:66:b1:da:e9:70:f3:
bd:96:1c:ff:27:5c:1f:72:78:6d:9b:29:41:0d:e8:
be:b1:7b:3d:b3:74:5b:6e:a5:2e:29:45:16:99:f4:
ff:9c:26:d5:d8:25:9d:b1:7b:d0:da:f4:81:96:e0:
29:6b:15:26:ae:05:f7:f2:94:0e:16:2a:20:56:71:
63:b2:f2:1f:4b:62:ae:ed:67:49:13:0f:de:47:ef:
85:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:56:78:45:6C:99:4E:F4:05:02:46:35:85:75:CD:2D:FD:6F:FA:BD
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:92:60:fe:68:26:92:45:2f:1c:1e:cb:be:e9:4e:2e:19:49:
99:a4:03:76:17:4f:c0:89:96:62:52:55:20:43:b3:f9:1c:7b:
32:b9:17:f6:50:af:02:b9:56:91:04:b4:96:89:26:67:f8:15:
3b:df:15:2a:88:14:8c:62:6e:86:02:a0:50:ea:40:42:56:1b:
58:03:08:a2:6f:2e:be:40:d4:c5:5e:8f:46:ef:52:a4:ba:22:
30:13:ce:01:a5:2f:04:66:5b:e0:9c:62:f5:70:91:59:3a:88:
89:f3:ea:64:58:4e:2c:27:e0:38:19:1a:07:c0:48:35:36:29:
60:ed:35:5c:f2:05:ac:04:e5:36:89:d7:1b:3d:2b:88:e3:24:
10:1a:68:bf:9f:ad:e9:6e:c5:51:1f:8f:a2:e4:d2:3f:4a:2c:
06:de:4f:5d:32:a2:88:52:e3:52:e9:98:16:61:ba:1d:ad:ff:
29:6c:3d:ad:79:18:4c:05:3b:b4:77:79:de:13:a6:42:26:2e:
d8:63:62:25:4e:46:85:3e:1d:86:90:ed:47:aa:6f:39:7b:0d:
57:19:89:42:8e:a0:36:13:25:1e:56:60:44:ba:c4:8c:15:86:
70:c0:90:03:3d:5b:6c:97:58:70:ea:36:73:81:1c:66:59:3d:
47:30:1e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:25:20 2025 by rpki-client