Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: 1GZ9tKiUG4xFbN7sBhvq4CBRdl7x9MgAFsxNHVsGN0s=
Subject key identifier: 02:47:5A:2D:C1:3D:0F:8A:71:45:DD:EA:C4:C9:C7:A4:74:8B:75:3E
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 019D999982E2095207633C677768811CED69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 04:01:07 +0000
Manifest this update: Fri 17 Apr 2026 04:01:07 +0000
Manifest next update: Sat 18 Apr 2026 04:01:07 +0000
Files and hashes: 1: 4O7JXBvPOYztRW27KQbfsJapV8I.roa (hash: CnJtkzBJ3WzY6WSIQ98/SBNuBHldMzltsiyedt5bTUA=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: VoHakcTtKJ8u43uEZ30+gtxfHJKJSyFsmbmSh1k/ehs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:82:e2:09:52:07:63:3c:67:77:68:81:1c:ed:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Apr 17 04:01:07 2026 GMT
Not After : Apr 18 04:01:07 2026 GMT
Subject: CN=02475a2dc13d0f8a7145ddeac4c9c7a4748b753e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:13:9e:8a:51:76:2f:ba:d4:ff:96:81:d8:9d:
13:da:38:48:db:2d:7e:3c:a2:1e:3d:4c:a4:7d:7d:
4d:88:30:f3:bf:47:88:ee:65:5f:40:4b:6f:86:c7:
e5:cb:40:00:fb:2d:6f:f9:44:8f:c9:ed:53:36:1c:
5d:0e:24:79:84:51:86:ea:79:f6:67:4d:72:4b:82:
07:60:68:70:a6:b8:aa:ea:2a:13:23:c7:ed:c9:bb:
d7:25:48:7b:77:fc:1a:ab:9f:dd:9d:39:dc:c3:52:
80:e3:8d:48:74:bb:c8:9b:b4:f5:3c:5f:d1:79:a4:
54:52:f6:75:1a:50:9f:46:6c:c6:d6:81:b0:e6:ec:
e8:cc:88:a2:5e:70:e5:0e:6c:47:79:6f:0e:c9:26:
81:9b:e6:7f:25:36:79:a7:b9:d3:00:fa:df:0e:d3:
5d:f1:bb:a3:ba:dd:63:7c:91:0e:be:1e:62:08:dc:
91:02:67:39:e6:19:4d:01:01:82:de:d5:2f:c0:22:
f0:2f:b3:d7:2b:22:44:e1:82:a8:8a:a7:4e:d7:33:
d4:f8:5f:83:81:f9:cd:3e:e3:6a:2e:f1:de:0b:dd:
c1:9a:52:7d:79:b3:ee:9c:83:f0:36:67:ae:25:26:
73:40:1d:9b:ce:d0:20:08:99:93:05:7c:cc:90:64:
64:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:47:5A:2D:C1:3D:0F:8A:71:45:DD:EA:C4:C9:C7:A4:74:8B:75:3E
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:d6:87:ef:f0:c3:76:e2:59:9a:1e:cb:02:86:61:bf:2a:d3:
77:0b:b8:11:27:06:1b:2b:51:bd:cb:ea:f0:76:22:5f:c0:aa:
10:e4:89:af:fa:20:ee:ee:d7:6f:03:9f:fc:d5:ce:12:33:86:
00:33:3c:2a:99:b8:66:e0:0e:d7:8c:81:5f:d3:07:e5:ad:fe:
73:e5:f2:e2:2f:a9:0b:75:b3:31:c9:17:58:f7:ab:85:c6:1b:
fe:a4:7b:ce:d7:1a:c5:72:7b:86:5a:6c:17:1e:e9:ec:c0:31:
d2:59:db:1b:90:a5:58:15:ff:f2:7f:11:de:8a:e6:bf:c2:61:
0b:ca:03:c8:0e:7e:9c:bb:2a:1c:84:af:ca:ff:d4:bb:62:48:
7e:d1:20:c4:bc:06:31:ff:83:0b:10:22:01:b9:f2:95:63:9a:
d0:25:7e:4b:98:5f:66:eb:79:bd:f9:ae:61:bf:86:3d:84:93:
e5:93:f6:eb:3f:84:d2:4e:85:88:f7:b9:c9:77:c8:83:b1:d4:
03:71:32:66:42:d9:b5:5b:f4:26:f1:bd:42:ea:24:10:10:e6:
84:c6:ac:56:47:60:81:83:91:22:e6:5f:f0:df:83:6a:74:5b:
5e:c0:9b:36:f9:9e:52:e1:19:e3:7f:d3:b6:19:9e:fb:6b:76:
84:11:6c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:49:28 2026 by rpki-client