Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: aq4WeGZiljat+fM78c58UQsfpD39IkblfifbeeqKxdg=
Subject key identifier: E8:89:C6:65:6D:D7:0C:29:53:BD:2B:F8:A3:95:AD:C4:DE:95:A7:F6
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 01974630078C3896866B2067B7A186CE046D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 157D
Signing time: Fri 06 Jun 2025 17:00:42 +0000
Manifest this update: Fri 06 Jun 2025 17:00:42 +0000
Manifest next update: Sat 07 Jun 2025 17:00:42 +0000
Files and hashes: 1: Dk5BhXJ_gIsgQ0utb4gvZ39LMIc.roa (hash: 9IdU4NLUHr5S9QPXNXQfwW6+YPaEhUYFtSNkpxSH/2Q=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: 2ma+gDsTQc/bugtwzKcLj6Ozb4lYpVf+emE4yX2f5l4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:07:8c:38:96:86:6b:20:67:b7:a1:86:ce:04:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Jun 6 17:00:42 2025 GMT
Not After : Jun 7 17:00:42 2025 GMT
Subject: CN=e889c6656dd70c2953bd2bf8a395adc4de95a7f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f8:30:42:8a:b8:0b:79:45:9f:79:f2:f7:1d:
99:6c:84:58:e7:37:1b:25:40:63:de:25:c9:db:93:
4c:ad:b6:bd:05:00:3e:be:78:1f:14:8a:0b:05:3c:
9d:83:b6:26:1d:b6:4a:ed:f2:6c:3d:3c:85:00:66:
a8:9f:02:ca:39:3b:d6:68:b7:3b:5e:d2:c3:b2:6a:
f4:0b:4f:a6:b1:0f:e7:d8:ad:3d:f1:88:24:6a:9e:
79:0b:9c:4e:dc:f8:d0:08:3c:7f:0a:ff:72:e8:52:
3e:5a:9f:fe:3b:4b:cb:fd:ea:f5:a3:36:31:a9:4b:
19:2b:e6:89:31:74:b4:6c:19:64:d0:6a:fb:4a:25:
bb:0f:80:90:ac:a0:9a:0c:d5:ad:23:66:0b:e2:79:
a9:05:37:47:94:03:38:fd:d0:3b:ef:6f:33:97:d3:
7b:3b:31:09:77:f5:b3:1a:4f:45:0e:4f:ff:e9:6e:
13:da:e6:05:38:91:21:46:1d:08:c0:c0:61:b9:ee:
4d:95:f2:c3:a0:1e:34:0a:f5:3d:b6:75:66:f8:6e:
71:a1:bd:1d:86:c8:d1:2d:bf:ff:dc:78:2b:df:c2:
54:8f:b1:e2:c2:35:4a:1f:7f:92:38:1c:c3:9c:e8:
e3:75:d8:e7:06:1d:3f:b9:00:47:2f:89:9c:77:48:
83:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:89:C6:65:6D:D7:0C:29:53:BD:2B:F8:A3:95:AD:C4:DE:95:A7:F6
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:e1:a8:68:1a:d5:08:a5:a3:83:62:d8:0a:78:88:43:db:48:
f6:0e:00:8f:e6:59:0b:35:61:27:9b:03:fc:59:f6:38:6e:63:
28:34:99:89:d8:e3:5a:d3:54:c5:1b:9e:70:20:a6:07:93:d9:
f9:03:e6:f2:9a:8a:0a:7e:fb:b8:7a:58:1b:39:26:10:d4:85:
27:93:12:92:67:36:4e:fc:3c:f5:42:aa:f3:36:c8:87:0f:f4:
d1:6c:18:8a:7c:14:de:c6:0a:96:62:d9:21:60:95:87:ab:0a:
a0:b6:5d:84:ab:48:c7:1b:e5:47:3f:87:4f:0f:ae:7c:19:79:
65:9e:7d:3a:09:c0:c5:a2:1a:bb:3d:cd:52:69:46:88:1a:ca:
c7:db:db:05:49:09:0b:df:d4:52:69:2d:7e:db:35:65:4f:f3:
95:ca:9f:a4:1c:8a:a7:fb:48:80:1d:18:56:5c:a6:ed:f1:2f:
4f:d1:6d:e1:96:db:0e:2f:b2:8c:0b:39:ba:6e:3f:1f:86:81:
4f:d1:cc:78:e4:ad:e4:a1:13:f2:79:14:3b:60:f7:cf:c5:cd:
56:c4:34:3f:87:18:a3:ab:69:88:38:3d:55:de:be:98:82:87:
7e:fc:a0:96:f5:a4:2d:81:2e:4b:a7:04:10:25:d9:b2:25:f0:
64:6b:12:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGMAeMOJaGayBnt6GGzgRtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3N2FhZDMwN2FkMzMwZWJiOGNmNDRlYzIxMzg5YTE3MDQz
NmZkNTMwHhcNMjUwNjA2MTcwMDQyWhcNMjUwNjA3MTcwMDQyWjAzMTEwLwYDVQQD
EyhlODg5YzY2NTZkZDcwYzI5NTNiZDJiZjhhMzk1YWRjNGRlOTVhN2Y2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvgwQoq4C3lFn3ny9x2ZbIRY5zcb
JUBj3iXJ25NMrba9BQA+vngfFIoLBTydg7YmHbZK7fJsPTyFAGaonwLKOTvWaLc7
XtLDsmr0C0+msQ/n2K098Ygkap55C5xO3PjQCDx/Cv9y6FI+Wp/+O0vL/er1ozYx
qUsZK+aJMXS0bBlk0Gr7SiW7D4CQrKCaDNWtI2YL4nmpBTdHlAM4/dA7728zl9N7
OzEJd/WzGk9FDk//6W4T2uYFOJEhRh0IwMBhue5NlfLDoB40CvU9tnVm+G5xob0d
hsjRLb//3Hgr38JUj7HiwjVKH3+SOBzDnOjjddjnBh0/uQBHL4mcd0iDGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOiJxmVt1wwpU70r+KOVrcTelaf2MB8GA1UdIwQY
MBaAFId6rTB60zDruM9E7CE4mhcENv1TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUt
NTA4MDk5YzEzM2JiLzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUtNTA4MDk5YzEzM2Ji
LzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiuGoaBrV
CKWjg2LYCniIQ9tI9g4Aj+ZZCzVhJ5sD/Fn2OG5jKDSZidjjWtNUxRuecCCmB5PZ
+QPm8pqKCn77uHpYGzkmENSFJ5MSkmc2Tvw89UKq8zbIhw/00WwYinwU3sYKlmLZ
IWCVh6sKoLZdhKtIxxvlRz+HTw+ufBl5ZZ59OgnAxaIauz3NUmlGiBrKx9vbBUkJ
C9/UUmktfts1ZU/zlcqfpByKp/tIgB0YVlym7fEvT9Ft4ZbbDi+yjAs5um4/H4aB
T9HMeOSt5KET8nkUO2D3z8XNVsQ0P4cYo6tpiDg9Vd6+mIKHfvyglvWkLYEuS6cE
ECXZsiXwZGsSzA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:02:14 2025 by rpki-client