Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json)
Hash identifier: qTjRcvO71ldmiCpw6Sg+CUgcdFn95lQMHvmh7FpqImE=
Subject key identifier: AA:1E:65:6B:F4:88:60:C2:BF:1B:08:A3:DC:80:F4:7F:10:9A:36:3C
Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Certificate serial: 019922C3ACC6C5059678829246895AE79DFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
Manifest number: 1306
Signing time: Sun 07 Sep 2025 06:01:12 +0000
Manifest this update: Sun 07 Sep 2025 06:01:12 +0000
Manifest next update: Mon 08 Sep 2025 06:01:12 +0000
Files and hashes: 1: NAg_2lUwiNc2BXVWx1ALPDBcGK0.roa (hash: I6Xgg/yTyhGgk1wwRR5vfbPkXPHDlymI7Asksvi+yR4=)
2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: cJMRTlixaLEU5TRhGlHen52+pkah1UQe6Fes1BVls6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:ac:c6:c5:05:96:78:82:92:46:89:5a:e7:9d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Validity
Not Before: Sep 7 06:01:12 2025 GMT
Not After : Sep 8 06:01:12 2025 GMT
Subject: CN=aa1e656bf48860c2bf1b08a3dc80f47f109a363c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d8:d1:ec:e2:d8:67:ac:79:52:a5:87:b1:ac:
01:36:36:a2:c8:ec:47:8f:07:ca:90:62:0d:a8:72:
1f:44:7c:ff:a9:76:e6:fa:03:c7:1e:00:9d:47:7b:
12:79:2c:97:df:ad:d3:05:09:18:ec:64:64:4b:e5:
e0:14:10:ac:cd:33:71:86:f2:35:46:8f:45:c7:7b:
95:f3:10:ed:05:9a:af:44:01:4c:95:db:fa:98:5a:
8c:ff:59:fd:11:64:0a:0f:1c:93:49:35:c4:de:62:
19:68:dc:25:b8:80:97:be:96:3f:09:5a:9a:f4:83:
18:83:35:7b:a3:ec:d7:67:34:df:b1:53:81:e2:3f:
4e:d1:24:4e:26:2c:db:8f:2f:a7:57:92:4a:79:d9:
3a:c3:42:bc:c0:ec:67:79:33:8a:cf:28:e3:7a:4a:
80:89:7c:a5:5f:c3:9e:f0:18:6b:c6:50:ad:d9:45:
0e:de:76:30:ca:ca:58:25:e1:80:8d:ec:05:b3:1b:
32:af:ed:08:35:e9:44:e4:0c:de:9c:ab:c8:60:02:
6d:f3:78:fe:94:87:e2:c7:86:14:e9:4f:d3:25:2a:
63:84:d7:a7:46:2c:42:40:bf:9c:f6:a9:ed:bd:c5:
f9:61:ce:c0:89:b8:02:d8:ef:1e:55:9e:ac:bc:76:
26:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:1E:65:6B:F4:88:60:C2:BF:1B:08:A3:DC:80:F4:7F:10:9A:36:3C
X509v3 Authority Key Identifier:
keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:0d:82:ac:e8:53:5f:c6:1e:10:ce:d5:e1:72:23:28:32:37:
3d:0f:e5:4b:79:4c:8b:f1:c9:e3:7b:79:1d:1e:54:da:2d:21:
6d:0f:41:fb:ef:ca:3a:fa:c2:0d:f0:d9:65:5a:6a:df:04:43:
8c:58:74:25:96:cb:b4:ff:f8:36:7b:df:a7:43:a4:9b:39:0c:
92:7e:f0:5e:95:ad:c8:d9:ad:cb:8d:a2:75:96:e0:1e:fc:df:
7f:62:ec:f4:a9:1d:92:e7:d4:9a:04:11:7a:00:ba:a1:62:65:
38:8f:2d:3d:38:be:d9:6d:19:c9:e8:7a:fb:04:6c:2d:82:47:
29:42:c2:34:ce:2e:7f:ad:c6:a1:c2:9a:50:02:9e:72:a6:0f:
7a:d6:3d:2b:49:9b:d6:51:ab:e6:36:c5:92:6e:2e:0d:12:fd:
ba:0b:97:b0:2c:33:58:e5:3c:aa:85:c7:5a:03:c4:ad:cd:34:
dc:65:5c:5c:e2:0d:12:59:4f:93:4c:93:45:67:be:06:1c:51:
63:69:e5:de:bc:50:c7:86:e5:85:89:35:53:b4:34:65:82:96:
6e:d6:30:d0:dd:58:28:17:0d:ca:02:4b:18:f5:36:0c:30:54:
7e:33:15:17:9f:be:a1:ff:00:c7:c8:9f:9c:f3:ed:db:d4:c4:
ae:69:23:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:22:52 2025 by rpki-client