Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: qFLD7qPYr/01eV9ABhL9iuHEJrSc6BJpnbY09BKj+E4=
Subject key identifier: AB:8B:E3:8E:C5:BC:32:AE:2F:E4:ED:3B:17:36:43:2B:88:B6:D0:C9
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 019E1D2301811C7770843122898C3A9957AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0D77
Signing time: Tue 12 May 2026 17:01:33 +0000
Manifest this update: Tue 12 May 2026 17:01:33 +0000
Manifest next update: Wed 13 May 2026 17:01:33 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: MsNAYoE9M4fekbKCPg6/4GF3pNDxTzWalTjGMMaYRLE=)
2: _ioUT6ot6spKYeitBH6WHig08aI.roa (hash: lPf90VagjG9YZhFPp1sns8p7TmON2JIuqMSkRErr21k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:01:81:1c:77:70:84:31:22:89:8c:3a:99:57:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: May 12 17:01:33 2026 GMT
Not After : May 13 17:01:33 2026 GMT
Subject: CN=ab8be38ec5bc32ae2fe4ed3b1736432b88b6d0c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:80:0c:9c:4a:dc:57:b5:36:af:c3:af:28:9d:
02:6d:5b:42:f5:19:f0:20:50:f7:2a:6b:fa:e3:33:
2f:a8:41:15:29:35:04:7d:93:f9:c3:d5:a4:8d:ba:
6d:a3:83:2e:dc:19:bf:76:d6:1b:58:f7:da:dd:3a:
c5:f9:9e:1d:e2:5c:51:62:43:40:e7:4e:70:f9:a9:
79:c0:2b:76:95:e1:7d:90:c5:ac:44:56:2f:49:73:
44:87:d9:a3:f8:d9:ae:75:d5:1c:43:57:03:cf:3d:
18:eb:c7:6a:46:14:1b:d3:35:fa:67:0c:54:07:6e:
f3:83:c2:a1:1d:d8:f7:44:60:34:eb:db:25:62:2c:
cc:f0:6c:49:92:3a:4b:73:25:33:d7:7a:f1:b1:d9:
23:ec:ec:13:22:30:ea:89:ff:c1:75:c8:2d:9d:97:
b7:57:26:9c:b4:b1:4b:1f:db:8d:9b:f6:08:ef:65:
3e:77:38:b8:9c:d5:a5:c3:c4:8a:29:5c:10:cf:a4:
6b:e5:40:3c:d9:18:f1:ff:11:9d:92:f2:20:ba:a1:
0e:88:84:4f:47:5e:63:7c:60:98:72:05:03:c6:6b:
14:2c:c5:95:6e:a7:03:34:cb:28:c3:b6:5d:7a:cb:
27:d6:55:10:6c:38:b6:00:03:79:82:a0:47:c3:39:
40:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:8B:E3:8E:C5:BC:32:AE:2F:E4:ED:3B:17:36:43:2B:88:B6:D0:C9
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:12:0a:90:30:a2:81:d0:e4:2f:aa:48:5f:33:fb:b2:c8:d3:
df:cf:1b:4e:e2:ec:1b:17:aa:69:6e:7a:88:2d:aa:c9:8f:a0:
78:22:3b:2f:d0:f6:97:15:01:79:ed:95:1c:91:30:1e:53:0c:
36:45:25:a8:3f:90:1c:ab:df:fd:b9:ca:df:23:8b:b7:a9:3a:
ca:97:04:ac:1a:44:ca:ba:a6:79:9c:68:5b:6e:ad:b1:7e:b5:
ad:c2:38:f5:3e:3a:be:e5:38:2e:23:35:98:6a:0f:19:e8:c4:
1c:81:fc:58:27:fe:0c:86:94:80:2e:6e:d6:26:28:c1:9c:59:
71:2d:be:f0:6a:2c:bf:2a:38:6b:ff:e1:2e:f9:62:5f:22:0d:
a3:81:87:aa:5a:73:0b:03:e5:23:94:45:f6:bb:ef:f8:9d:87:
e1:46:d9:ad:49:37:a4:99:e8:32:8d:6e:70:68:c7:4d:1f:58:
2e:ee:57:b6:9e:39:01:f3:bb:1a:9f:2c:63:03:bf:1a:d1:fd:
52:45:27:00:22:e1:29:b3:40:d5:54:47:2c:a5:84:0a:67:2a:
1f:fd:6d:ea:87:46:a5:a7:3c:6f:8a:2c:4b:27:41:1a:0a:20:
50:98:f8:8e:c0:ea:f5:d4:fb:bc:91:40:7e:51:65:fd:62:db:
eb:79:61:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:12:37 2026 by rpki-client