Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json)
Hash identifier: Wvq7Gjh04+1VQ10GjAKujr46Eqqosu9FarbB2mY8i+U=
Subject key identifier: 4A:EB:69:4C:61:76:8C:CD:DD:48:2A:A3:7C:33:F0:18:B9:B5:CA:4F
Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Certificate serial: 019D28845845EF0E65953EBA82C0C8C3560B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
Manifest number: 151C
Signing time: Thu 26 Mar 2026 05:00:55 +0000
Manifest this update: Thu 26 Mar 2026 05:00:55 +0000
Manifest next update: Fri 27 Mar 2026 05:00:55 +0000
Files and hashes: 1: CuVYq_7gkf_DrsINyOzhKZbktPU.roa (hash: /uHacyxGA33AcgKYOrlSIWvD9MdgqSXnE0I0qc9GHm0=)
2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: 2vdU2jFWXHMY+f8L6bigFU9ZgGOqlNygZ5zcRlR1W84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:58:45:ef:0e:65:95:3e:ba:82:c0:c8:c3:56:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Validity
Not Before: Mar 26 05:00:55 2026 GMT
Not After : Mar 27 05:00:55 2026 GMT
Subject: CN=4aeb694c61768ccddd482aa37c33f018b9b5ca4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2d:f0:51:75:58:50:dd:11:cd:13:71:02:37:
14:cf:a6:e8:d2:7e:e2:95:9f:37:5d:73:22:ff:10:
98:9e:70:0f:f0:37:b1:17:99:aa:af:87:90:76:e0:
1f:d6:71:8c:56:f5:b9:7e:21:b8:a5:4b:dc:02:4f:
e2:4d:d5:9e:dd:ae:d6:07:77:c6:fa:64:c3:9d:8c:
28:db:c6:3f:e8:27:4b:a9:af:96:41:40:52:88:76:
69:1d:79:1d:9b:d3:cd:9b:f7:48:55:64:ac:f0:14:
a1:07:d8:3a:b8:d5:aa:74:12:c8:61:3b:d2:2b:a1:
5a:92:cd:b0:85:07:27:cb:61:c0:e7:2d:b6:1b:84:
cd:3f:e7:25:59:4b:76:fc:b9:94:7c:db:6d:ac:1a:
04:94:59:09:b2:de:55:92:56:0d:59:3e:ad:57:ef:
9f:45:c6:2a:37:15:79:01:a2:59:47:66:e6:1b:40:
70:76:3b:d6:56:93:39:36:9b:26:a1:22:16:f7:8d:
71:f0:d1:97:8b:0b:a3:0b:12:58:1f:af:92:89:c6:
46:73:d0:8f:4a:48:de:c0:16:90:48:ff:d5:46:e7:
af:bc:3a:16:a5:bd:82:88:51:d5:b9:a2:cd:b0:4b:
24:a9:22:b3:a8:55:be:9a:9a:18:1c:31:12:7c:8e:
ab:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:EB:69:4C:61:76:8C:CD:DD:48:2A:A3:7C:33:F0:18:B9:B5:CA:4F
X509v3 Authority Key Identifier:
keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:24:f4:6a:1f:c0:47:82:7e:3f:81:bf:64:0f:d5:00:be:53:
da:23:c1:f0:be:ff:5e:c8:51:5a:b9:f3:f3:7f:f7:ea:bb:be:
09:02:89:fb:7e:f9:0c:15:02:cf:27:dc:41:01:bb:30:4e:2d:
9d:6e:0b:b6:4c:9c:15:d9:13:9e:95:88:d0:e3:42:62:fb:38:
34:c0:15:be:da:bc:98:e7:33:1f:ed:96:cf:05:06:b5:7a:c5:
32:78:5d:00:d4:85:66:74:10:7b:eb:b9:4e:19:aa:23:84:ee:
db:f7:95:16:68:ac:ef:8a:d0:b0:ee:83:a6:d2:7d:9c:58:88:
59:a6:c4:cc:11:7b:64:d4:76:a7:51:1a:b9:2d:c3:ed:78:d4:
89:af:5c:3c:bd:7e:8f:06:61:05:03:22:9a:07:30:a0:26:8b:
97:80:e9:03:dc:94:f1:7a:44:48:d5:85:3b:33:29:50:fc:53:
94:49:78:9e:8c:c9:f1:98:d0:df:77:df:cb:3d:c2:5c:f3:c5:
a2:d5:6d:6e:f3:87:d1:47:d2:82:66:55:1a:e5:ef:db:79:bc:
db:81:fe:84:57:c4:a7:0f:fb:0f:f9:98:94:a4:fc:80:91:68:
9a:d7:23:0a:b3:20:96:ed:71:59:58:68:a0:0f:c9:a8:c2:d1:
7d:93:04:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:57:29 2026 by rpki-client