Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: u1Ag4gaoP1fq3dUl1ZpBNPdF+ZxRGDmoSaT8miEue4k=
Subject key identifier: B2:A9:3A:C3:5B:58:95:38:AE:66:17:D3:8C:42:98:76:83:C9:CA:29
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019739F4D9F6838624EADAD51DC6DE440CEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 04EA
Signing time: Wed 04 Jun 2025 08:00:37 +0000
Manifest this update: Wed 04 Jun 2025 08:00:37 +0000
Manifest next update: Thu 05 Jun 2025 08:00:37 +0000
Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=)
2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: rhSBmOedeLFKImUH9TD8atWajDheKgIvrfoGft3a0Cw=)
3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=)
4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:39:f4:d9:f6:83:86:24:ea:da:d5:1d:c6:de:44:0c:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Jun 4 08:00:37 2025 GMT
Not After : Jun 5 08:00:37 2025 GMT
Subject: CN=b2a93ac35b589538ae6617d38c42987683c9ca29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:48:27:da:31:7e:4a:da:56:b8:1b:6f:67:03:
60:24:3e:43:ee:af:d4:5f:cd:e5:d7:f6:f0:61:5f:
8e:d9:80:0f:16:2d:c5:1f:76:3e:64:e7:5e:57:d2:
58:1c:77:1d:1c:84:23:34:2c:77:a9:12:e6:77:82:
ed:bf:9b:50:d6:df:24:c6:35:95:2c:b9:59:60:aa:
47:a2:97:14:04:24:37:e9:9c:3b:d4:09:1c:98:25:
7b:34:f4:79:75:64:8f:67:41:a0:91:a6:83:77:5f:
c3:25:21:fa:57:c1:3a:ef:88:fb:59:d2:a4:1d:8b:
d0:b5:15:23:26:46:70:f4:83:7f:6e:57:90:32:97:
fe:46:78:b0:eb:55:f2:b9:ad:a4:07:1d:2c:74:be:
40:86:47:69:97:30:42:1d:8c:82:f2:8f:98:4f:cc:
6f:77:c3:1c:05:53:94:a5:e3:4a:e4:99:f3:36:44:
63:31:5d:fc:dc:fb:dc:99:10:b3:e6:d7:a7:ea:71:
56:e3:4f:f6:97:7f:b0:ad:8c:a2:cd:8b:07:1f:c6:
cc:46:b1:cf:5f:03:79:30:d6:5c:07:36:bf:02:ab:
84:e8:d3:84:8c:35:3a:fe:99:41:70:39:16:b0:e3:
ab:6c:f8:58:9b:0b:93:eb:96:dc:b0:be:cf:d8:97:
1d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A9:3A:C3:5B:58:95:38:AE:66:17:D3:8C:42:98:76:83:C9:CA:29
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:49:c9:05:6c:72:40:d2:cf:d2:fb:da:d5:25:12:19:da:08:
e6:8a:f9:d3:f8:15:d0:dc:0e:11:56:2f:89:aa:d6:a9:65:f8:
a5:5c:49:92:d0:8a:ec:d5:cf:2f:f6:6f:0a:9b:b3:ff:d9:23:
d8:4b:ee:a8:a6:99:b5:81:94:c8:42:d7:c7:74:02:92:b1:48:
e7:3d:0a:6b:5f:e4:70:83:e4:0c:e1:75:ce:dc:d9:8a:a5:bd:
d5:5c:d3:4f:ac:9a:9d:c5:a1:21:fc:14:9b:fa:46:11:40:8a:
93:12:e5:ca:65:0f:76:b3:30:2d:88:7b:c0:05:3e:1d:8c:0d:
09:3f:cd:fb:8a:6e:ea:70:72:25:50:df:00:ac:c8:95:06:ee:
08:a4:15:b3:bb:61:e8:86:3e:9b:d3:7e:4c:e0:c4:2a:da:17:
b1:a5:e9:c3:26:df:57:65:f4:bd:03:cf:49:b9:c0:08:99:a8:
dd:94:6d:22:50:8d:20:46:4f:3e:ae:f7:bb:99:3f:a6:58:94:
04:3a:a0:9d:d2:2b:42:e4:5f:48:ba:ec:58:7c:57:05:86:ca:
ae:4b:a2:1b:46:f8:58:a4:d7:a4:fe:5c:ae:e3:36:de:df:56:
07:e2:15:0f:ff:f1:bb:8a:3f:82:86:29:9d:76:4d:b1:e7:16:
43:13:6c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 11:49:23 2025 by rpki-client