Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: IrSSgUz2LgMNyhuv6CpHQJ3H/CMFcEv9oqmXwtL1jJg=
Subject key identifier: 01:0D:77:35:55:E7:BB:C0:B4:07:B1:72:1B:A1:8A:8F:84:EA:CA:42
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 01976EBDD982AB88A501DB8D727A43F2C619
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 1592
Signing time: Sat 14 Jun 2025 14:00:25 +0000
Manifest this update: Sat 14 Jun 2025 14:00:25 +0000
Manifest next update: Sun 15 Jun 2025 14:00:25 +0000
Files and hashes: 1: Dk5BhXJ_gIsgQ0utb4gvZ39LMIc.roa (hash: 9IdU4NLUHr5S9QPXNXQfwW6+YPaEhUYFtSNkpxSH/2Q=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: uWLynQMaz/5J0Bo2qJw/Ci1+pCsjAig+lKU8FZYwWOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:bd:d9:82:ab:88:a5:01:db:8d:72:7a:43:f2:c6:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Jun 14 14:00:25 2025 GMT
Not After : Jun 15 14:00:25 2025 GMT
Subject: CN=010d773555e7bbc0b407b1721ba18a8f84eaca42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f4:aa:81:7a:17:99:9e:1a:e4:21:97:ea:88:
a2:ba:a5:70:e5:ad:bd:57:ef:6a:a8:00:6f:76:cf:
bb:6e:17:1a:c3:2f:1c:20:0c:f9:5f:8d:2b:c4:9f:
8b:38:93:a9:42:7e:f0:e0:4a:3a:b6:31:57:d1:c2:
7e:1e:29:d3:50:fd:02:61:f8:91:c4:51:6c:81:a2:
e9:96:e5:f0:eb:f8:01:79:01:ff:c4:1b:d5:41:27:
32:6a:4e:ac:d8:1b:25:0f:ff:71:3e:35:df:f3:4c:
5c:a2:ef:fe:f9:a1:c6:52:c8:e3:cf:2e:51:15:d3:
f1:05:bf:21:24:40:17:99:2c:ae:4b:1a:53:76:58:
fb:73:53:78:44:95:0f:1d:b8:f8:00:f9:66:1d:d1:
1c:bb:87:55:12:d8:46:16:51:aa:2d:a8:22:14:b0:
54:8d:b2:16:4d:37:1b:20:a1:19:b4:67:4f:94:ad:
c3:ce:ed:2b:fc:1f:f2:b6:1f:0b:b2:2c:7b:32:9d:
b8:0a:70:ff:0d:1f:fd:89:6e:35:03:a1:ed:8a:aa:
1d:cb:9c:d9:5c:24:4f:ea:d0:9f:7e:01:64:a8:0a:
0b:c5:83:cc:11:df:f0:5c:d3:99:9a:00:4d:89:18:
51:8b:af:0c:69:59:94:ae:28:c7:2b:a7:92:3c:d0:
1a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:0D:77:35:55:E7:BB:C0:B4:07:B1:72:1B:A1:8A:8F:84:EA:CA:42
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:5e:c9:82:a5:a8:18:eb:09:51:9a:a4:46:5a:ba:24:80:89:
fd:0c:7c:0b:d4:23:30:07:b0:d6:20:f4:90:bf:fc:ff:44:36:
96:df:46:81:6e:55:fd:43:c4:81:7d:6d:c6:e3:e8:9b:80:75:
ab:70:ac:a0:03:bf:38:1b:20:21:00:5a:54:2f:ae:2d:d1:e6:
b3:73:5f:87:5b:60:9b:63:06:22:5c:af:c6:37:4b:f1:eb:ff:
4c:e7:7c:03:23:fe:09:03:61:ff:10:ca:79:52:5a:63:de:04:
4c:7a:98:7f:e0:ae:75:65:b2:13:70:61:be:6a:ec:ca:4d:ef:
e5:4d:56:7f:09:56:93:1d:b8:fb:fd:13:95:0d:f2:aa:73:3d:
d2:98:10:fa:4a:c0:11:28:ef:1a:68:ee:cb:de:2c:41:4c:9a:
1c:a3:28:e1:58:69:9b:53:65:95:d7:d1:a1:ff:50:26:a4:b0:
54:8a:8d:f7:d8:34:e9:aa:e9:1c:cd:55:57:fd:5c:e2:ae:9c:
b9:8e:87:53:08:aa:30:4b:f7:52:ce:c0:3c:06:bf:9c:33:d9:
fc:86:b7:8d:ae:4d:ee:27:9b:07:37:33:06:0a:7e:7c:13:7a:
d5:18:02:77:f8:8d:f5:eb:bd:cb:c1:db:46:24:ea:b4:4a:ae:
fa:da:69:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:58:26 2025 by rpki-client