Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: SXT5q8s3Euetq/zBoS+HZHxF5DAXj+X6RxhhDrEYe+A=
Subject key identifier: B2:DB:D2:BD:6B:F3:7B:48:04:BE:A2:45:61:40:AC:D3:30:A8:54:7F
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 0198D5F1400F92413357AC01C065255B0B51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 08:00:13 +0000
Manifest this update: Sat 23 Aug 2025 08:00:13 +0000
Manifest next update: Sun 24 Aug 2025 08:00:13 +0000
Files and hashes: 1: Dk5BhXJ_gIsgQ0utb4gvZ39LMIc.roa (hash: 9IdU4NLUHr5S9QPXNXQfwW6+YPaEhUYFtSNkpxSH/2Q=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: d61MH80sLN6Sd65TVfjbSuMaSjSOj+shZocncCDDXko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 08:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:40:0f:92:41:33:57:ac:01:c0:65:25:5b:0b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Aug 23 08:00:13 2025 GMT
Not After : Aug 24 08:00:13 2025 GMT
Subject: CN=b2dbd2bd6bf37b4804bea2456140acd330a8547f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d4:31:9f:5c:96:64:4c:31:99:ea:22:76:5f:
53:55:fb:11:c7:c3:ea:2d:ce:15:54:bd:fd:68:46:
42:dc:ce:2c:d0:9d:f5:ec:13:e6:c4:60:a3:3a:68:
bd:a1:ab:dc:23:ca:e3:ad:84:89:d5:e6:5f:90:58:
17:88:76:96:a5:49:0d:1f:a2:3b:b1:c8:34:bd:a4:
ca:be:40:d0:9b:b8:56:a8:73:1f:37:72:53:a5:f9:
26:21:28:9c:aa:18:13:7d:3c:20:e3:d4:31:21:73:
2e:80:36:9b:57:5a:cb:a6:d0:31:c5:97:c4:78:7a:
61:3f:8f:17:26:4b:15:ce:e3:40:9c:cf:ec:70:d7:
2a:5c:aa:04:6e:79:7d:e6:b2:94:97:79:e9:34:d2:
8f:47:7d:21:77:46:9d:a5:26:82:5e:44:07:26:0f:
9f:3c:97:b6:86:10:72:63:55:e7:0b:48:39:f5:f0:
94:97:ce:52:d3:b4:fe:33:23:0b:67:d0:ff:9d:8b:
29:bf:7d:92:6e:43:14:8c:87:68:2d:10:89:a2:53:
78:88:6d:87:dd:ba:d3:b6:01:db:4b:61:b5:d9:67:
1b:8f:96:a3:e7:92:89:a3:83:9c:4a:38:da:b8:a8:
47:94:66:b2:2d:95:ac:f8:04:dc:00:aa:f8:5b:9e:
66:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DB:D2:BD:6B:F3:7B:48:04:BE:A2:45:61:40:AC:D3:30:A8:54:7F
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:60:d7:47:0f:0e:41:96:d7:e6:37:cc:31:80:21:32:31:3b:
20:c2:c9:74:ea:38:a7:9c:ee:b6:bd:37:7e:3f:ba:10:99:09:
65:39:32:80:ae:5a:e2:fd:64:bf:eb:15:63:10:58:f8:8e:e7:
0a:28:22:e3:26:0a:63:67:2f:ed:eb:6e:11:f3:88:2a:fc:ab:
9f:c1:12:01:c0:37:2b:0b:e4:db:5d:18:36:0c:a6:eb:e4:ff:
dd:cb:b1:d7:cb:4d:0e:0c:c0:45:9e:ce:b7:e9:5b:44:44:3c:
db:d9:8d:bc:9b:1c:14:ba:e4:67:30:53:9b:86:3b:9c:b8:95:
16:24:dd:cb:eb:41:2b:c4:81:60:af:c0:91:cb:fc:1b:f6:01:
ce:3a:69:e9:40:0a:79:ea:dc:0a:04:3e:51:6d:10:71:2e:34:
0d:7e:b7:55:4d:a5:fa:0e:69:b3:6f:90:2f:9b:02:12:ed:a3:
c5:f5:13:1d:6d:f5:9c:67:15:20:9c:df:58:37:b1:9d:3d:9b:
f2:38:95:63:a1:ae:cb:60:a5:68:84:e0:23:55:da:55:42:3b:
f0:d4:40:a6:cf:a7:ea:ee:bf:b3:96:93:f8:cd:8b:6d:c5:e0:
f1:83:75:8d:d3:d0:cc:eb:b4:82:5d:46:33:5e:20:ac:17:c8:
7b:77:15:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:48:51 2025 by rpki-client