Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
File: aHcm04_PKn-7t7_CjWP-NXntIR0.mft (raw, json)
Hash identifier: F7KVXbymJVxGNOdZPT53gHz2gnaqcWwYKefo8oqgorU=
Subject key identifier: BA:99:78:CF:D6:A3:14:F1:53:16:62:7D:15:C9:F1:6B:8A:6F:EC:D1
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial: 019935023673F6D74D8FD42C964F7BF8D661
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
Manifest number: 11AD
Signing time: Wed 10 Sep 2025 19:02:41 +0000
Manifest this update: Wed 10 Sep 2025 19:02:41 +0000
Manifest next update: Thu 11 Sep 2025 19:02:41 +0000
Files and hashes: 1: 4BPgPazxL-0_7TACTrAAB2vKcvM.roa (hash: ByHJvADYtVUpx6K/7n+qZ80ogn6pFEeZiZMcZkXwguI=)
2: DnTRig2ZHULz3p9wZNouYmsC9jo.roa (hash: t4VZBdK9Uss3nXT5qelMDtPowMN8UI5/vISGQexu/1w=)
3: FiGOQGJVQzUX0AI-kIcMSlyL5Jw.roa (hash: iNn6sg9mF+PuqzA3VDumFe63FkMkR+FoX25ZFTkc1KE=)
4: aHcm04_PKn-7t7_CjWP-NXntIR0.crl (hash: YJgfeh1/H9AnTLAQqqje64YT++hT4xfytLezZrprTPE=)
5: psb7_FoF9tBnDB6tY5GqWOvVJFk.roa (hash: VNe9Mli14Tvo817wNnFl35Vg2+YLvG6cgRRigjOYMS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:02:36:73:f6:d7:4d:8f:d4:2c:96:4f:7b:f8:d6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Validity
Not Before: Sep 10 19:02:41 2025 GMT
Not After : Sep 11 19:02:41 2025 GMT
Subject: CN=ba9978cfd6a314f15316627d15c9f16b8a6fecd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1b:4f:1b:5d:36:32:52:b3:c1:73:21:77:af:
15:49:e2:ba:98:73:8f:a9:fb:16:50:69:d8:70:71:
b2:8a:ed:2e:c0:1d:02:7d:04:92:41:02:0e:20:0d:
8b:e9:4d:9e:5c:24:68:65:71:8b:3a:d0:ca:b1:52:
19:d3:5d:b0:78:64:0b:21:72:78:48:d9:15:b5:0b:
fd:2a:9a:ec:04:c1:cc:08:10:b5:50:dc:e9:2d:9f:
5b:16:7a:d0:bb:9f:71:bd:d4:68:c9:0f:b9:45:4d:
43:2a:55:f0:01:b6:54:1f:ff:71:55:0e:9c:46:c0:
90:1a:1a:d4:b4:b9:a5:36:c6:d9:59:bc:46:18:82:
5b:a1:82:87:e1:fe:14:ae:09:89:06:ef:62:9a:12:
8b:dd:45:87:0d:d6:1f:22:3e:07:cc:92:0e:bf:4c:
93:e2:3f:5f:c4:92:a2:ed:bb:c0:b4:2b:8a:a0:d4:
2d:00:bd:73:38:38:d0:e4:ec:43:84:0e:f3:c1:98:
74:97:d0:f3:7c:c7:92:98:48:0e:51:30:54:fd:46:
a1:75:a1:c8:dd:cf:b9:68:be:d2:01:bb:b3:d9:ec:
97:4a:e6:76:02:7f:58:df:62:dd:4b:bc:26:2f:c4:
71:f3:cf:73:f8:7f:e8:a5:a3:62:e2:0e:78:5d:4e:
e9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:99:78:CF:D6:A3:14:F1:53:16:62:7D:15:C9:F1:6B:8A:6F:EC:D1
X509v3 Authority Key Identifier:
keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:93:7d:72:f8:29:be:7b:68:3e:fc:32:02:c9:86:7a:1a:86:
c6:e7:65:aa:02:17:73:a9:93:df:54:a9:57:61:90:29:79:83:
ca:76:d4:2e:07:d5:22:a5:4a:b9:93:64:30:42:bc:0a:41:c4:
a1:af:8c:77:18:1c:4e:fa:57:8c:b5:52:71:3d:6d:5a:e1:54:
00:85:25:ec:b4:74:fa:50:5f:d4:e4:84:d0:ee:be:05:ac:f2:
19:c9:bf:ac:87:74:8c:e7:7e:61:7a:4c:a3:9c:e0:f6:0d:57:
75:49:40:7c:33:5b:c7:e0:97:7b:91:f8:29:fc:99:f8:81:37:
94:91:ff:4c:57:3c:65:ae:c0:91:5d:ca:d5:86:f2:21:40:34:
ed:65:67:ae:87:ea:a3:60:ea:fb:6d:75:9c:b4:72:ba:9c:98:
9f:9a:91:9a:da:9d:c4:1c:1a:d6:04:2a:2e:bd:2b:58:bc:2e:
23:db:1f:f3:f8:be:b3:99:5a:ab:4a:65:0b:74:f0:9a:af:85:
93:da:c3:06:b7:ef:db:b7:69:b7:b3:7c:fa:7a:d8:55:7b:20:
2a:97:8e:b1:43:9e:09:75:b3:7d:39:46:cb:d5:3f:17:31:a8:
c1:2a:04:a2:89:e7:2f:40:fb:bf:ef:88:73:04:4c:f6:59:67:
97:81:1a:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk1AjZz9tdNj9Qslk97+NZhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4NzcyNmQzOGZjZjJhN2ZiYmI3YmZjMjhkNjNmZTM1Nzll
ZDIxMWQwHhcNMjUwOTEwMTkwMjQxWhcNMjUwOTExMTkwMjQxWjAzMTEwLwYDVQQD
EyhiYTk5NzhjZmQ2YTMxNGYxNTMxNjYyN2QxNWM5ZjE2YjhhNmZlY2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xtPG102MlKzwXMhd68VSeK6mHOP
qfsWUGnYcHGyiu0uwB0CfQSSQQIOIA2L6U2eXCRoZXGLOtDKsVIZ012weGQLIXJ4
SNkVtQv9KprsBMHMCBC1UNzpLZ9bFnrQu59xvdRoyQ+5RU1DKlXwAbZUH/9xVQ6c
RsCQGhrUtLmlNsbZWbxGGIJboYKH4f4UrgmJBu9imhKL3UWHDdYfIj4HzJIOv0yT
4j9fxJKi7bvAtCuKoNQtAL1zODjQ5OxDhA7zwZh0l9DzfMeSmEgOUTBU/UahdaHI
3c+5aL7SAbuz2eyXSuZ2An9Y32LdS7wmL8Rx889z+H/opaNi4g54XU7pKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLqZeM/WoxTxUxZifRXJ8WuKb+zRMB8GA1UdIwQY
MBaAFGh3JtOPzyp/u7e/wo1j/jV57SEdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAt
NGIyZGExOTdhN2U2LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAtNGIyZGExOTdhN2U2
LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqpN9cvgp
vntoPvwyAsmGehqGxudlqgIXc6mT31SpV2GQKXmDynbULgfVIqVKuZNkMEK8CkHE
oa+MdxgcTvpXjLVScT1tWuFUAIUl7LR0+lBf1OSE0O6+BazyGcm/rId0jOd+YXpM
o5zg9g1XdUlAfDNbx+CXe5H4KfyZ+IE3lJH/TFc8Za7AkV3K1YbyIUA07WVnrofq
o2Dq+211nLRyupyYn5qRmtqdxBwa1gQqLr0rWLwuI9sf8/i+s5laq0plC3Twmq+F
k9rDBrfv27dpt7N8+nrYVXsgKpeOsUOeCXWzfTlGy9U/FzGowSoEoonnL0D7v++I
cwRM9llnl4EahA==
-----END CERTIFICATE-----
Generated at Thu Sep 11 04:15:21 2025 by rpki-client