Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
File: APTMQSzDD7L598N8PjkL7F5iVrA.mft (raw, json)
Hash identifier: M0xGtlXPWYzys3S4Heeg1dhULYdjvIu1pR46er/pbYc=
Subject key identifier: 98:60:9A:22:17:BC:4D:D4:C3:C9:DF:E5:99:5D:F6:20:26:F8:27:6F
Authority key identifier: 00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0
Certificate issuer: /CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0
Certificate serial: 0199FC8F473C8C61CAB29B4A6D26395D5A61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
Manifest number: 160F
Signing time: Sun 19 Oct 2025 13:01:12 +0000
Manifest this update: Sun 19 Oct 2025 13:01:12 +0000
Manifest next update: Mon 20 Oct 2025 13:01:12 +0000
Files and hashes: 1: 5BciwgNYwMNFn5eFGl4Ow7HBSis.roa (hash: 3UceDm6E5z2xuYBvrfaNWIIbAo66nrZeoQOIOFL2Trc=)
2: APTMQSzDD7L598N8PjkL7F5iVrA.crl (hash: vFHB4VnAyMFxEmKMQJ6hLF32DeErJVZjcY3D2aJJrOw=)
3: M7SEgufvftwnRCkx-25asjtCovc.roa (hash: U57VYWY1ePii662SbirLo+F12wZ7w8+u4EylfllvMp4=)
4: ebqyf5BiDM6j62bVjaE6r-bdVhw.roa (hash: +MzGy+AsjXhbDBl5ZXZ0wbyW9k0Dlt1wZj2p77zu+Lc=)
5: hoKOermCUGUXPhGJMB3htCGxKbo.roa (hash: C2bDkxfzxHRN/J0tOztxhLbDgje2XNYFfUjponmFTcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:47:3c:8c:61:ca:b2:9b:4a:6d:26:39:5d:5a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0
Validity
Not Before: Oct 19 13:01:12 2025 GMT
Not After : Oct 20 13:01:12 2025 GMT
Subject: CN=98609a2217bc4dd4c3c9dfe5995df62026f8276f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7b:6a:2d:39:65:36:b3:93:fc:22:f2:5f:24:
29:08:78:05:1d:95:db:ef:b7:66:d2:63:d6:85:fd:
78:78:73:bc:94:8c:17:96:f8:ba:62:1b:a7:af:ce:
f1:72:97:57:40:b1:cc:7e:cf:8f:ac:0f:e1:dc:e9:
9d:03:2c:40:44:78:d2:df:3e:05:bb:b6:ff:0d:50:
2d:b9:db:4c:d7:e9:8d:77:76:d3:8d:ee:55:96:d4:
94:c0:d0:0a:a1:98:0d:d8:3a:59:e9:88:f5:aa:2f:
80:7e:1e:2d:f2:60:73:4d:70:f8:62:85:53:f9:cf:
10:97:2d:f0:00:6b:2d:0d:88:d8:a6:71:62:a4:8f:
45:9e:8e:81:45:93:6b:aa:3d:e9:e6:d7:79:f5:61:
e1:59:96:34:28:35:50:ae:36:de:3e:ce:f3:a3:86:
21:b0:48:89:59:77:0b:2b:a8:56:13:6c:17:98:d9:
a0:b3:db:e1:3f:32:9a:0a:f2:48:95:5e:44:9d:72:
c7:8f:80:d2:ff:2a:f4:17:80:f8:fa:ca:b9:ac:a0:
9a:d5:31:08:f1:e7:68:66:9b:e2:cf:5a:b7:6b:99:
7c:f6:a0:28:c9:04:54:12:b7:ae:ec:cc:c5:da:2b:
38:2b:d1:f3:4e:d4:4a:1b:62:fc:ac:53:2b:e0:2e:
aa:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:60:9A:22:17:BC:4D:D4:C3:C9:DF:E5:99:5D:F6:20:26:F8:27:6F
