Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: sZaDuNI+3TTkwsaGpA15SOMTFinU6jhF2RHmrhcDqKY=
Subject key identifier: BE:8E:C4:AE:C2:27:1B:15:F8:B2:DA:82:5D:10:D8:CE:4B:4D:91:68
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 019A54C11D6355402E6E71A5BAA5F7B09C1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 096F
Signing time: Wed 05 Nov 2025 16:02:13 +0000
Manifest this update: Wed 05 Nov 2025 16:02:13 +0000
Manifest next update: Thu 06 Nov 2025 16:02:13 +0000
Files and hashes: 1: DY21Bg3oUbtzm77wQkCwRHIkQQk.roa (hash: qZIMcnP47zIIcLpWesPleUJ2XdB9zCYyYyzYWyBj/nk=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: T49Vf6aArePuaRhUP3hcBlDVdEvufebLbq0JkkUrlyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:c1:1d:63:55:40:2e:6e:71:a5:ba:a5:f7:b0:9c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: Nov 5 16:02:13 2025 GMT
Not After : Nov 6 16:02:13 2025 GMT
Subject: CN=be8ec4aec2271b15f8b2da825d10d8ce4b4d9168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e9:cc:dd:76:4b:2e:4d:25:fe:52:79:4d:17:
6d:7d:16:09:b9:54:7e:b3:84:39:bb:37:64:c1:0e:
b0:ec:fd:93:6b:67:d3:32:8b:93:86:50:3b:6a:e8:
ae:3b:3a:ff:38:93:cb:c1:fc:c9:e3:a9:ad:05:a6:
08:44:df:b5:bd:a1:e8:66:46:38:2e:a1:46:7e:93:
fc:ee:fb:0e:52:f1:74:c2:b2:80:ad:09:6d:cb:a6:
94:a6:37:ae:5a:96:8f:eb:1b:55:f6:8d:45:bd:8b:
5e:d3:93:ac:8c:13:cc:96:53:1c:55:1c:02:c7:9e:
32:ef:b7:1b:cc:e2:ed:58:97:3a:fe:a1:9b:f0:14:
81:c9:52:0c:b2:0f:62:9f:a1:bb:9b:58:9b:dc:09:
5b:34:91:cf:ec:79:b5:95:ee:ad:5a:8a:5e:d0:60:
f5:b1:b7:a2:77:42:38:44:7c:0f:64:d0:62:b3:93:
33:b8:a3:bf:1b:54:65:1a:38:0d:db:f9:86:cb:78:
4f:2c:53:b6:d7:14:e1:41:1d:fc:fc:a0:7f:b9:b4:
bb:ca:95:74:60:7e:46:3d:09:b9:05:f6:c0:60:7f:
44:2b:80:87:b0:fd:71:d6:6f:df:7c:d0:86:c1:2d:
f2:de:b5:51:e5:8d:ef:1f:34:f8:17:f2:f4:d8:b5:
4f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8E:C4:AE:C2:27:1B:15:F8:B2:DA:82:5D:10:D8:CE:4B:4D:91:68
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:92:49:81:47:ca:a7:3c:3f:b0:68:26:d3:e2:3b:f3:77:0b:
2c:f1:64:bb:6c:8f:1d:30:7e:dd:c2:16:94:e6:b3:e3:0f:64:
cc:8d:4b:44:e1:8f:91:f4:d6:6d:04:f8:ad:a6:75:67:bf:ef:
b3:a3:4a:03:66:46:21:2f:7e:63:36:c6:88:aa:ac:34:cd:a3:
fe:58:40:55:da:7f:35:61:79:c4:8e:76:05:61:f7:b1:61:6a:
ed:68:29:91:9b:b3:3c:d1:ae:03:78:7d:67:c8:23:a1:d7:8a:
20:9e:1f:e6:00:89:d4:7e:bc:29:3e:3b:89:00:8b:95:32:3a:
94:74:a4:dd:49:16:f9:6d:4c:2e:79:35:cb:7f:02:51:c0:34:
95:91:d0:a2:0a:ab:40:c7:0c:b7:53:b4:87:3f:79:20:12:82:
75:bf:b9:2d:8f:79:21:0c:a4:f1:75:ab:5a:2a:8f:83:ae:8d:
57:0f:64:e3:41:e8:21:35:e3:91:f0:27:87:cd:88:f5:56:cf:
b5:45:93:fd:03:e8:7c:3f:f5:03:af:c6:f5:74:b2:5d:2b:6a:
b7:4b:35:15:36:58:a1:c0:98:e8:1c:ee:bc:91:71:de:f6:e5:
ae:d7:e6:ca:6c:cc:6b:27:8c:ca:8e:e7:1c:8a:c1:26:37:84:
a9:b7:9a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 20:57:13 2025 by rpki-client