
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: niNxf5uzQBHlejTLoDUi/UlFs5wtyCyV6yP01VKy/gI=
Subject key identifier: E9:A1:09:E7:F6:79:0C:9B:CF:47:58:F1:56:AD:DF:1B:AC:E0:B4:6A
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 0199FB7C8BA4851EE22D7FEDDA23B5999643
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 08:01:07 +0000
Manifest this update: Sun 19 Oct 2025 08:01:07 +0000
Manifest next update: Mon 20 Oct 2025 08:01:07 +0000
Files and hashes: 1: Dk5BhXJ_gIsgQ0utb4gvZ39LMIc.roa (hash: 9IdU4NLUHr5S9QPXNXQfwW6+YPaEhUYFtSNkpxSH/2Q=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: sbhKSLemKMKwZBojQpSNW8qWeUN6FJxhR55DrGajSOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:8b:a4:85:1e:e2:2d:7f:ed:da:23:b5:99:96:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Oct 19 08:01:07 2025 GMT
Not After : Oct 20 08:01:07 2025 GMT
Subject: CN=e9a109e7f6790c9bcf4758f156addf1bace0b46a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:45:b9:cb:b5:15:67:e0:65:3e:70:5f:7b:02:
d4:27:79:3b:71:0c:72:4b:1e:7e:54:dd:3e:b0:14:
62:4d:a0:a9:a0:02:23:cc:fc:5a:c7:14:9d:33:b1:
f1:b1:0f:d2:3c:74:d6:6c:1e:08:ac:fb:ac:3e:54:
18:9d:73:80:db:71:4b:58:3f:64:59:27:39:cd:20:
b5:ec:e4:23:72:5d:b9:65:1a:28:fc:b0:88:a1:41:
b2:15:d3:27:ed:6a:a0:28:90:c6:f4:6d:e0:28:2e:
3f:a5:73:0a:20:bb:54:e7:bc:58:a2:00:ce:a9:57:
6b:6a:6f:39:aa:3b:57:34:65:45:b6:05:47:dc:5b:
dd:83:c2:87:df:04:f9:3a:2e:8b:d6:32:9f:7b:df:
3b:82:da:56:8a:51:f4:43:07:83:a8:c2:0f:18:7a:
b1:b9:28:ee:db:fe:31:18:38:a8:ec:0f:a7:2a:0f:
c4:fe:a7:59:08:fd:b3:66:64:2c:47:14:d2:7a:e2:
4e:bf:61:8e:f9:9e:da:53:b0:f3:c0:2d:3f:0b:43:
b2:96:44:f9:1f:90:7d:38:1a:4f:4b:75:87:7d:8a:
64:67:5a:8d:6e:29:64:55:4d:4e:62:00:09:81:95:
ab:e0:fb:ec:5b:a7:ee:bb:82:08:60:2b:59:22:50:
19:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A1:09:E7:F6:79:0C:9B:CF:47:58:F1:56:AD:DF:1B:AC:E0:B4:6A
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:15:e1:61:3e:ed:27:0b:c7:62:e9:10:38:a3:3c:7c:23:c8:
53:3c:b2:d9:6c:a3:a2:ab:90:43:77:4c:42:ec:86:ac:03:3a:
27:aa:75:59:24:ca:48:ba:87:84:0d:8e:ec:c7:72:88:9f:43:
6c:de:82:05:ee:a5:a7:1b:9f:15:47:e9:b5:93:ad:22:c8:56:
cf:3c:be:19:f6:c9:c0:b7:a0:81:2f:6e:3d:73:41:35:df:58:
82:94:32:36:42:5e:7a:ec:8a:c1:7b:3f:86:2a:5f:55:05:1f:
aa:bd:2f:73:14:73:5f:07:1f:03:96:a4:7e:b9:50:86:ff:39:
6d:85:58:ce:fb:b3:d3:b7:f7:8c:f6:c5:f9:a8:43:da:1d:d4:
b8:8e:1c:f0:a4:2f:c7:11:86:82:db:fb:ec:4a:38:38:3c:75:
39:60:94:8f:cf:3b:d8:e8:3c:71:e6:4a:0f:fe:25:df:04:20:
ea:d4:db:d1:f4:9e:9e:e6:13:3b:9f:60:66:38:9a:82:87:d1:
67:e1:68:95:35:f1:f5:4b:7c:ff:9c:3a:ea:b3:e2:1a:63:91:
82:46:ff:96:b6:01:e6:f8:2f:85:27:62:2d:d9:c5:f5:7b:2c:
71:8a:d2:18:3e:7b:b0:a2:51:ed:55:0c:d7:6b:3d:fc:50:f9:
20:70:fb:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:46 2025 by rpki-client