Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json)
Hash identifier: S26DxJP8Nz2Bpc3cjxMT6dJ6J5nBVNVzD2Wg+7k4rOQ=
Subject key identifier: B0:F1:B6:F0:33:55:AB:A4:61:B8:54:06:65:FC:5D:50:5D:A5:FF:6C
Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Certificate serial: 019DA41CD24C9D6D2CF0C1133552CD2C3207
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
Manifest number: 155C
Signing time: Sun 19 Apr 2026 05:00:45 +0000
Manifest this update: Sun 19 Apr 2026 05:00:45 +0000
Manifest next update: Mon 20 Apr 2026 05:00:45 +0000
Files and hashes: 1: CuVYq_7gkf_DrsINyOzhKZbktPU.roa (hash: /uHacyxGA33AcgKYOrlSIWvD9MdgqSXnE0I0qc9GHm0=)
2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: tSP9xNDafEUK8waOYU2IvqCvf7tbElzxCUj2YcnLwf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1c:d2:4c:9d:6d:2c:f0:c1:13:35:52:cd:2c:32:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Validity
Not Before: Apr 19 05:00:45 2026 GMT
Not After : Apr 20 05:00:45 2026 GMT
Subject: CN=b0f1b6f03355aba461b8540665fc5d505da5ff6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7c:ff:fd:c6:36:7f:7c:3c:04:de:51:d6:94:
89:04:38:3d:1b:d9:36:6d:22:cf:84:7e:38:bc:78:
23:29:f9:94:97:39:15:46:a4:23:64:4a:f5:f8:d2:
c7:fd:be:91:47:11:e6:8c:ed:2d:a6:3c:89:51:64:
fb:52:1b:63:40:ed:6d:3f:76:73:fa:ce:20:8a:d6:
08:4a:f7:a2:60:ac:fb:74:cc:a1:ee:41:82:22:f1:
58:81:3f:ba:f8:75:b8:ef:0f:6d:53:f7:d1:93:62:
88:a5:5a:f4:af:69:e1:c9:da:1f:64:a2:7f:55:52:
a5:9b:80:cc:74:72:99:e1:55:82:bf:78:8c:dd:d8:
22:24:d0:0b:21:dd:17:3c:ec:fd:e2:f6:5d:bf:f7:
62:2f:cc:a0:d6:d1:e2:fc:bd:41:c4:e6:94:39:c2:
e8:c9:c8:63:1d:be:1a:64:cb:f7:ee:c0:ef:57:08:
43:12:12:41:14:d2:09:f5:99:5e:4d:02:10:f1:c7:
33:88:43:8b:0b:6e:b9:d1:39:84:6c:0a:01:ed:9c:
14:f3:2d:fa:c0:ba:69:54:5c:c6:66:78:bb:11:fc:
b2:30:3e:23:33:6c:42:8c:39:ae:53:ff:74:29:42:
25:dc:e0:01:ec:7e:b6:77:02:49:ca:18:73:b3:f4:
10:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F1:B6:F0:33:55:AB:A4:61:B8:54:06:65:FC:5D:50:5D:A5:FF:6C
X509v3 Authority Key Identifier:
keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:ae:e7:35:04:d7:1f:29:25:b2:93:25:01:f5:9d:48:ef:6b:
39:ee:6b:5e:a9:a7:00:ce:e5:81:08:11:33:45:68:09:d6:19:
b9:2b:fc:69:14:75:6e:3d:87:96:ed:b1:4d:a5:a1:3d:24:24:
dc:70:55:ae:99:5d:02:63:1c:6b:4d:45:67:49:b5:fa:d7:05:
d9:b2:72:05:ff:c7:50:b6:fd:da:7a:f5:b5:4c:d2:0e:b4:91:
82:0a:44:18:1b:01:8e:d8:0f:d4:46:e4:85:08:ad:59:a8:8e:
a4:d0:60:eb:0d:67:d3:22:eb:92:ee:49:71:ad:16:5f:ae:27:
58:2c:70:16:1b:84:cc:e0:f5:14:c3:cd:0b:22:a4:c9:c2:97:
23:1b:6b:ee:62:73:c2:d1:1f:f6:ea:81:68:aa:c6:18:4d:d7:
1b:16:a7:a2:59:5f:5e:db:22:3c:99:fa:d8:19:a5:b5:d4:d5:
60:75:6c:03:b5:6e:6e:34:09:88:95:c9:3e:30:eb:37:15:25:
36:ba:a7:d3:82:a7:02:8b:7e:c0:bb:91:43:24:5f:47:6a:49:
d0:37:06:d7:8a:5c:70:bb:32:76:c4:18:83:44:d2:35:1b:a4:
41:a6:88:16:99:b7:b6:11:e7:fa:b3:d6:9b:22:df:12:6b:a8:
ae:8c:4f:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2kHNJMnW0s8METNVLNLDIHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4Y2ZlMWFhY2IyNzhjMTMyMzFiMzEwZTQ1ZWU1NzY5MzJm
ZTliNGUwHhcNMjYwNDE5MDUwMDQ1WhcNMjYwNDIwMDUwMDQ1WjAzMTEwLwYDVQQD
EyhiMGYxYjZmMDMzNTVhYmE0NjFiODU0MDY2NWZjNWQ1MDVkYTVmZjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynz//cY2f3w8BN5R1pSJBDg9G9k2
bSLPhH44vHgjKfmUlzkVRqQjZEr1+NLH/b6RRxHmjO0tpjyJUWT7UhtjQO1tP3Zz
+s4gitYISveiYKz7dMyh7kGCIvFYgT+6+HW47w9tU/fRk2KIpVr0r2nhydofZKJ/
VVKlm4DMdHKZ4VWCv3iM3dgiJNALId0XPOz94vZdv/diL8yg1tHi/L1BxOaUOcLo
ychjHb4aZMv37sDvVwhDEhJBFNIJ9ZleTQIQ8ccziEOLC2650TmEbAoB7ZwU8y36
wLppVFzGZni7EfyyMD4jM2xCjDmuU/90KUIl3OAB7H62dwJJyhhzs/QQEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLDxtvAzVaukYbhUBmX8XVBdpf9sMB8GA1UdIwQY
MBaAFGjP4arLJ4wTIxsxDkXuV2ky/ptOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iZTllODgtNTEyZi00YjA2LWIxOTYt
ODljMmY2NjZlOTA1LzEvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iZTllODgtNTEyZi00YjA2LWIxOTYtODljMmY2NjZlOTA1
LzEvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuK7nNQTX
HyklspMlAfWdSO9rOe5rXqmnAM7lgQgRM0VoCdYZuSv8aRR1bj2Hlu2xTaWhPSQk
3HBVrpldAmMca01FZ0m1+tcF2bJyBf/HULb92nr1tUzSDrSRggpEGBsBjtgP1Ebk
hQitWaiOpNBg6w1n0yLrku5Jca0WX64nWCxwFhuEzOD1FMPNCyKkycKXIxtr7mJz
wtEf9uqBaKrGGE3XGxanollfXtsiPJn62BmltdTVYHVsA7VubjQJiJXJPjDrNxUl
Nrqn04KnAot+wLuRQyRfR2pJ0DcG14pccLsydsQYg0TSNRukQaaIFpm3thHn+rPW
myLfEmuoroxPyA==
-----END CERTIFICATE-----
Generated at Sun Apr 19 10:18:52 2026 by rpki-client