Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
File: aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft (raw, json)
Hash identifier: PPvu+R50sS4+sAP0d3ZU3IV2x9W4lolp26tJgT5mvbw=
Subject key identifier: 09:F6:94:A4:A0:E8:2D:FE:5F:07:06:3B:FC:01:B4:BB:5B:A3:DE:E5
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 019A4D3CF33F705EA67219BECBEEDFFBF02E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
Manifest number: 160A
Signing time: Tue 04 Nov 2025 05:00:31 +0000
Manifest this update: Tue 04 Nov 2025 05:00:31 +0000
Manifest next update: Wed 05 Nov 2025 05:00:31 +0000
Files and hashes: 1: aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl (hash: AahovZ/ho8iIM0kgyKg0LH4naaoFNrqhGc/bsRWDAYU=)
2: cMnqdtCxCnyUSWOfUxTVBWPspak.roa (hash: OOJ4v4cc4LujDvo5fdL7b0ZauPjg9CekPa/sj+wo+LE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:f3:3f:70:5e:a6:72:19:be:cb:ee:df:fb:f0:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Nov 4 05:00:31 2025 GMT
Not After : Nov 5 05:00:31 2025 GMT
Subject: CN=09f694a4a0e82dfe5f07063bfc01b4bb5ba3dee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cb:6a:8c:b9:ae:4b:d5:f0:12:44:4e:6a:89:
a1:df:be:43:9a:9f:3c:92:ba:74:20:b8:ab:0e:3d:
6b:cd:f0:03:83:87:02:19:65:b1:f1:b0:2a:64:64:
5b:66:07:9b:1b:7c:2e:66:60:07:fd:c3:54:a9:52:
b2:a6:a3:62:e7:f7:8d:ee:d7:40:cc:08:bb:8e:ab:
c0:cd:83:ab:df:eb:c1:1d:ff:d5:39:09:80:11:92:
54:7a:9a:e8:f2:ef:0a:09:b5:0b:21:af:3b:06:cb:
12:d9:42:78:81:19:cb:59:16:09:d0:71:66:4f:48:
61:2d:a6:8e:f5:c1:0f:e8:0f:27:4b:e9:60:34:55:
5d:01:15:24:b2:b6:9f:d1:66:89:61:e6:e1:20:c7:
d2:36:79:a1:4d:0d:db:a9:c6:b0:ad:90:80:40:23:
fd:e0:f2:a0:b6:50:7c:8b:15:30:ff:58:1b:55:c5:
e8:f6:61:8e:ca:e1:ac:2e:a6:ce:46:f0:c7:9d:b6:
1a:27:84:98:b1:a1:1b:46:88:ae:28:20:9d:c7:09:
07:6d:81:ff:79:d6:f7:96:d1:51:81:ba:62:c4:37:
9c:71:74:0c:01:fc:5d:d3:35:c4:ee:1a:31:ad:21:
ab:56:b7:a3:1b:83:18:27:41:84:f9:56:39:79:f9:
0f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:F6:94:A4:A0:E8:2D:FE:5F:07:06:3B:FC:01:B4:BB:5B:A3:DE:E5
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:14:6d:94:3a:73:05:8d:bf:aa:f2:65:4e:bb:81:5f:6c:2f:
2c:bb:43:a3:44:21:5d:ea:2c:0d:2e:28:e2:05:a7:e2:5a:6a:
69:eb:3d:bb:74:39:7d:57:f0:5a:fc:f4:87:d1:8b:d9:42:ff:
2b:cc:92:60:9e:73:2e:0a:93:b3:f3:b8:26:8a:e5:1e:bb:b2:
c3:10:3b:08:4d:bd:54:21:90:2c:4c:cb:d8:fc:eb:86:ba:f0:
14:ff:0c:2e:c9:8a:33:43:0c:19:af:0a:be:18:5b:c0:18:cd:
8a:fd:86:63:18:76:be:5e:e6:96:45:ed:30:df:1d:16:79:73:
60:3e:5e:85:c9:90:a8:90:9f:97:12:f1:0e:7e:6a:09:b7:ee:
be:a5:e9:a8:41:99:ef:e4:5f:c3:0f:ae:60:67:36:26:1d:71:
8a:75:eb:3b:97:60:79:49:01:de:0d:90:f2:e6:6d:e8:33:f4:
3b:45:13:82:2f:87:c4:81:22:ad:b9:ae:c0:ca:22:77:89:1c:
30:80:f2:99:63:67:4d:f8:7b:68:ff:aa:34:07:0e:f3:a1:1b:
10:0c:70:94:ad:66:93:ee:40:dd:b7:72:bc:cc:f9:20:d5:a3:
7c:17:55:50:1b:26:13:46:6b:72:8d:2e:ee:cf:c6:c9:7b:9e:
41:5a:ae:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNPPM/cF6mchm+y+7f+/AuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZjA2M2VkMmUwYTI2NzRiYzQ3MTAxMDE4OWZjNzdhZGIz
MWMxN2YwHhcNMjUxMTA0MDUwMDMxWhcNMjUxMTA1MDUwMDMxWjAzMTEwLwYDVQQD
EygwOWY2OTRhNGEwZTgyZGZlNWYwNzA2M2JmYzAxYjRiYjViYTNkZWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMtqjLmuS9XwEkROaomh375Dmp88
krp0ILirDj1rzfADg4cCGWWx8bAqZGRbZgebG3wuZmAH/cNUqVKypqNi5/eN7tdA
zAi7jqvAzYOr3+vBHf/VOQmAEZJUepro8u8KCbULIa87BssS2UJ4gRnLWRYJ0HFm
T0hhLaaO9cEP6A8nS+lgNFVdARUksraf0WaJYebhIMfSNnmhTQ3bqcawrZCAQCP9
4PKgtlB8ixUw/1gbVcXo9mGOyuGsLqbORvDHnbYaJ4SYsaEbRoiuKCCdxwkHbYH/
edb3ltFRgbpixDeccXQMAfxd0zXE7hoxrSGrVrejG4MYJ0GE+VY5efkPqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAn2lKSg6C3+XwcGO/wBtLtbo97lMB8GA1UdIwQY
MBaAFGjwY+0uCiZ0vEcQEBifx3rbMcF/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVBCajdTNEtKblM4UnhBUUdKX0hldHN4d1g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy82MWI3M2ItZjI2NS00M2Q0LWI1YjMt
OTQ2ZmRhZmUyZWM2LzEvYVBCajdTNEtKblM4UnhBUUdKX0hldHN4d1g4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy82MWI3M2ItZjI2NS00M2Q0LWI1YjMtOTQ2ZmRhZmUyZWM2
LzEvYVBCajdTNEtKblM4UnhBUUdKX0hldHN4d1g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGhRtlDpz
BY2/qvJlTruBX2wvLLtDo0QhXeosDS4o4gWn4lpqaes9u3Q5fVfwWvz0h9GL2UL/
K8ySYJ5zLgqTs/O4JorlHruywxA7CE29VCGQLEzL2PzrhrrwFP8MLsmKM0MMGa8K
vhhbwBjNiv2GYxh2vl7mlkXtMN8dFnlzYD5ehcmQqJCflxLxDn5qCbfuvqXpqEGZ
7+Rfww+uYGc2Jh1xinXrO5dgeUkB3g2Q8uZt6DP0O0UTgi+HxIEirbmuwMoid4kc
MIDymWNnTfh7aP+qNAcO86EbEAxwlK1mk+5A3bdyvMz5INWjfBdVUBsmE0Zrco0u
7s/GyXueQVquLA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:30:06 2025 by rpki-client