Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: xVrVJCaz0uvaDu9G+c1zsnQcnX7UjLviFXx351xjzIM=
Subject key identifier: 7A:63:98:DA:92:E7:52:E0:EB:D6:3B:49:01:1F:9E:59:39:7C:7A:18
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019E216D15453E21FEC982945A2B92FC6760
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 1899
Signing time: Wed 13 May 2026 13:00:57 +0000
Manifest this update: Wed 13 May 2026 13:00:57 +0000
Manifest next update: Thu 14 May 2026 13:00:57 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: YnoJplU+Fstpsej7aDYKFvo47H2j7baz8WgXq00Jmi8=)
2: FFrrJg1f7sBn9CMNkWOHWkncPKA.roa (hash: RRbiIEi7LB7ItO/8kZqYNCorz0xLwEEZeK7jHRHtAV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:15:45:3e:21:fe:c9:82:94:5a:2b:92:fc:67:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: May 13 13:00:57 2026 GMT
Not After : May 14 13:00:57 2026 GMT
Subject: CN=7a6398da92e752e0ebd63b49011f9e59397c7a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:61:1b:9a:f5:ae:e4:11:db:0c:24:85:94:d4:
20:e0:17:e5:28:16:6a:a5:15:a6:43:0f:4f:a1:f4:
1b:77:76:0f:b7:57:08:4e:2c:29:a4:ce:81:f0:81:
11:4f:e5:1c:76:df:bb:ea:83:29:5e:b0:e0:c9:41:
44:d2:45:b3:63:3e:f8:27:e2:a4:4e:0a:1b:8b:76:
ae:00:f0:b3:99:fb:9e:bd:f2:38:44:2e:97:27:e5:
db:a8:ac:e0:75:73:92:28:10:35:2b:01:ac:f1:92:
68:0c:6d:53:52:f7:7f:e5:e2:fa:3f:e4:9f:93:38:
9d:c8:d7:d8:70:b9:2b:c0:f9:3a:fd:28:03:7e:3c:
f5:8e:30:21:0c:21:64:6e:85:8a:c0:d8:77:3f:0c:
aa:4a:26:1b:b6:6a:db:9e:0a:74:de:1c:70:6e:2c:
09:8f:65:75:c6:0f:6c:e0:fd:a0:e7:21:18:24:91:
3c:3a:fa:a9:10:5d:8f:77:f6:70:a5:cb:b1:14:6a:
a9:f9:e0:4c:54:e0:a9:6d:2b:7a:c6:5e:ca:8a:40:
fd:07:13:79:f3:11:92:bc:83:dd:a6:28:cd:ad:ac:
05:23:3e:d2:b9:71:be:64:6e:5b:f2:14:04:34:66:
ad:ef:2d:2e:7b:cb:2e:26:c6:52:7b:b8:35:ac:4c:
a2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:63:98:DA:92:E7:52:E0:EB:D6:3B:49:01:1F:9E:59:39:7C:7A:18
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:a4:9b:64:2a:51:7a:84:2d:44:e8:bc:e4:cd:9b:05:24:6a:
70:71:5e:0f:28:25:fa:a9:c3:9b:b2:c9:e5:46:20:ed:2d:3c:
74:91:6a:51:c5:ed:b8:ef:2c:0f:48:1d:00:2e:86:34:22:7f:
01:a2:f5:1b:e9:40:71:2c:31:15:42:32:1e:f9:36:01:22:a3:
c4:c4:e1:2c:a4:9d:03:eb:c0:79:78:6e:e6:1a:23:21:86:aa:
e3:c8:a6:b1:73:53:6a:51:c0:35:d9:04:59:0a:6d:04:4d:0b:
12:a9:b3:3c:c1:0f:9f:d4:9d:b9:7a:ab:35:97:15:cb:2d:14:
02:99:b5:a0:96:64:48:cf:db:41:d3:db:2b:c1:aa:60:40:81:
aa:89:73:cf:91:65:a7:2a:c5:51:f4:80:35:c8:4b:96:53:38:
a2:55:e4:ad:7a:2b:45:ab:ed:e2:29:51:59:df:60:08:db:6c:
79:2a:30:62:fd:05:57:67:b2:36:82:2c:c4:f4:b4:3f:e3:bb:
a5:0d:dd:16:54:be:1c:e4:f8:7e:3b:9d:2e:44:43:99:6c:49:
73:01:42:25:0d:71:10:54:79:47:29:50:3f:eb:87:38:36:cd:
cc:c3:58:bf:cc:e5:5c:f8:c1:1b:b7:d2:dc:5b:d3:9b:60:ae:
f9:31:8e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:32:39 2026 by rpki-client