
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: dLlgfXkx1+Ao4e9K2L30lsMhPaekP7EQBcXKVfYjwNA=
Subject key identifier: 9E:2C:EC:39:BE:AE:7A:A6:45:90:97:6F:7E:BA:96:25:25:7D:0C:97
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 019F37185ED8D26E7F57BDFABB404AC4B8EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 199C
Signing time: Mon 06 Jul 2026 11:02:51 +0000
Manifest this update: Mon 06 Jul 2026 11:02:51 +0000
Manifest next update: Tue 07 Jul 2026 11:02:51 +0000
Files and hashes: 1: 4O7JXBvPOYztRW27KQbfsJapV8I.roa (hash: CnJtkzBJ3WzY6WSIQ98/SBNuBHldMzltsiyedt5bTUA=)
2: gP48O_sjBy8crhBkXhJMvckOd40.roa (hash: YjRHc0wBKAbt12RWFSPrs766F+2rkzk6tBEBo+GPgkI=)
3: glCPJ2S6o9uZKjCAdlQQmibg5oU.roa (hash: r5yLJSYgpWVCtbKMSEubh57fs1HDMOGe6waujl24LNg=)
4: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: K7Hhwz+LK8N8cn3oFJG3S+sneKZH55IfIsAtzN3lLpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Jul 2026 11:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:37:18:5e:d8:d2:6e:7f:57:bd:fa:bb:40:4a:c4:b8:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Jul 6 11:02:51 2026 GMT
Not After : Jul 7 11:02:51 2026 GMT
Subject: CN=9e2cec39beae7aa64590976f7eba9625257d0c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a9:0b:91:4b:de:b1:0b:a4:93:7e:b9:cb:97:
22:42:50:3a:c6:8d:45:f6:96:05:11:e3:f3:90:d9:
e4:e5:5c:aa:a8:44:6c:28:dc:5d:5e:97:06:00:b6:
cf:1f:77:6f:fa:c0:36:b6:28:d2:dd:3c:e4:c1:2f:
0b:66:4a:97:aa:66:2a:61:dd:59:90:80:10:4c:01:
e8:64:35:48:b8:71:cf:a9:a6:7b:c8:3a:ae:28:5e:
76:7e:08:d1:20:ed:8d:49:37:12:bf:82:9f:2c:bf:
a5:40:2a:61:97:eb:bf:db:45:a2:f9:41:ba:78:25:
8c:41:2a:b5:42:b2:af:1d:cd:f5:6a:63:2d:a1:e6:
ea:3d:2f:7b:46:32:47:b8:a9:9d:24:3f:b0:01:29:
14:63:97:7a:28:6a:b7:6b:b1:3e:69:a7:76:9a:7e:
4a:44:39:1d:87:75:9a:df:bc:76:3e:91:2f:24:91:
50:2a:a4:7a:5e:e8:af:54:47:29:ed:13:94:72:1f:
61:3b:a4:ab:39:74:fa:dc:7e:9e:45:b2:df:58:8c:
7d:22:b9:90:35:9f:14:7f:9b:72:36:6f:d6:52:ad:
77:ee:0a:a1:c7:6b:70:9d:c2:dc:12:08:2b:41:e0:
1f:3c:c7:b6:49:23:0b:d5:22:ec:ca:85:b3:37:fb:
a2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:2C:EC:39:BE:AE:7A:A6:45:90:97:6F:7E:BA:96:25:25:7D:0C:97
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:2a:18:7c:1a:c3:d5:08:0d:ab:04:2d:e4:03:1e:be:6b:a8:
7a:18:54:d7:d5:95:6d:bd:1d:82:55:f7:c9:24:48:64:82:44:
d0:fb:00:2a:2a:b5:39:be:b8:c0:d6:d6:02:3e:f7:f3:e7:fd:
a1:e8:19:b6:d1:1d:eb:3a:f1:77:15:a6:68:a5:af:00:65:7a:
1f:72:fa:3b:7d:5c:35:b6:12:91:a7:06:4b:4d:e2:0e:e6:b5:
34:ab:70:6e:6a:1f:e7:4d:76:f0:9a:56:18:e6:ba:db:eb:29:
8f:8b:1d:bd:98:6c:08:de:52:27:99:bf:f8:e9:bd:29:ef:34:
8d:46:c7:6a:c6:61:1f:9d:c5:dd:61:fb:4b:51:5e:f4:85:93:
18:68:fd:f0:e9:f8:94:c2:d1:a4:88:d6:bd:a9:65:44:ce:92:
ce:09:33:0c:83:52:1a:18:08:78:12:3f:a1:08:4c:b3:30:7a:
92:f9:2d:b8:cd:97:87:c3:8f:f6:72:4e:77:eb:72:3d:b2:f0:
75:f5:3e:98:1d:60:f9:d2:b7:cc:96:19:5a:32:24:70:58:1c:
a8:32:9b:98:c4:4f:57:c3:87:64:e1:31:8d:a4:90:bc:89:37:
4b:bc:58:bc:4b:a6:b7:5b:29:c6:2b:81:ce:f6:c5:77:39:5a:
f7:5a:1c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:19:33 2026 by rpki-client