Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: TgCDh9Do5Lzawy371cjWhhsHqs+bgMDR1CBbDG1eaTg=
Subject key identifier: 76:A5:6A:7E:F5:D7:10:E6:EA:FF:10:EB:7D:BC:4B:6B:8F:5A:A7:61
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019A70A4C92D299456555C2D134862B6D214
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 0694
Signing time: Tue 11 Nov 2025 02:00:38 +0000
Manifest this update: Tue 11 Nov 2025 02:00:38 +0000
Manifest next update: Wed 12 Nov 2025 02:00:38 +0000
Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=)
2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: eFxdmu0PNIwIBkGFRbMLK/xT5UfXHXSIFJuvHvXNCIA=)
3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=)
4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a4:c9:2d:29:94:56:55:5c:2d:13:48:62:b6:d2:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Nov 11 02:00:38 2025 GMT
Not After : Nov 12 02:00:38 2025 GMT
Subject: CN=76a56a7ef5d710e6eaff10eb7dbc4b6b8f5aa761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f8:6c:4a:13:67:73:7a:4c:3a:71:27:30:21:
d9:31:b6:9c:c4:bf:83:a8:9d:95:f9:14:5b:83:7f:
7c:0c:4d:5a:8a:80:38:d3:57:22:ed:bf:41:ea:eb:
53:c6:d5:a1:2b:23:54:9d:a2:ac:e9:e2:8a:85:b1:
62:80:6d:23:98:4e:de:20:17:58:ef:da:d4:03:51:
35:5f:d4:5f:31:58:84:f5:eb:e3:fa:af:a9:0e:c7:
f0:db:e8:36:82:db:79:f2:cb:06:44:9b:d0:a1:e5:
72:60:c1:9c:d8:81:ff:69:88:ed:95:be:fd:78:5a:
24:26:b3:f1:fc:63:f5:bb:57:c5:d0:b9:08:ad:f2:
51:b8:11:f9:3e:6c:75:bb:18:77:2d:49:ba:c1:00:
69:83:fc:3b:19:17:cd:2a:9b:cc:47:12:72:0e:17:
81:6f:13:92:64:a9:c2:3c:42:74:7e:cd:20:b7:9c:
e9:e8:dc:cd:c5:47:0a:30:45:1e:22:41:30:b6:79:
88:e4:c2:6d:b8:49:91:ef:cc:53:e5:75:87:ec:99:
d6:06:d9:91:59:39:99:8c:8b:06:19:4f:e4:87:8f:
da:23:5f:d6:a4:9e:6d:d7:15:91:fa:2e:ed:d6:4d:
e7:54:16:fc:96:51:99:31:1f:2f:5a:c3:10:40:59:
61:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A5:6A:7E:F5:D7:10:E6:EA:FF:10:EB:7D:BC:4B:6B:8F:5A:A7:61
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:98:c3:63:e3:97:92:8c:fa:2a:db:55:3c:62:81:98:c1:b7:
24:42:63:1b:a6:3c:7a:62:70:cb:28:13:61:9a:9d:81:39:ac:
5d:58:9a:a2:9e:79:6a:d9:a0:db:44:ee:2f:d1:29:d3:62:6c:
9a:a5:56:87:72:52:5a:0f:08:af:45:f0:b3:6c:5e:6d:c7:13:
3d:98:a8:4d:04:8a:6d:c3:f3:a3:03:2a:07:0f:6d:c7:d2:dc:
5a:8c:07:1e:39:0c:a3:52:59:07:b1:b5:f6:24:f4:fa:dc:e7:
e8:72:d5:b6:79:bd:b7:63:03:0b:fe:00:18:cb:00:cb:6f:c0:
9d:e1:db:c5:03:d6:b1:a8:f5:44:2a:12:ec:33:39:28:09:71:
f8:10:ba:31:07:88:ca:06:b7:7a:16:52:f3:32:05:f9:2d:fa:
09:66:1f:2c:2f:83:c1:ff:5c:55:c5:7b:f4:f0:78:8d:56:30:
52:16:ba:4c:fd:34:92:11:09:26:3c:1c:a4:e6:72:1b:81:9b:
8a:30:72:2a:7b:6b:d4:69:ba:c5:f6:a6:1b:ee:52:82:c4:77:
49:e0:26:de:3a:5a:23:94:11:55:3c:75:19:ab:66:f9:19:73:
77:3c:16:73:c0:64:6a:09:1c:36:0e:85:d7:7f:e7:80:51:d9:
1e:c2:9a:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:31 2025 by rpki-client