Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: 6qt0uf2F6w17bNwNxrk8fM+rlct4xCQMF2NH+xmwKYM=
Subject key identifier: 80:90:4B:33:DE:E3:C1:48:D2:17:07:D8:95:07:7C:A7:FF:7E:80:15
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 0197B820DD8BB4490B47BA40469BBA258738
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 20:00:50 +0000
Manifest this update: Sat 28 Jun 2025 20:00:50 +0000
Manifest next update: Sun 29 Jun 2025 20:00:50 +0000
Files and hashes: 1: Dk5BhXJ_gIsgQ0utb4gvZ39LMIc.roa (hash: 9IdU4NLUHr5S9QPXNXQfwW6+YPaEhUYFtSNkpxSH/2Q=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: jtOmaNUMRAJAS/L2jHNvFxfCG5ROCaVmwVAHD9Joia4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:dd:8b:b4:49:0b:47:ba:40:46:9b:ba:25:87:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Jun 28 20:00:50 2025 GMT
Not After : Jun 29 20:00:50 2025 GMT
Subject: CN=80904b33dee3c148d21707d895077ca7ff7e8015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:30:e1:6c:ad:d2:14:1d:d5:dc:81:41:bf:81:
66:5c:15:54:12:a6:ba:ec:89:dd:71:93:80:18:3a:
0b:76:e0:28:bb:8d:21:65:b2:c4:57:36:9a:53:50:
9e:17:8e:bd:e5:30:51:de:65:7e:a0:a2:fb:31:f6:
e1:8d:30:b7:b0:e7:d0:fd:50:c3:50:b6:85:65:ff:
75:79:2e:af:95:a2:b7:b7:39:f2:37:5d:62:2d:14:
0b:42:75:75:2f:72:9a:45:72:29:45:c4:ef:d1:c1:
29:9c:a1:5c:0f:2a:3f:af:0b:82:b1:50:9b:03:d7:
d9:d9:d0:4f:6f:65:6f:97:44:f2:b5:cb:c3:81:b5:
14:15:6d:79:3c:e8:32:4e:7c:4e:7a:b5:b6:90:6d:
dd:ec:c2:1a:53:15:46:31:25:5b:22:a9:15:90:76:
3e:0f:d9:98:dd:7c:d6:2a:f8:7b:43:02:7f:47:ea:
f2:73:1e:f7:82:c6:51:54:26:52:bf:0a:52:10:d3:
80:dd:9b:fd:ca:53:bd:44:a8:df:07:3c:04:9b:e6:
82:58:8a:ca:27:7e:84:ec:8c:c4:b9:21:b3:55:e6:
0f:53:06:77:d5:fd:e0:31:12:26:83:33:3a:22:34:
e9:66:45:a1:61:cb:4b:0c:cd:9e:27:61:9e:a5:78:
df:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:90:4B:33:DE:E3:C1:48:D2:17:07:D8:95:07:7C:A7:FF:7E:80:15
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:87:59:30:83:cc:b9:92:08:25:96:85:5d:9d:c3:cc:51:6e:
0c:f0:d0:1d:d6:f1:6c:36:d6:d7:28:89:02:1d:9f:a2:e9:01:
f2:67:25:91:0d:dd:16:9e:b6:d0:64:73:65:8f:e3:e1:cf:9c:
ba:c0:03:8e:10:82:6f:cc:c8:11:e3:5c:a2:fb:cb:c0:03:12:
12:48:e0:6d:6f:e5:43:f0:30:2a:15:2b:20:ea:f6:52:8e:24:
64:8a:e5:db:3e:f4:e1:f1:62:d0:4f:c7:b0:2b:73:8e:3e:00:
65:9f:c9:58:ca:b3:73:9d:ba:64:8d:a8:21:be:59:a1:4b:c1:
28:e5:e4:71:8a:a8:e4:48:11:83:ef:e5:7d:5a:44:b4:4d:ef:
bf:27:7a:e5:a1:64:85:83:55:f4:2c:75:0c:d9:4a:2d:42:11:
34:12:9c:96:ec:74:14:37:7e:61:57:f0:6d:72:76:a7:28:5d:
46:95:e1:04:37:8b:80:26:a8:36:57:82:9f:02:82:2c:bb:ad:
c4:1a:95:16:2f:94:da:70:78:ad:a2:a2:cc:5f:c8:c1:4a:76:
7b:4b:39:21:0e:14:22:a1:17:2e:53:22:d1:5b:ec:3e:33:4e:
e0:0c:fb:1a:68:01:0a:00:3d:b1:01:af:3a:ed:f5:c0:95:b9:
8a:96:23:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:40:17 2025 by rpki-client