Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
File: KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft (raw, json)
Hash identifier: LjXEFON4KAz+h7n6ooRHDu0yxBmekfnqQZ+s4sts7vo=
Subject key identifier: 2A:AE:7B:25:2D:A4:18:F0:9B:9B:14:37:08:58:F4:F9:EB:0D:FB:72
Authority key identifier: 29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
Certificate issuer: /CN=2901d76431c6e873d3c44730571e1e50d602057c
Certificate serial: 019658A65133C8DBF2E97124D4C2BC718DCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
Manifest number: 110F
Signing time: Mon 21 Apr 2025 14:00:16 +0000
Manifest this update: Mon 21 Apr 2025 14:00:16 +0000
Manifest next update: Tue 22 Apr 2025 14:00:16 +0000
Files and hashes: 1: JePrT9N5p_vpcuN2wLJvV6n4f0o.roa (hash: ec+cmY8FX0sUxq4KIX8YI3T2SVi2Yc81u8O7CEJnLdo=)
2: KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl (hash: pMEaRZZYDQQc0hMQAjoRPCD2HYeF5G2O1//q+huLhDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:51:33:c8:db:f2:e9:71:24:d4:c2:bc:71:8d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901d76431c6e873d3c44730571e1e50d602057c
Validity
Not Before: Apr 21 14:00:16 2025 GMT
Not After : Apr 22 14:00:16 2025 GMT
Subject: CN=2aae7b252da418f09b9b14370858f4f9eb0dfb72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:97:9e:55:5a:32:b2:97:89:96:59:4a:1c:f1:
7e:54:70:d0:84:fb:71:ea:57:53:ae:01:a2:33:9c:
3a:f3:5f:61:6f:7a:f6:db:ff:c0:5f:8e:8f:fb:f7:
e2:cc:f4:88:36:29:a9:09:ac:e0:93:81:1d:9b:50:
97:7f:20:04:25:82:47:fc:10:cc:8d:47:c6:7f:9f:
60:46:e9:be:25:25:41:f1:90:18:17:0a:bc:55:ce:
87:14:ec:c7:b1:7c:32:94:79:1b:8b:a8:10:40:bb:
3e:14:bb:14:fc:6b:0a:2b:eb:33:e1:bf:ae:b6:c8:
7a:c7:52:09:6e:36:17:32:58:01:bf:cb:c8:1f:05:
17:eb:7e:2e:1a:a2:d5:3e:39:ac:ef:67:92:04:a2:
e4:a1:57:61:3d:ac:27:44:5f:0a:41:f6:19:8a:da:
24:f6:28:8b:7b:2a:07:43:11:e1:a9:bc:7e:30:b3:
4c:95:3f:60:bf:e9:2f:6b:40:4a:19:bf:a7:e1:7a:
7c:00:e4:0a:8e:5f:91:86:5a:bf:50:46:a5:e7:b9:
d8:7f:e1:78:ef:c4:2d:4d:06:bb:94:94:3d:46:c9:
81:2b:54:5f:c8:48:03:38:0e:ac:fe:db:fd:7d:d3:
4f:66:22:e0:75:b2:a0:60:a1:e8:34:bb:64:d1:9e:
66:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:AE:7B:25:2D:A4:18:F0:9B:9B:14:37:08:58:F4:F9:EB:0D:FB:72
X509v3 Authority Key Identifier:
keyid:29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:de:f6:f5:65:e9:fb:57:b4:46:25:33:89:c6:f9:d2:f1:46:
d6:04:ed:dc:05:97:f0:84:82:8d:d0:06:4b:a4:b7:e2:fa:7a:
5b:04:eb:b8:a8:67:4a:db:0d:9a:9e:b1:71:8a:3f:fb:0f:e1:
2f:48:f1:d5:e5:89:cf:0a:1c:26:be:2c:27:51:f9:2a:ff:aa:
02:48:b3:17:5e:37:d7:b3:96:d7:de:1d:a7:c9:9f:4e:32:81:
32:b6:09:c7:9d:4e:59:ae:93:d5:37:8a:1d:b7:90:61:c8:18:
5a:68:40:3d:2b:6a:b8:2a:cf:18:90:04:67:33:10:78:8a:93:
7f:7d:14:69:1c:78:b3:4a:f2:63:66:9e:99:a9:d4:2d:5c:ed:
63:fe:ca:9a:fb:9e:54:ba:88:f2:1f:c6:5f:5e:5b:88:62:e6:
21:b3:83:ea:2a:53:69:43:ea:7d:05:29:52:39:03:fc:cd:cb:
11:c0:48:18:7c:5c:79:31:16:92:c7:ef:8a:30:3c:ef:c4:0d:
4d:54:97:87:b0:3d:b2:05:a1:5f:47:a7:b6:d1:51:e8:9c:d1:
f8:84:04:28:27:57:ed:f6:0f:3f:8c:40:2d:bd:d0:79:60:4e:
ea:45:0f:99:25:14:28:18:01:5d:29:8a:ae:30:6e:ca:63:7f:
7b:61:f9:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:19:53 2025 by rpki-client