Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: Wloivc7aivV4N91fCkMgG8JmMK49VnQpD8LnTZxRBfo=
Subject key identifier: 55:42:2B:FF:01:2C:02:BC:56:E4:DF:20:44:DE:60:F1:CC:22:CE:98
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 01987D8B220C2849F7D5358F6C6777839E26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 087B
Signing time: Wed 06 Aug 2025 04:02:06 +0000
Manifest this update: Wed 06 Aug 2025 04:02:06 +0000
Manifest next update: Thu 07 Aug 2025 04:02:06 +0000
Files and hashes: 1: DY21Bg3oUbtzm77wQkCwRHIkQQk.roa (hash: qZIMcnP47zIIcLpWesPleUJ2XdB9zCYyYyzYWyBj/nk=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: bGzKuOcD6mgLHwkF+GZdv3LgIpGghJr4zzVYtG/61lI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:22:0c:28:49:f7:d5:35:8f:6c:67:77:83:9e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: Aug 6 04:02:06 2025 GMT
Not After : Aug 7 04:02:06 2025 GMT
Subject: CN=55422bff012c02bc56e4df2044de60f1cc22ce98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ea:4b:b3:15:20:64:4d:04:66:4d:79:a2:2e:
b7:ae:5b:3f:81:1c:2c:b9:84:a0:22:04:80:c8:01:
46:08:6f:9e:b6:7c:40:21:f5:39:3e:06:95:38:7f:
60:4d:7e:9e:ef:d6:b3:a4:5d:58:d6:31:12:24:77:
a8:ec:00:0c:dc:c8:c7:e6:03:3b:dd:11:75:1b:0c:
ec:11:64:a7:10:03:bd:77:5c:07:e5:f2:e4:8a:ea:
ff:47:23:80:d2:fb:a4:06:55:0c:b6:dd:2c:4d:af:
6a:9d:05:db:be:8f:fd:4e:0e:ad:05:cd:4a:dd:dc:
0f:70:be:23:fc:95:68:a3:ed:3d:33:ac:8f:23:30:
63:6a:8d:b0:3e:86:76:c8:0e:58:b6:7a:2e:ad:50:
12:6e:b8:ed:96:e4:f9:4a:a2:66:55:09:8b:04:70:
37:bd:3f:b1:45:96:7f:84:ea:b2:c2:63:e6:ac:63:
f9:c4:50:95:b0:6c:81:13:b6:25:5e:95:8b:08:65:
7c:8a:0f:2f:06:50:16:9a:e0:40:ec:d8:40:fc:78:
67:25:de:24:5d:e1:11:11:95:73:62:c9:71:c6:9b:
05:9d:c6:7f:35:f5:db:da:25:08:67:fb:62:c2:bd:
50:b6:fb:29:2d:1c:8f:37:bf:05:6c:14:d5:b2:91:
70:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:42:2B:FF:01:2C:02:BC:56:E4:DF:20:44:DE:60:F1:CC:22:CE:98
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:31:1e:5a:6e:ea:84:18:51:81:d6:35:93:69:13:1a:4d:ff:
e2:1b:60:fb:5c:f7:4f:aa:bd:4a:39:8d:46:d0:9c:a8:de:58:
e9:55:f9:ee:fd:1e:eb:ff:79:6a:84:25:0e:1f:c5:37:10:42:
60:71:68:3e:6d:a8:0a:e0:69:3f:4e:41:88:75:22:fd:2a:69:
40:5c:14:c8:e9:df:17:80:05:0d:74:d5:31:f2:4c:10:28:c0:
94:d6:44:a0:16:10:ba:bd:63:76:af:9a:09:78:64:30:4f:90:
00:59:65:70:21:ca:23:d6:17:06:c9:03:16:4b:2d:df:15:85:
0f:41:60:44:2f:94:86:2d:3f:22:79:5a:23:d3:1b:1e:64:2a:
56:82:c0:5e:fc:35:14:26:01:aa:89:dc:93:7c:3b:e9:17:d7:
2c:0b:98:c1:86:77:6e:a3:78:19:90:14:04:da:99:e8:52:aa:
99:f2:a0:1c:f3:d5:dd:d8:21:4d:91:15:c4:1d:a7:56:7c:8d:
a0:db:ce:0b:62:4b:4a:6c:54:c7:a1:bf:ca:c9:44:ff:d3:c4:
27:a2:88:b1:c2:cf:aa:62:9a:c0:da:82:6e:93:54:2e:94:c7:
3d:5e:3b:dd:dd:dd:f9:8c:7a:d4:32:0d:14:30:9b:50:a1:46:
bd:09:45:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9iyIMKEn31TWPbGd3g54mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MGEyNjMyNDk4NDdjZjk3MzQ0NzQyMjEzNjQ0ZjkyOWJl
YWE5OTcwHhcNMjUwODA2MDQwMjA2WhcNMjUwODA3MDQwMjA2WjAzMTEwLwYDVQQD
Eyg1NTQyMmJmZjAxMmMwMmJjNTZlNGRmMjA0NGRlNjBmMWNjMjJjZTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0upLsxUgZE0EZk15oi63rls/gRws
uYSgIgSAyAFGCG+etnxAIfU5PgaVOH9gTX6e79azpF1Y1jESJHeo7AAM3MjH5gM7
3RF1GwzsEWSnEAO9d1wH5fLkiur/RyOA0vukBlUMtt0sTa9qnQXbvo/9Tg6tBc1K
3dwPcL4j/JVoo+09M6yPIzBjao2wPoZ2yA5YtnourVASbrjtluT5SqJmVQmLBHA3
vT+xRZZ/hOqywmPmrGP5xFCVsGyBE7YlXpWLCGV8ig8vBlAWmuBA7NhA/HhnJd4k
XeEREZVzYslxxpsFncZ/NfXb2iUIZ/tiwr1QtvspLRyPN78FbBTVspFwKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFVCK/8BLAK8VuTfIETeYPHMIs6YMB8GA1UdIwQY
MBaAFGkKJjJJhHz5c0R0IhNkT5Kb6qmXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hNzZhODYtNzViMy00Y2VmLWEzNDAt
MzFiMmE2MDdiYTk3LzEvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9hNzZhODYtNzViMy00Y2VmLWEzNDAtMzFiMmE2MDdiYTk3
LzEvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIzEeWm7q
hBhRgdY1k2kTGk3/4htg+1z3T6q9SjmNRtCcqN5Y6VX57v0e6/95aoQlDh/FNxBC
YHFoPm2oCuBpP05BiHUi/SppQFwUyOnfF4AFDXTVMfJMECjAlNZEoBYQur1jdq+a
CXhkME+QAFllcCHKI9YXBskDFkst3xWFD0FgRC+Uhi0/InlaI9MbHmQqVoLAXvw1
FCYBqonck3w76RfXLAuYwYZ3bqN4GZAUBNqZ6FKqmfKgHPPV3dghTZEVxB2nVnyN
oNvOC2JLSmxUx6G/yslE/9PEJ6KIscLPqmKawNqCbpNULpTHPV473d3d+Yx61DIN
FDCbUKFGvQlF9w==
-----END CERTIFICATE-----
Generated at Wed Aug 6 10:20:10 2025 by rpki-client