Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
File: KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft (raw, json)
Hash identifier: WVeqe1d44/CBAFGmxh8eH77jQbF1e5fb008TK4GWknA=
Subject key identifier: 0F:B1:98:02:3D:E4:C1:E7:1C:89:B3:D6:3E:82:33:E4:61:3C:03:3D
Authority key identifier: 29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
Certificate issuer: /CN=2901d76431c6e873d3c44730571e1e50d602057c
Certificate serial: 01974DE9FC4DF0D931A99F7C62537F8AE2BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
Manifest number: 118E
Signing time: Sun 08 Jun 2025 05:01:09 +0000
Manifest this update: Sun 08 Jun 2025 05:01:09 +0000
Manifest next update: Mon 09 Jun 2025 05:01:09 +0000
Files and hashes: 1: JePrT9N5p_vpcuN2wLJvV6n4f0o.roa (hash: ec+cmY8FX0sUxq4KIX8YI3T2SVi2Yc81u8O7CEJnLdo=)
2: KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl (hash: 56H8kTp4UdShNydylyJv/VhT8kGCKFXanurL6gXzWmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:fc:4d:f0:d9:31:a9:9f:7c:62:53:7f:8a:e2:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901d76431c6e873d3c44730571e1e50d602057c
Validity
Not Before: Jun 8 05:01:09 2025 GMT
Not After : Jun 9 05:01:09 2025 GMT
Subject: CN=0fb198023de4c1e71c89b3d63e8233e4613c033d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e5:fc:99:39:de:5f:6f:b9:a3:18:17:75:50:
c5:e7:01:db:f7:e6:c8:ce:35:52:bf:b3:60:9d:78:
2a:db:f3:7d:67:5f:b7:c5:fc:07:7a:80:57:6a:65:
0e:f4:84:bd:14:91:35:93:54:7b:48:14:4b:58:6d:
78:9b:a3:04:80:90:b2:0f:4c:7f:d8:30:a2:16:c3:
be:f1:53:5d:bb:76:7f:1b:cc:ee:e6:cc:83:5c:b5:
3b:b4:b1:38:e9:90:95:ef:7f:d9:d1:cc:9e:31:ff:
60:85:3d:b1:62:1c:e0:ce:cd:2b:5f:22:56:86:55:
a0:31:c4:2a:30:55:aa:af:f3:99:cb:9f:db:17:69:
7d:a3:af:6e:ed:e1:15:3d:6c:9b:f3:bd:4e:ba:00:
c9:79:8f:4a:1f:15:4a:23:99:57:08:bf:73:ef:2f:
e2:5d:72:6c:af:40:2a:90:7a:21:54:ee:d3:86:e5:
11:87:72:f3:2f:7b:7a:24:26:c2:ca:3d:ab:fa:d6:
3d:98:5e:99:c9:ef:77:16:c7:b7:20:e4:11:4a:06:
85:90:74:a9:cc:50:5c:23:3d:34:d4:94:1b:e4:ed:
4a:fb:3f:95:7c:a3:e0:c1:9c:7b:c4:8a:7c:05:d3:
0e:85:2d:85:c4:93:8b:6f:9e:ec:4c:cf:0b:25:ca:
c6:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B1:98:02:3D:E4:C1:E7:1C:89:B3:D6:3E:82:33:E4:61:3C:03:3D
X509v3 Authority Key Identifier:
keyid:29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:e2:39:ce:25:6e:ca:60:b2:77:da:5c:7d:1d:52:b9:78:9d:
60:de:c4:95:f3:81:6c:60:9c:c4:f7:2f:f1:0a:86:38:14:b0:
39:b5:4d:24:97:94:06:d9:e9:c4:6b:23:fc:d7:4c:ac:1f:78:
fb:88:b4:a5:75:38:91:f0:4a:69:4b:0f:d2:43:36:50:59:d6:
58:23:8f:24:31:e5:02:ea:34:39:53:0b:7d:9c:2a:6f:cb:2e:
75:5f:b6:5d:ad:3e:db:72:68:34:a7:27:28:a7:36:2e:de:f8:
da:c5:05:f0:18:6f:b7:31:29:56:78:b3:6f:f8:7b:20:a1:87:
9c:fd:ef:c2:bd:81:b9:1a:4b:77:39:54:62:b3:bf:eb:38:14:
61:5b:7a:b9:1f:b9:6e:11:c4:2e:0f:ae:1a:df:64:a7:32:58:
de:03:8b:26:06:4d:75:85:f7:54:65:5d:34:88:43:f7:90:89:
d8:e9:c3:81:28:6c:60:ad:66:4c:53:d2:9c:fb:c6:89:a2:70:
d1:7e:61:01:c4:89:57:e0:51:43:0a:68:21:c7:13:fa:00:b5:
25:39:4a:f7:2a:5c:12:7a:89:98:e3:d3:10:4f:66:c0:86:7f:
f3:cd:c3:eb:06:82:d2:54:ad:44:78:e2:14:1a:98:3b:f0:76:
f8:70:0c:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:40:50 2025 by rpki-client