Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
File: aHcm04_PKn-7t7_CjWP-NXntIR0.mft (raw, json)
Hash identifier: hZ+yZdjtiLnbnq/aBBtZZgRKzy29ivXsjBvEjmMYjwo=
Subject key identifier: F4:1E:9F:5E:8F:5E:4D:B5:CB:80:AC:66:C0:E0:7F:52:06:30:F9:BE
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial: 019A4D0651898F945BF0A350BE05DDA5E7FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
Manifest number: 123E
Signing time: Tue 04 Nov 2025 04:00:51 +0000
Manifest this update: Tue 04 Nov 2025 04:00:51 +0000
Manifest next update: Wed 05 Nov 2025 04:00:51 +0000
Files and hashes: 1: 4BPgPazxL-0_7TACTrAAB2vKcvM.roa (hash: ByHJvADYtVUpx6K/7n+qZ80ogn6pFEeZiZMcZkXwguI=)
2: DnTRig2ZHULz3p9wZNouYmsC9jo.roa (hash: t4VZBdK9Uss3nXT5qelMDtPowMN8UI5/vISGQexu/1w=)
3: FiGOQGJVQzUX0AI-kIcMSlyL5Jw.roa (hash: iNn6sg9mF+PuqzA3VDumFe63FkMkR+FoX25ZFTkc1KE=)
4: aHcm04_PKn-7t7_CjWP-NXntIR0.crl (hash: CTeqhASkSl3C8zdFnU16mGaMTmIfh49Op64ai94Gc7I=)
5: psb7_FoF9tBnDB6tY5GqWOvVJFk.roa (hash: VNe9Mli14Tvo817wNnFl35Vg2+YLvG6cgRRigjOYMS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:06:51:89:8f:94:5b:f0:a3:50:be:05:dd:a5:e7:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Validity
Not Before: Nov 4 04:00:51 2025 GMT
Not After : Nov 5 04:00:51 2025 GMT
Subject: CN=f41e9f5e8f5e4db5cb80ac66c0e07f520630f9be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c2:93:10:aa:96:84:b5:6a:11:df:d0:35:40:
d1:ae:b1:47:e9:81:ad:ca:f6:3a:3c:af:4e:8a:ff:
33:23:f3:23:95:35:bd:d1:89:3c:9b:b2:7f:38:f9:
b7:06:2e:5e:04:8b:ee:5f:90:f3:e7:7c:65:55:52:
fb:9f:96:af:02:5d:4a:3d:61:0f:f8:2c:92:47:94:
00:85:12:2f:1f:cd:c2:cf:2e:ad:af:77:d4:bb:b6:
4b:56:c2:a5:a6:dc:6f:63:f6:b2:e7:3d:d4:0c:d5:
40:4f:23:43:d5:4b:ab:0b:db:bb:64:96:6e:d9:70:
49:66:a2:ff:91:d0:93:17:f1:9b:07:bc:3d:75:a1:
72:e5:24:30:6a:9a:7c:de:45:b5:90:8a:67:d3:d2:
29:08:07:ae:e6:55:83:c7:ca:18:b5:d7:58:b6:6c:
5e:73:ed:a4:24:06:e2:85:19:19:fe:a0:d6:a4:08:
d0:d7:ec:02:45:bd:f3:b9:15:77:ab:e5:7f:57:c2:
73:f7:e6:bf:d9:bd:43:e2:86:d1:40:be:4d:72:de:
25:7e:46:36:a7:3d:4d:51:5d:02:a8:53:23:40:1b:
ff:89:b6:99:5f:ab:53:53:eb:a2:df:8a:84:d4:94:
b6:47:0f:97:af:7b:f2:ba:8e:a7:5c:fd:39:36:81:
e0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1E:9F:5E:8F:5E:4D:B5:CB:80:AC:66:C0:E0:7F:52:06:30:F9:BE
X509v3 Authority Key Identifier:
keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:9e:d0:e6:03:83:30:55:e5:2c:bc:8e:a7:00:a2:e8:f3:f8:
45:e4:2c:27:54:d9:56:6f:e2:0e:bc:3d:f9:64:8f:06:6a:26:
46:14:09:60:4a:86:c3:9f:ec:ed:14:49:81:15:37:2a:1d:25:
24:db:47:80:4b:e7:a6:94:12:58:68:41:10:98:cc:ca:37:bf:
2e:e5:27:35:1b:fd:87:62:70:15:e9:56:cc:f4:f5:43:9a:8f:
03:0b:68:47:65:50:e0:56:fe:3f:01:be:89:de:13:81:c1:93:
84:e3:84:77:75:67:0c:55:b3:48:63:04:f8:e5:5d:41:98:72:
14:b1:bb:69:9a:57:74:ed:a4:8b:ff:8c:7d:2f:d6:87:f3:2c:
47:98:98:c4:8a:7e:b4:20:01:02:d9:6a:f0:f1:5e:a4:6b:d3:
af:7d:ba:58:f1:a4:21:0d:95:10:20:d4:ce:a2:ab:c2:5b:e7:
b1:a3:93:6b:37:29:2c:a7:36:18:9c:94:af:a0:b5:7e:90:fa:
12:50:87:49:de:8d:30:a2:b5:58:3d:cf:97:2d:fb:7a:e9:60:
62:34:ba:14:d7:ea:8d:4b:0e:19:01:f8:a3:3c:7b:1f:9b:b7:
d4:44:c4:7f:0a:cd:46:7d:96:18:76:db:79:02:dc:af:ee:34:
f3:c3:49:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNBlGJj5Rb8KNQvgXdpef/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4NzcyNmQzOGZjZjJhN2ZiYmI3YmZjMjhkNjNmZTM1Nzll
ZDIxMWQwHhcNMjUxMTA0MDQwMDUxWhcNMjUxMTA1MDQwMDUxWjAzMTEwLwYDVQQD
EyhmNDFlOWY1ZThmNWU0ZGI1Y2I4MGFjNjZjMGUwN2Y1MjA2MzBmOWJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1cKTEKqWhLVqEd/QNUDRrrFH6YGt
yvY6PK9Oiv8zI/MjlTW90Yk8m7J/OPm3Bi5eBIvuX5Dz53xlVVL7n5avAl1KPWEP
+CySR5QAhRIvH83Czy6tr3fUu7ZLVsKlptxvY/ay5z3UDNVATyND1UurC9u7ZJZu
2XBJZqL/kdCTF/GbB7w9daFy5SQwapp83kW1kIpn09IpCAeu5lWDx8oYtddYtmxe
c+2kJAbihRkZ/qDWpAjQ1+wCRb3zuRV3q+V/V8Jz9+a/2b1D4obRQL5Nct4lfkY2
pz1NUV0CqFMjQBv/ibaZX6tTU+ui34qE1JS2Rw+Xr3vyuo6nXP05NoHgnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPQen16PXk21y4CsZsDgf1IGMPm+MB8GA1UdIwQY
MBaAFGh3JtOPzyp/u7e/wo1j/jV57SEdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAt
NGIyZGExOTdhN2U2LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAtNGIyZGExOTdhN2U2
LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALZ7Q5gOD
MFXlLLyOpwCi6PP4ReQsJ1TZVm/iDrw9+WSPBmomRhQJYEqGw5/s7RRJgRU3Kh0l
JNtHgEvnppQSWGhBEJjMyje/LuUnNRv9h2JwFelWzPT1Q5qPAwtoR2VQ4Fb+PwG+
id4TgcGThOOEd3VnDFWzSGME+OVdQZhyFLG7aZpXdO2ki/+MfS/Wh/MsR5iYxIp+
tCABAtlq8PFepGvTr326WPGkIQ2VECDUzqKrwlvnsaOTazcpLKc2GJyUr6C1fpD6
ElCHSd6NMKK1WD3Ply37eulgYjS6FNfqjUsOGQH4ozx7H5u31ETEfwrNRn2WGHbb
eQLcr+4088NJuw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:45:07 2025 by rpki-client