Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: /0Wt1uOVmNQ1oozIF7nolTD9wmImRgetAq7m73MVEsc=
Subject key identifier: AA:28:35:00:C8:F9:A9:2A:FE:B4:6C:F2:23:02:9B:4D:FA:47:79:53
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 019EBF5A5DB9844E408E7281B3D936FB9427
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 195E
Signing time: Sat 13 Jun 2026 05:00:30 +0000
Manifest this update: Sat 13 Jun 2026 05:00:30 +0000
Manifest next update: Sun 14 Jun 2026 05:00:30 +0000
Files and hashes: 1: 4O7JXBvPOYztRW27KQbfsJapV8I.roa (hash: CnJtkzBJ3WzY6WSIQ98/SBNuBHldMzltsiyedt5bTUA=)
2: gP48O_sjBy8crhBkXhJMvckOd40.roa (hash: YjRHc0wBKAbt12RWFSPrs766F+2rkzk6tBEBo+GPgkI=)
3: glCPJ2S6o9uZKjCAdlQQmibg5oU.roa (hash: r5yLJSYgpWVCtbKMSEubh57fs1HDMOGe6waujl24LNg=)
4: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: redUwKH+ajtkypdqAmfKCK9HX5dk4HbCDwostO/K/dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:5d:b9:84:4e:40:8e:72:81:b3:d9:36:fb:94:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Jun 13 05:00:30 2026 GMT
Not After : Jun 14 05:00:30 2026 GMT
Subject: CN=aa283500c8f9a92afeb46cf223029b4dfa477953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:17:70:e1:80:f6:83:ae:bf:f3:a7:d2:87:87:
8b:ca:69:0a:bf:4d:e4:46:b6:cf:c0:ab:91:4c:b7:
15:09:60:6c:99:99:94:3d:e7:0e:34:25:8e:19:6a:
fd:e9:d4:0c:a2:c6:4b:05:e0:82:3e:4f:73:f0:3c:
d8:dd:11:a8:13:6b:ba:23:94:15:6a:b7:bd:25:b5:
23:c1:c5:27:9f:4f:9a:cd:36:54:0a:d5:e7:b8:52:
23:8d:23:a6:42:14:b7:02:b2:ac:2a:60:78:84:50:
5f:cc:18:a7:0e:95:b3:8e:ce:23:1c:de:66:44:51:
ce:9e:74:a6:99:7f:42:f5:7e:c8:23:cb:46:3d:64:
8a:59:57:a5:08:d1:19:96:47:91:a9:98:1c:da:23:
70:45:ff:35:67:fa:6f:85:e5:ae:93:24:86:cc:27:
39:a6:52:59:89:35:9f:b0:e5:3a:f3:27:09:c9:a9:
9a:bb:ff:8c:f6:31:1e:9c:ae:dc:7e:1e:a3:9a:9b:
b2:03:36:01:be:82:0e:4f:a2:22:cb:2d:ed:88:1e:
d0:92:43:30:bd:1f:48:f5:0c:7a:09:c2:ef:2f:58:
06:e6:88:2a:f5:a2:6b:c0:a0:cb:ac:58:09:00:c2:
f9:df:2b:0e:c1:a3:7b:42:03:30:08:87:81:13:8c:
4b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:28:35:00:C8:F9:A9:2A:FE:B4:6C:F2:23:02:9B:4D:FA:47:79:53
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:bd:17:23:12:60:0a:68:07:68:19:dd:03:ba:19:ed:d8:97:
14:8d:dc:2c:0b:3b:c0:41:4f:35:81:c0:08:fe:8c:82:b6:8a:
50:10:f5:e5:ba:45:fa:cc:8f:38:93:04:be:de:b9:fc:32:6e:
89:b0:4e:7b:94:ed:12:02:f1:88:5b:ff:6a:3e:c0:8c:da:ed:
c4:52:d7:a1:60:f1:9a:f9:c1:8b:8f:ce:50:48:06:67:09:8d:
97:92:73:ba:a7:b1:a4:7f:db:e1:65:0a:9c:72:bb:fe:50:5f:
b4:fd:a5:d3:95:05:59:a8:51:5b:97:cd:40:44:c0:74:6b:51:
be:31:29:ba:35:35:aa:a1:e6:39:0e:ce:eb:01:32:29:5c:64:
65:a9:bc:57:70:f5:b6:64:fc:69:a0:50:a0:61:23:94:17:3b:
fa:ee:bc:93:7d:58:17:98:52:0a:ad:76:b8:5d:e5:b7:08:aa:
aa:43:96:08:bb:fe:04:57:bf:f2:6e:75:d9:03:11:75:68:85:
58:d4:b6:b4:e5:0f:25:a6:19:8c:40:79:a8:bf:18:a5:c1:80:
ff:3b:8c:94:5f:a7:27:fb:f7:02:4b:6a:3f:d4:46:70:42:7d:
be:d1:61:73:d2:53:ba:ad:83:6b:a2:eb:a7:75:22:0c:cc:f2:
60:c8:58:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:39:46 2026 by rpki-client