Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json)
Hash identifier: 7JZlskyE8RwNUnKNvrH8s8g/rDlwp6/x7qzlHQ+z4TQ=
Subject key identifier: 7A:0E:8C:D9:02:BE:0F:C4:C4:F1:94:CF:37:89:87:32:A8:54:FE:96
Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Certificate serial: 0199FCFD706A94A6D4F28E36D81A08B3B8F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
Manifest number: 1377
Signing time: Sun 19 Oct 2025 15:01:31 +0000
Manifest this update: Sun 19 Oct 2025 15:01:31 +0000
Manifest next update: Mon 20 Oct 2025 15:01:31 +0000
Files and hashes: 1: NAg_2lUwiNc2BXVWx1ALPDBcGK0.roa (hash: I6Xgg/yTyhGgk1wwRR5vfbPkXPHDlymI7Asksvi+yR4=)
2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: uk3Z6oSyQYnBMsfyPPMvunPJsOcEmOiXmSxiJl2AtEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:70:6a:94:a6:d4:f2:8e:36:d8:1a:08:b3:b8:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Validity
Not Before: Oct 19 15:01:31 2025 GMT
Not After : Oct 20 15:01:31 2025 GMT
Subject: CN=7a0e8cd902be0fc4c4f194cf37898732a854fe96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:20:73:87:44:57:58:df:b6:c4:ad:27:c2:d0:
ce:ef:f1:7d:e3:83:06:71:14:0e:f4:ba:73:2f:74:
c1:8c:2b:78:14:8c:3e:a1:ad:3e:5a:23:5e:98:31:
f0:12:ec:cb:a9:cf:12:77:5c:0c:53:bd:0e:d5:30:
dd:79:c0:a9:c1:cd:4e:0d:b5:d7:46:a0:9f:a8:17:
fa:6c:bb:83:d4:f1:01:ff:49:dc:d6:07:6f:e1:47:
01:e6:2c:81:f3:bb:78:68:52:bf:f1:2a:a2:87:62:
21:a6:bd:0b:30:59:51:b6:33:51:49:e9:b4:d4:ec:
4b:69:0c:92:c3:b1:c3:48:c3:3e:7a:6b:93:08:c1:
27:11:79:a4:3b:ab:6e:02:0d:30:6c:1f:37:a1:9f:
09:bc:83:90:3b:ee:33:a2:c3:58:30:e2:0f:8d:73:
78:a4:f6:54:17:8d:bc:32:30:eb:63:fb:19:76:78:
bf:d1:0d:c0:23:72:69:a5:6c:2f:0e:80:e1:3d:c5:
6f:66:5a:e5:a3:e8:28:2f:d9:a0:99:02:12:22:9f:
0d:4b:b7:84:86:3a:42:a3:aa:10:8f:f8:ea:c3:00:
c8:ee:ee:eb:eb:44:98:3b:49:4f:5a:f6:ab:a1:f7:
1d:39:a9:35:f8:38:43:0a:e9:79:1b:44:b8:16:f6:
a0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0E:8C:D9:02:BE:0F:C4:C4:F1:94:CF:37:89:87:32:A8:54:FE:96
X509v3 Authority Key Identifier:
keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:a6:e5:f2:da:bf:c5:4f:78:38:df:41:09:a5:5e:9b:af:ae:
bf:b2:32:ad:a5:fe:4d:56:42:de:35:e2:07:9a:04:47:d2:1e:
8c:ca:24:aa:e0:09:17:51:c4:13:c9:7b:73:9e:b6:e6:3c:5a:
b5:03:90:bc:d7:7a:f4:1b:07:66:a8:59:7b:0e:bd:8b:1d:df:
14:34:35:f3:a6:a5:7f:10:e0:4a:24:f4:43:97:dc:e1:0c:37:
b4:80:d5:0a:f2:f3:f5:4c:98:dd:72:7f:74:9e:28:02:71:0d:
89:5a:d1:5c:6d:bd:5f:15:36:96:9a:0f:9c:d9:60:a9:70:ab:
2e:41:ba:2e:9c:ab:68:d7:92:3b:01:55:e9:22:ad:b4:e1:bb:
70:a4:34:a1:49:e5:b9:36:cc:85:6e:2a:de:4a:ca:ef:5c:21:
51:3a:47:00:95:f6:53:14:0d:b6:4a:54:9f:26:5d:e8:e8:32:
e6:42:d6:2c:5f:d9:b4:ed:ba:8a:aa:eb:36:f0:60:5c:bd:59:
5a:dc:46:77:19:25:e4:f2:94:2a:b9:07:c7:d1:10:db:e2:67:
11:13:39:f3:f7:58:68:6c:28:65:db:10:ee:d6:68:34:7a:c1:
9b:e0:c5:cb:3f:b7:5b:54:a7:b0:cb:21:ac:1d:32:c4:a7:ae:
36:df:0f:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/XBqlKbU8o422BoIs7j0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4Y2ZlMWFhY2IyNzhjMTMyMzFiMzEwZTQ1ZWU1NzY5MzJm
ZTliNGUwHhcNMjUxMDE5MTUwMTMxWhcNMjUxMDIwMTUwMTMxWjAzMTEwLwYDVQQD
Eyg3YTBlOGNkOTAyYmUwZmM0YzRmMTk0Y2YzNzg5ODczMmE4NTRmZTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkCBzh0RXWN+2xK0nwtDO7/F944MG
cRQO9LpzL3TBjCt4FIw+oa0+WiNemDHwEuzLqc8Sd1wMU70O1TDdecCpwc1ODbXX
RqCfqBf6bLuD1PEB/0nc1gdv4UcB5iyB87t4aFK/8Sqih2Ihpr0LMFlRtjNRSem0
1OxLaQySw7HDSMM+emuTCMEnEXmkO6tuAg0wbB83oZ8JvIOQO+4zosNYMOIPjXN4
pPZUF428MjDrY/sZdni/0Q3AI3JppWwvDoDhPcVvZlrlo+goL9mgmQISIp8NS7eE
hjpCo6oQj/jqwwDI7u7r60SYO0lPWvarofcdOak1+DhDCul5G0S4FvaghwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHoOjNkCvg/ExPGUzzeJhzKoVP6WMB8GA1UdIwQY
MBaAFGjP4arLJ4wTIxsxDkXuV2ky/ptOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iZTllODgtNTEyZi00YjA2LWIxOTYt
ODljMmY2NjZlOTA1LzEvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iZTllODgtNTEyZi00YjA2LWIxOTYtODljMmY2NjZlOTA1
LzEvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf6bl8tq/
xU94ON9BCaVem6+uv7IyraX+TVZC3jXiB5oER9IejMokquAJF1HEE8l7c5625jxa
tQOQvNd69BsHZqhZew69ix3fFDQ186alfxDgSiT0Q5fc4Qw3tIDVCvLz9UyY3XJ/
dJ4oAnENiVrRXG29XxU2lpoPnNlgqXCrLkG6LpyraNeSOwFV6SKttOG7cKQ0oUnl
uTbMhW4q3krK71whUTpHAJX2UxQNtkpUnyZd6Ogy5kLWLF/ZtO26iqrrNvBgXL1Z
WtxGdxkl5PKUKrkHx9EQ2+JnERM58/dYaGwoZdsQ7tZoNHrBm+DFyz+3W1SnsMsh
rB0yxKeuNt8PjQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:22 2025 by rpki-client