X509v3 Authority Key Identifier:
keyid:00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:a6:a4:32:10:5c:eb:7c:e9:e0:85:1c:b7:5b:ba:29:62:f9:
6c:54:a8:66:5a:c6:99:91:5c:50:58:b0:a2:f1:8a:a5:47:66:
24:0c:5d:ad:e2:39:ea:02:0a:65:72:8b:4c:ca:c9:52:cc:ea:
81:df:32:27:a6:f3:b0:84:6b:fa:41:dc:6f:53:f4:d4:d3:4f:
a3:91:05:3d:a1:f1:b6:e5:f4:d6:45:75:78:f5:ff:45:0a:75:
0f:83:37:69:64:4c:98:43:54:1e:a5:ee:17:a3:b2:0a:e9:8c:
40:1d:a4:27:5b:93:e3:6c:22:cc:08:b9:57:28:9a:a2:e4:37:
81:5d:7f:34:c0:c0:fd:2e:66:fa:d5:64:da:36:0e:b5:bc:3b:
42:42:c9:07:a5:11:e2:6f:22:c5:7d:6b:a7:ca:72:33:c0:f5:
5e:83:a6:b3:8a:d8:45:a5:35:26:00:81:45:f9:d0:a8:ff:97:
86:80:1d:18:e4:af:62:eb:c4:61:b3:db:f7:14:17:5f:67:9c:
51:b8:45:4f:e9:81:68:11:37:41:f5:9b:91:7a:0c:97:87:31:
c5:8a:47:66:5d:26:f7:f6:04:ee:f9:8b:c1:b4:ec:e7:3b:4a:
bb:9a:73:2b:ab:b0:18:83:61:14:cd:be:0f:32:75:89:84:ec:
27:80:da:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j0c8jGHKsptKbSY5XVphMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZjRjYzQxMmNjMzBmYjJmOWY3YzM3YzNlMzkwYmVjNWU2
MjU2YjAwHhcNMjUxMDE5MTMwMTEyWhcNMjUxMDIwMTMwMTEyWjAzMTEwLwYDVQQD
Eyg5ODYwOWEyMjE3YmM0ZGQ0YzNjOWRmZTU5OTVkZjYyMDI2ZjgyNzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHtqLTllNrOT/CLyXyQpCHgFHZXb
77dm0mPWhf14eHO8lIwXlvi6Yhunr87xcpdXQLHMfs+PrA/h3OmdAyxARHjS3z4F
u7b/DVAtudtM1+mNd3bTje5VltSUwNAKoZgN2DpZ6Yj1qi+Afh4t8mBzTXD4YoVT
+c8Qly3wAGstDYjYpnFipI9Fno6BRZNrqj3p5td59WHhWZY0KDVQrjbePs7zo4Yh
sEiJWXcLK6hWE2wXmNmgs9vhPzKaCvJIlV5EnXLHj4DS/yr0F4D4+sq5rKCa1TEI
8edoZpviz1q3a5l89qAoyQRUEreu7MzF2is4K9HzTtRKG2L8rFMr4C6qIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJhgmiIXvE3Uw8nf5Zld9iAm+CdvMB8GA1UdIwQY
MBaAFAD0zEEsww+y+ffDfD45C+xeYlawMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy85Mzc1YTItM2U2Zi00NTc3LTg1ZDEt
NWYxNDVjZmQyMDcwLzEvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy85Mzc1YTItM2U2Zi00NTc3LTg1ZDEtNWYxNDVjZmQyMDcw
LzEvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhqakMhBc
63zp4IUct1u6KWL5bFSoZlrGmZFcUFiwovGKpUdmJAxdreI56gIKZXKLTMrJUszq
gd8yJ6bzsIRr+kHcb1P01NNPo5EFPaHxtuX01kV1ePX/RQp1D4M3aWRMmENUHqXu
F6OyCumMQB2kJ1uT42wizAi5VyiaouQ3gV1/NMDA/S5m+tVk2jYOtbw7QkLJB6UR
4m8ixX1rp8pyM8D1XoOms4rYRaU1JgCBRfnQqP+XhoAdGOSvYuvEYbPb9xQXX2ec
UbhFT+mBaBE3QfWbkXoMl4cxxYpHZl0m9/YE7vmLwbTs5ztKu5pzK6uwGINhFM2+
DzJ1iYTsJ4DakQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:07:41 2025 by rpki-client