Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
File: aHmbdytVHbeE7rqLDhFaDEM807o.mft (raw, json)
Hash identifier: JhGwWNbF3OcD+9nce/YngXdZlSUVeaC4fc/QrhPIddY=
Subject key identifier: B7:6C:28:89:C7:8F:75:15:76:93:73:12:6F:C1:FC:AD:CB:F4:18:CD
Authority key identifier: 68:79:9B:77:2B:55:1D:B7:84:EE:BA:8B:0E:11:5A:0C:43:3C:D3:BA
Certificate issuer: /CN=68799b772b551db784eeba8b0e115a0c433cd3ba
Certificate serial: 019A4F61D6AE41EE74B859074F3D9067D1C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
Manifest number: 170F
Signing time: Tue 04 Nov 2025 15:00:03 +0000
Manifest this update: Tue 04 Nov 2025 15:00:03 +0000
Manifest next update: Wed 05 Nov 2025 15:00:03 +0000
Files and hashes: 1: QIpPOWuJUQR17x2KgabcF3hdBpY.roa (hash: DGCugI0Fd9+HXtUvL1bfCetCLc7iYLKfDAKTqy9sWJY=)
2: aHmbdytVHbeE7rqLDhFaDEM807o.crl (hash: J9ddFKZcoaww2RHKYLsb5GPXyCHjjXrN8bQG1+3wEnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:61:d6:ae:41:ee:74:b8:59:07:4f:3d:90:67:d1:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68799b772b551db784eeba8b0e115a0c433cd3ba
Validity
Not Before: Nov 4 15:00:03 2025 GMT
Not After : Nov 5 15:00:03 2025 GMT
Subject: CN=b76c2889c78f7515769373126fc1fcadcbf418cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9d:bb:1c:8f:bc:ea:df:b0:8b:94:44:31:b4:
a8:07:84:10:08:f8:05:2d:5e:ea:ca:07:ba:df:fa:
2f:d0:f2:0c:7a:c6:4a:36:8c:25:e7:52:c4:0d:1e:
3f:b3:cc:da:05:04:99:4d:f1:4d:0e:3a:f6:40:40:
a2:da:1a:e0:a5:17:d6:ab:f9:35:51:76:c8:59:81:
cc:33:ee:54:e2:78:e6:08:96:9e:93:0f:a1:41:2f:
a3:e8:66:66:53:b2:1a:68:d6:74:c6:38:c0:6d:40:
28:9e:6f:7d:d4:c0:52:c5:61:9d:27:69:12:73:52:
a8:f3:31:b2:a5:b0:0f:92:25:3e:6c:7c:22:c1:3b:
4a:65:0f:52:62:ae:33:89:cc:0f:7b:e1:d8:28:f1:
ff:0a:cb:ba:d7:4c:63:b8:8f:25:99:86:e3:6f:a3:
d9:ea:25:c0:ed:d6:58:88:5c:68:06:b8:ca:f3:83:
36:fa:99:c5:cd:62:0d:77:c6:84:e5:40:94:24:bc:
cf:e3:32:ee:38:0a:77:d8:91:e8:78:ae:23:8f:90:
b8:60:40:f2:6f:8a:19:77:9a:7b:44:02:aa:87:60:
bf:e7:41:a9:83:f2:34:2b:6b:e0:54:fc:f1:08:c9:
6f:8a:11:73:40:70:98:87:a8:08:dc:38:ce:58:f2:
23:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:6C:28:89:C7:8F:75:15:76:93:73:12:6F:C1:FC:AD:CB:F4:18:CD
X509v3 Authority Key Identifier:
keyid:68:79:9B:77:2B:55:1D:B7:84:EE:BA:8B:0E:11:5A:0C:43:3C:D3:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:f1:bb:4a:84:69:33:f7:09:a7:40:a9:89:df:47:ec:de:32:
