Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: LdupOXXJmSqH766wIX5ZWIlroisVX/5N12p/INg7NTU=
Subject key identifier: 94:16:4B:35:13:AA:3C:80:9D:5A:4B:98:52:89:D6:38:63:50:1D:A1
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 019E4F583FC505AFD0D728FD0BBF52B5FCA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 1924
Signing time: Fri 22 May 2026 11:00:43 +0000
Manifest this update: Fri 22 May 2026 11:00:43 +0000
Manifest next update: Sat 23 May 2026 11:00:43 +0000
Files and hashes: 1: 4O7JXBvPOYztRW27KQbfsJapV8I.roa (hash: CnJtkzBJ3WzY6WSIQ98/SBNuBHldMzltsiyedt5bTUA=)
2: gP48O_sjBy8crhBkXhJMvckOd40.roa (hash: YjRHc0wBKAbt12RWFSPrs766F+2rkzk6tBEBo+GPgkI=)
3: glCPJ2S6o9uZKjCAdlQQmibg5oU.roa (hash: r5yLJSYgpWVCtbKMSEubh57fs1HDMOGe6waujl24LNg=)
4: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: Z9h6N/RTuPknNNhvZa7s7bgObn6H4A2tAmqf/Z2gLEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4f:58:3f:c5:05:af:d0:d7:28:fd:0b:bf:52:b5:fc:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: May 22 11:00:43 2026 GMT
Not After : May 23 11:00:43 2026 GMT
Subject: CN=94164b3513aa3c809d5a4b985289d63863501da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c5:d3:b9:ce:06:be:34:d4:f4:9b:2c:e7:0d:
a0:b6:35:0f:69:02:bd:bc:98:c2:c1:e2:d5:5a:00:
19:fd:a4:6b:95:3e:b5:70:f5:4e:e3:bd:9c:f3:7f:
af:4f:94:ec:87:7a:5b:fb:d1:5f:b6:25:2a:0c:dd:
3b:7c:95:cf:56:2b:de:b9:57:ca:2d:4f:eb:5b:fb:
7b:0c:f2:2b:01:ea:85:6f:e6:e8:3d:4b:e5:b8:33:
83:a3:c1:1e:7b:e9:cb:37:8d:4a:5b:c0:ee:83:e6:
ec:68:fe:e0:4a:19:43:c0:c4:b5:63:b1:87:1c:cf:
18:e2:3e:55:10:45:d9:e1:f5:42:b1:2f:a9:96:de:
38:9a:76:ef:14:a6:a4:3a:aa:65:1c:08:44:07:e0:
24:74:61:68:eb:10:33:75:19:25:8c:e3:6d:8a:ba:
d0:41:ba:7a:c9:cd:a3:7b:98:19:e3:e6:0a:43:a2:
19:c3:b8:81:cf:7f:ff:4a:1d:05:ae:e4:b8:2a:b0:
34:fc:f5:5d:d7:55:f0:fc:9c:78:65:5e:53:22:60:
a6:b6:7c:13:e7:c9:66:fe:10:1e:f1:c5:f5:31:88:
d4:89:ad:9c:59:17:18:7c:6a:b7:22:7c:b6:e1:55:
49:7f:9b:e7:79:aa:3c:1f:4c:10:fd:e6:db:a9:8b:
04:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:16:4B:35:13:AA:3C:80:9D:5A:4B:98:52:89:D6:38:63:50:1D:A1
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:aa:52:0a:46:f7:e5:85:63:8e:37:e9:f5:53:a3:c1:dc:81:
77:94:29:91:67:09:8c:e9:94:65:95:77:cf:31:b8:c1:a3:42:
2d:17:a7:4a:9c:e8:87:8b:2e:1d:d0:dc:63:27:e2:c0:20:68:
87:8f:7f:fa:f1:3c:d3:52:35:5d:51:fd:02:2f:e3:fe:a7:12:
e3:cb:88:55:82:14:f6:81:11:57:2f:54:64:7b:d5:cc:95:ad:
d3:0e:ec:c4:3c:9d:52:29:ca:4b:37:c7:20:83:3c:7d:d9:20:
11:f1:c4:a7:a5:ea:84:71:7c:cc:3d:ee:b9:24:2c:63:19:2b:
96:ba:6b:ee:b0:0f:4e:0b:e8:1d:0e:e7:44:e6:18:be:ab:d5:
fe:5d:18:30:7f:6a:a2:56:e2:60:90:d7:00:ce:f5:51:c8:27:
45:35:6e:e5:86:ed:da:63:44:36:61:03:fc:44:fd:ab:57:20:
3d:16:d1:10:2c:a4:99:57:f5:e5:7b:88:24:49:53:21:27:e4:
79:18:62:5f:06:2c:22:31:7f:9e:0a:d2:17:72:f0:1b:cd:48:
9d:e1:41:a2:35:a1:67:58:36:9a:87:c4:23:10:ad:38:ad:e0:
03:a0:c3:5e:49:01:31:08:46:ff:e9:fa:b8:89:2c:40:7f:9b:
1d:b8:90:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 22 15:08:01 2026 by rpki-client