Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: ApIQZbxGdw2+RAZmIIJ1/mMB/7eO2O9O+1UKEvCfubc=
Subject key identifier: 88:80:7A:B0:E4:4C:BD:6E:F4:0C:0C:2C:7B:CB:12:19:7F:60:B7:DC
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 0199FBEB9BB15146A593E4107FB4ECDA024F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 0941
Signing time: Sun 19 Oct 2025 10:02:25 +0000
Manifest this update: Sun 19 Oct 2025 10:02:25 +0000
Manifest next update: Mon 20 Oct 2025 10:02:25 +0000
Files and hashes: 1: DY21Bg3oUbtzm77wQkCwRHIkQQk.roa (hash: qZIMcnP47zIIcLpWesPleUJ2XdB9zCYyYyzYWyBj/nk=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: zqACfXqnbzE7Gsk+tBMC567VcHuM41yQhnmXHs6StEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:9b:b1:51:46:a5:93:e4:10:7f:b4:ec:da:02:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: Oct 19 10:02:25 2025 GMT
Not After : Oct 20 10:02:25 2025 GMT
Subject: CN=88807ab0e44cbd6ef40c0c2c7bcb12197f60b7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3e:18:5c:99:99:10:41:aa:a4:c8:0b:3b:8d:
98:ed:c2:d7:0d:a1:15:35:1e:f0:bd:b0:a7:b9:cd:
cf:7c:8a:23:77:2e:87:bb:b2:af:31:bd:45:fe:56:
a4:6e:c5:46:9b:80:20:91:23:81:e0:fd:2d:cc:3b:
bd:83:c0:c6:2a:a4:40:58:ef:6a:4e:e0:89:6e:d0:
5c:4b:b2:40:df:3b:61:07:2e:69:e4:02:a7:36:84:
22:64:0b:76:48:c6:79:f1:bc:62:26:cb:36:f7:b7:
42:58:e2:85:56:1b:4c:54:f4:cf:8e:53:39:d8:c2:
e6:54:51:41:c9:4c:71:af:d7:f2:d0:cf:5e:43:89:
0f:91:a1:c4:c0:a9:6a:ee:ff:90:11:62:25:79:d6:
59:32:79:a8:2b:2b:17:34:1b:61:71:e4:38:a6:fc:
ed:47:c9:9f:d6:9f:18:5d:cf:c7:45:9f:23:0e:c3:
3e:f5:81:6a:88:af:6d:28:a6:51:11:ef:67:a0:7e:
15:cd:de:81:b8:ce:d5:71:f4:d6:c0:72:75:ad:21:
f0:85:91:5d:09:10:d1:e5:10:da:18:5f:34:28:cb:
16:75:aa:9b:5b:06:28:f2:b2:ad:92:29:f6:ad:c2:
00:79:37:b0:53:5b:f4:66:e3:a3:7c:b5:49:48:d1:
fe:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:80:7A:B0:E4:4C:BD:6E:F4:0C:0C:2C:7B:CB:12:19:7F:60:B7:DC
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:89:bc:63:a7:f1:65:e2:16:fb:05:78:6b:f8:2d:6b:00:98:
e1:e0:69:b5:d4:48:2e:d4:c5:c0:f2:72:f0:a2:2a:88:7a:a1:
00:da:aa:ba:2a:31:79:5f:08:7a:f5:ea:0b:78:4f:69:31:fb:
5c:2c:d0:ac:c6:5e:f7:02:78:27:1a:c1:86:12:d2:42:61:30:
14:7e:cf:1a:20:10:dd:a9:31:82:c9:a8:10:aa:21:d0:36:53:
41:9b:fd:02:b4:86:be:b8:ce:13:11:73:fd:fd:eb:5e:23:dd:
65:59:97:f8:75:5d:f6:95:99:9f:f9:4d:58:08:0a:a4:4e:c1:
ee:8e:7e:6c:8c:e0:2d:e0:14:b6:f8:23:5e:ce:f4:68:fb:d0:
51:10:e7:04:c1:9a:9b:8a:0c:18:de:cf:ec:c6:c6:a9:dd:53:
b2:ed:72:dc:91:bb:20:fd:8b:4d:2d:5d:2e:8b:41:45:a6:46:
89:91:bb:cb:02:9b:b1:02:ee:06:ee:8c:9b:30:96:8e:a7:65:
fb:be:a5:42:09:68:01:e2:9a:9c:8f:61:da:1f:7a:fd:9a:09:
ff:13:8f:f9:66:1d:7f:f8:a5:08:07:98:ac:63:c5:71:65:f2:
29:87:cf:1e:e2:3f:de:ca:3d:0c:5c:79:d7:17:29:46:ab:7d:
8d:d7:57:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn765uxUUalk+QQf7Ts2gJPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MGEyNjMyNDk4NDdjZjk3MzQ0NzQyMjEzNjQ0ZjkyOWJl
YWE5OTcwHhcNMjUxMDE5MTAwMjI1WhcNMjUxMDIwMTAwMjI1WjAzMTEwLwYDVQQD
Eyg4ODgwN2FiMGU0NGNiZDZlZjQwYzBjMmM3YmNiMTIxOTdmNjBiN2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsz4YXJmZEEGqpMgLO42Y7cLXDaEV
NR7wvbCnuc3PfIojdy6Hu7KvMb1F/lakbsVGm4AgkSOB4P0tzDu9g8DGKqRAWO9q
TuCJbtBcS7JA3zthBy5p5AKnNoQiZAt2SMZ58bxiJss297dCWOKFVhtMVPTPjlM5
2MLmVFFByUxxr9fy0M9eQ4kPkaHEwKlq7v+QEWIledZZMnmoKysXNBthceQ4pvzt
R8mf1p8YXc/HRZ8jDsM+9YFqiK9tKKZREe9noH4Vzd6BuM7VcfTWwHJ1rSHwhZFd
CRDR5RDaGF80KMsWdaqbWwYo8rKtkin2rcIAeTewU1v0ZuOjfLVJSNH+ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIiAerDkTL1u9AwMLHvLEhl/YLfcMB8GA1UdIwQY
MBaAFGkKJjJJhHz5c0R0IhNkT5Kb6qmXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hNzZhODYtNzViMy00Y2VmLWEzNDAt
MzFiMmE2MDdiYTk3LzEvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9hNzZhODYtNzViMy00Y2VmLWEzNDAtMzFiMmE2MDdiYTk3
LzEvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ4m8Y6fx
ZeIW+wV4a/gtawCY4eBptdRILtTFwPJy8KIqiHqhANqquioxeV8IevXqC3hPaTH7
XCzQrMZe9wJ4JxrBhhLSQmEwFH7PGiAQ3akxgsmoEKoh0DZTQZv9ArSGvrjOExFz
/f3rXiPdZVmX+HVd9pWZn/lNWAgKpE7B7o5+bIzgLeAUtvgjXs70aPvQURDnBMGa
m4oMGN7P7MbGqd1Tsu1y3JG7IP2LTS1dLotBRaZGiZG7ywKbsQLuBu6MmzCWjqdl
+76lQgloAeKanI9h2h96/ZoJ/xOP+WYdf/ilCAeYrGPFcWXyKYfPHuI/3so9DFx5
1xcpRqt9jddX2A==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:29:43 2025 by rpki-client