Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: Ijq9WD3kr0Yx0+Kk+rbF5cebC+zCS7QSh768N0B3ch0=
Subject key identifier: B4:31:64:81:75:B1:2D:A3:11:3B:AA:2C:05:02:F6:F5:84:9B:CC:0D
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 019A7149BC1BAAF59E8834F5CB798E96CA26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 05:00:48 +0000
Manifest this update: Tue 11 Nov 2025 05:00:48 +0000
Manifest next update: Wed 12 Nov 2025 05:00:48 +0000
Files and hashes: 1: Dk5BhXJ_gIsgQ0utb4gvZ39LMIc.roa (hash: 9IdU4NLUHr5S9QPXNXQfwW6+YPaEhUYFtSNkpxSH/2Q=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: iSd9q5pZBNbJfkvrFMovJMoaTCsczZcZ1PhNlfHlEmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:bc:1b:aa:f5:9e:88:34:f5:cb:79:8e:96:ca:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Nov 11 05:00:48 2025 GMT
Not After : Nov 12 05:00:48 2025 GMT
Subject: CN=b431648175b12da3113baa2c0502f6f5849bcc0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ee:32:c2:5f:32:08:ae:53:e0:5e:b2:38:17:
c8:e2:a9:e7:8b:a9:7d:bf:6a:7e:ca:4b:78:3d:d6:
1d:ed:f1:9b:fa:be:74:a7:f9:1f:33:3c:00:2b:f4:
5d:03:fc:9d:35:3d:0c:50:bd:5b:ad:09:fb:62:a0:
d7:1c:76:86:01:50:8f:08:19:30:07:7f:35:6e:39:
08:64:22:5e:b6:dd:d3:85:00:48:71:8c:a2:35:02:
c1:fa:5a:bb:82:0d:3d:54:72:6e:e0:00:0a:a8:b1:
d9:7f:97:35:59:82:4b:87:86:bb:03:ce:5e:c2:35:
e3:f1:54:65:cf:e2:d0:cc:6d:75:c3:d4:cf:53:88:
43:a4:08:97:c9:b0:05:10:ab:28:11:1d:e5:c8:7b:
ca:ae:94:0e:3d:96:d6:a2:e0:29:cb:bc:3e:5b:bd:
3b:4b:1b:a3:18:c6:2b:5b:ea:cd:8b:78:5b:74:eb:
2e:ef:9b:be:c0:5f:aa:e4:14:cf:cf:ba:ca:a0:f7:
e8:67:e8:54:57:22:40:4c:23:a6:db:38:19:27:4d:
cb:b4:2a:1a:76:13:58:71:8e:3e:e1:25:62:06:23:
0f:f5:5f:88:d4:98:d8:d3:40:21:79:34:0e:e4:f8:
80:7c:be:45:f0:75:05:9f:8b:8f:85:c8:a4:1c:4e:
a9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:31:64:81:75:B1:2D:A3:11:3B:AA:2C:05:02:F6:F5:84:9B:CC:0D
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:58:c4:fd:de:8c:0e:ba:69:93:6b:4c:31:6a:92:33:8e:4f:
85:71:75:1e:de:15:c5:3e:b2:3b:29:7d:69:c2:45:42:bf:24:
c0:bf:99:da:42:4c:bf:07:4f:04:63:09:97:f8:df:a6:be:53:
4d:7a:59:44:f3:6a:78:80:e0:74:e5:87:fd:21:9b:12:e0:ff:
3e:22:07:83:59:39:a2:c0:b5:2c:7e:3e:30:f8:3e:98:9f:3b:
aa:5f:a1:7b:50:1f:21:bf:2c:df:e8:bf:41:ad:7d:be:97:21:
d5:71:55:9e:a7:06:2a:15:76:de:a8:a5:2b:d4:77:f5:4e:5f:
45:a7:22:97:9f:b6:7a:e9:cc:29:9d:d6:3f:0c:9d:61:b5:ed:
75:63:77:96:a1:a9:89:a9:26:41:ce:64:f2:4b:7c:55:71:08:
76:4b:de:25:fb:a1:e6:8a:96:a2:a4:bf:42:54:69:b8:72:1a:
1f:f0:3d:e9:c7:e1:09:15:db:9d:f6:a5:d9:0b:db:02:54:2a:
c2:56:87:0e:f7:3b:2e:f9:7a:0f:c7:f5:05:8a:3c:6a:72:a2:
8c:33:27:f7:e7:ad:b5:b0:03:fb:e6:fa:5e:0d:d1:af:93:6b:
8f:f5:ad:6d:b7:92:6c:15:34:8a:25:bb:b3:1a:2b:8f:39:f7:
36:75:f2:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:41:43 2025 by rpki-client