c5:76:84:35:7c:91:9c:a1:15:6c:09:4c:31:8d:d3:26:95:4e:
76:c6:9a:86:6d:4d:2b:ed:72:2e:54:49:b6:fc:5d:86:65:d8:
46:81:73:1f:a9:ee:b6:f0:c1:6b:3d:3a:9b:31:24:0a:38:af:
cc:7c:b7:52:36:62:5d:0c:28:0d:ab:8b:9b:09:ac:98:5d:7c:
ac:0a:85:65:cf:92:9e:42:bc:01:a9:07:0c:da:77:4a:77:4f:
ff:e5:83:9c:c5:d7:5d:18:ab:f4:54:bc:ff:ac:d5:f4:e8:b6:
9e:a0:13:c1:d3:b8:d3:42:fb:98:08:b5:6a:81:5e:d0:a5:29:
87:fa:bc:ad:d2:7b:4a:71:69:86:b8:28:4c:ba:91:41:9f:f2:
96:c6:7d:8f:b5:d1:a3:23:0d:3a:48:fb:ce:dc:e1:35:fc:b4:
eb:02:f9:85:d0:a4:10:cd:82:b4:1e:66:bb:7a:4c:35:37:93:
a2:44:29:eb:02:4c:2f:22:4f:55:18:72:54:1d:b2:77:2d:6b:
05:40:7e:e3:e2:8b:35:55:05:02:ad:ce:39:24:38:5b:f7:15:
43:86:a6:d1:3c:25:b4:1d:9a:35:38:30:ea:42:f7:25:2e:6e:
1c:23:d3:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYdauQe50uFkHTz2QZ9HIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4Nzk5Yjc3MmI1NTFkYjc4NGVlYmE4YjBlMTE1YTBjNDMz
Y2QzYmEwHhcNMjUxMTA0MTUwMDAzWhcNMjUxMTA1MTUwMDAzWjAzMTEwLwYDVQQD
EyhiNzZjMjg4OWM3OGY3NTE1NzY5MzczMTI2ZmMxZmNhZGNiZjQxOGNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZ27HI+86t+wi5REMbSoB4QQCPgF
LV7qyge63/ov0PIMesZKNowl51LEDR4/s8zaBQSZTfFNDjr2QECi2hrgpRfWq/k1
UXbIWYHMM+5U4njmCJaekw+hQS+j6GZmU7IaaNZ0xjjAbUAonm991MBSxWGdJ2kS
c1Ko8zGypbAPkiU+bHwiwTtKZQ9SYq4zicwPe+HYKPH/Csu610xjuI8lmYbjb6PZ
6iXA7dZYiFxoBrjK84M2+pnFzWINd8aE5UCUJLzP4zLuOAp32JHoeK4jj5C4YEDy
b4oZd5p7RAKqh2C/50Gpg/I0K2vgVPzxCMlvihFzQHCYh6gI3DjOWPIjUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLdsKInHj3UVdpNzEm/B/K3L9BjNMB8GA1UdIwQY
MBaAFGh5m3crVR23hO66iw4RWgxDPNO6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUhtYmR5dFZIYmVFN3JxTERoRmFERU04MDdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi85NjJmMmQtNzI4Mi00MjFlLWE2MzEt
MGM3NmEzMTZiNTJlLzEvYUhtYmR5dFZIYmVFN3JxTERoRmFERU04MDdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi85NjJmMmQtNzI4Mi00MjFlLWE2MzEtMGM3NmEzMTZiNTJl
LzEvYUhtYmR5dFZIYmVFN3JxTERoRmFERU04MDdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGvG7SoRp
M/cJp0Cpid9H7N4yxXaENXyRnKEVbAlMMY3TJpVOdsaahm1NK+1yLlRJtvxdhmXY
RoFzH6nutvDBaz06mzEkCjivzHy3UjZiXQwoDauLmwmsmF18rAqFZc+SnkK8AakH
DNp3SndP/+WDnMXXXRir9FS8/6zV9Oi2nqATwdO400L7mAi1aoFe0KUph/q8rdJ7
SnFphrgoTLqRQZ/ylsZ9j7XRoyMNOkj7ztzhNfy06wL5hdCkEM2CtB5mu3pMNTeT
okQp6wJMLyJPVRhyVB2ydy1rBUB+4+KLNVUFAq3OOSQ4W/cVQ4am0TwltB2aNTgw
6kL3JS5uHCPTww==
-----END CERTIFICATE-----
Generated at Wed Nov 5 00:47:59 2025 by rpki-client