Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: Eon0seb8fSEUkNyfbtCuIroB+O917Dkex4kg8hfc3aA=
Subject key identifier: DD:D5:F8:A3:21:23:4D:A7:3D:1F:C7:CA:78:68:18:F0:8F:FB:C5:66
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 019CAC0FC86B6D6C24A32DA755FE4344DE6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 01:00:41 +0000
Manifest this update: Mon 02 Mar 2026 01:00:41 +0000
Manifest next update: Tue 03 Mar 2026 01:00:41 +0000
Files and hashes: 1: 4O7JXBvPOYztRW27KQbfsJapV8I.roa (hash: CnJtkzBJ3WzY6WSIQ98/SBNuBHldMzltsiyedt5bTUA=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: mFQH508wtWpsZ2QREEwcCi3MTQNzOJeGxk8KU1ao9Bw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:c8:6b:6d:6c:24:a3:2d:a7:55:fe:43:44:de:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Mar 2 01:00:41 2026 GMT
Not After : Mar 3 01:00:41 2026 GMT
Subject: CN=ddd5f8a321234da73d1fc7ca786818f08ffbc566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d1:37:05:96:44:bb:f4:61:0e:6b:d6:43:62:
2e:12:64:4c:8c:4e:d3:01:26:22:0d:fc:19:b2:23:
e0:a3:9c:bd:a4:06:0d:e0:24:62:0d:11:b4:dd:9e:
81:37:c6:1c:08:c0:2e:37:cd:79:0e:f6:f7:fe:f1:
21:7f:b9:08:ab:a9:a3:da:50:5e:ab:e1:0b:30:05:
85:dc:3c:cf:04:5e:70:14:ab:4a:7a:7d:df:b9:41:
32:97:3d:af:dc:21:ba:b3:89:f8:f5:54:85:01:11:
e1:69:f9:e6:66:be:4a:73:f8:2c:41:38:87:e1:8e:
b0:0c:26:05:31:ca:be:27:13:b4:8c:cf:6c:e0:ac:
32:5c:0c:9f:43:a6:e2:28:39:ff:44:85:29:c3:2b:
b3:4a:cc:aa:0e:10:b5:f2:2d:14:79:b7:1f:9d:bd:
9b:4d:86:3c:9f:63:19:8f:67:6b:50:dc:24:7c:09:
29:d2:65:c9:36:38:7a:35:31:1c:ec:94:fd:27:2c:
6f:84:2e:89:5b:c7:b4:ed:50:da:84:a5:f9:bb:86:
b6:57:53:b9:b4:61:bf:aa:df:1f:7e:98:24:97:60:
2c:e8:4f:04:58:db:7e:b8:c2:de:22:40:6c:98:eb:
10:8a:9e:b7:82:02:cf:63:3e:72:61:a3:b1:df:9d:
81:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D5:F8:A3:21:23:4D:A7:3D:1F:C7:CA:78:68:18:F0:8F:FB:C5:66
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:f7:6b:8b:83:56:97:1f:e5:b8:74:dc:fd:df:2f:34:de:37:
2b:79:13:c3:07:69:8f:1b:83:42:02:9d:20:95:2c:79:93:fa:
09:06:8d:be:cf:1b:7e:2a:c4:71:b7:c1:8d:ef:99:b2:83:1f:
76:07:ab:3e:00:b2:d9:c1:da:8b:52:02:1f:54:37:03:a0:56:
17:45:2e:7a:6b:d8:6e:f0:81:94:9c:4d:2c:ad:28:69:82:0d:
be:74:51:75:c9:70:65:58:54:b1:0a:a7:cb:e6:bb:fd:f4:c6:
9d:ca:c5:21:43:37:0f:99:6e:5b:ab:a4:d4:aa:cf:26:b3:12:
2f:39:5c:91:6b:eb:4f:a0:68:0f:64:0c:74:db:07:39:93:f8:
db:4c:30:d0:32:1d:f3:92:06:47:2b:74:df:78:5b:21:c9:8b:
fc:8e:fb:f5:04:45:df:99:13:5a:9f:e7:c6:b8:a3:58:50:11:
37:df:cc:e0:f8:15:73:84:2a:02:07:9d:f7:45:d7:6f:b1:42:
db:5e:f8:05:a2:66:12:69:3a:7f:1e:79:83:4d:bf:97:f0:26:
3f:84:bc:05:bf:e1:48:73:bd:b3:cb:9b:a0:f2:ea:31:99:45:
7a:81:40:3b:36:2b:81:c4:a8:bc:c8:96:61:78:25:fa:05:9d:
c6:17:f5:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:40:48 2026 by rpki-client