Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
File: 3DhEUAcx1V-JiN3phVnP7QswmrY.mft (raw, json)
Hash identifier: 3jHz1nlXNgnKT9hgPLqtGYNO6ObExoeYIWQPxhuKWiQ=
Subject key identifier: 90:69:BD:40:26:BA:6D:5B:10:88:EF:73:98:0D:8A:0A:83:AF:59:B7
Authority key identifier: DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
Certificate issuer: /CN=dc3844500731d55f8988dde98559cfed0b309ab6
Certificate serial: 019E1C7D951602CB6724BCF5FFD2ECFE1F93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
Manifest number: 0401
Signing time: Tue 12 May 2026 14:00:52 +0000
Manifest this update: Tue 12 May 2026 14:00:52 +0000
Manifest next update: Wed 13 May 2026 14:00:52 +0000
Files and hashes: 1: 3DhEUAcx1V-JiN3phVnP7QswmrY.crl (hash: W8UW0inI50c4Y0hmmS5lXoXYxACgU1w1iqRd25YQK6M=)
2: DuN1FxsH-lHCVLPZStKFfBKxbwQ.roa (hash: kKKX72HBFEwm68oN45GHGePWHOJC9JK5lwTCTB/prdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:95:16:02:cb:67:24:bc:f5:ff:d2:ec:fe:1f:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3844500731d55f8988dde98559cfed0b309ab6
Validity
Not Before: May 12 14:00:52 2026 GMT
Not After : May 13 14:00:52 2026 GMT
Subject: CN=9069bd4026ba6d5b1088ef73980d8a0a83af59b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d6:8d:16:44:07:c0:8c:05:64:a6:dc:d2:1b:
82:8b:d9:ca:38:f6:9b:29:c1:7e:44:6e:d3:fe:a7:
50:2e:66:fe:8d:db:96:ba:ed:c2:85:15:a9:6b:47:
45:c1:8f:d5:35:04:e5:95:41:65:7a:01:05:c0:f6:
62:ca:4b:d9:80:bf:2b:b6:e2:84:c4:e6:f0:0c:36:
e9:fd:38:3e:05:fd:74:81:74:44:f3:9f:c5:a7:b2:
07:e5:ee:02:86:10:0b:06:0a:69:33:85:8b:e1:f6:
91:68:b4:98:b4:e9:d4:15:52:df:9c:b4:d7:40:cc:
63:1f:1a:52:5b:6d:00:c7:6a:f1:5c:93:7d:b1:cb:
c9:11:e3:3b:5a:66:d3:fa:f5:0d:3b:0e:2f:4b:8b:
7f:fe:ed:a6:11:a3:f0:c4:e3:26:5e:c4:59:2e:dc:
ea:c8:44:27:9b:46:80:aa:08:9c:8b:b0:ac:28:3a:
08:a5:c0:c6:19:9a:ec:a9:be:51:c3:5f:3f:28:e6:
e1:a7:30:c9:57:50:d1:01:40:1f:d9:2a:55:56:88:
1f:ae:80:8e:3d:12:85:ed:24:ae:9e:9d:bc:0c:32:
a0:b0:70:76:ec:dc:1a:95:59:a1:c3:8c:33:50:98:
fc:cb:55:2f:24:1d:84:5d:46:08:bb:bf:0a:cc:56:
51:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:69:BD:40:26:BA:6D:5B:10:88:EF:73:98:0D:8A:0A:83:AF:59:B7
X509v3 Authority Key Identifier:
keyid:DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:d0:d5:3b:ca:0a:14:be:a5:aa:60:43:85:4e:e5:15:5e:7f:
7c:de:09:20:58:7a:bd:e9:93:b7:7e:59:e5:88:ac:bc:06:29:
b8:d0:82:16:4c:10:1b:2d:14:87:f6:2b:09:93:64:35:16:7b:
a2:65:5c:4a:42:34:3b:c0:aa:8e:f7:da:e3:fe:07:a8:03:92:
cf:35:a1:c0:68:14:55:09:d4:2d:25:2e:5b:eb:54:31:26:6d:
93:a6:5a:0e:b5:c5:8b:26:bc:a3:96:0c:e9:9f:34:70:42:43:
60:d7:80:1e:5f:1d:d6:fe:b8:d3:25:18:54:2b:df:53:10:f4:
32:5a:c2:95:0e:bf:72:92:00:bd:b1:09:de:37:3b:77:1d:a0:
84:49:85:26:75:1d:5d:a3:21:94:9a:89:88:f6:69:95:86:4f:
41:aa:d9:70:70:ba:c8:95:8a:72:97:5d:f7:2c:bf:b2:56:5a:
29:52:4c:02:f4:42:38:8c:ae:38:b7:3d:cf:5f:b4:37:8d:c2:
3e:86:20:20:9f:6e:fd:75:47:e6:98:24:ec:e6:3f:5e:da:76:
50:8c:a1:e7:da:1b:1e:c2:00:c4:be:aa:78:32:f7:dc:be:f2:
82:eb:b6:ad:28:a2:9a:4b:a9:4f:f9:1f:bd:eb:05:11:27:9a:
e8:62:5e:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4cfZUWAstnJLz1/9Ls/h+TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMzg0NDUwMDczMWQ1NWY4OTg4ZGRlOTg1NTljZmVkMGIz
MDlhYjYwHhcNMjYwNTEyMTQwMDUyWhcNMjYwNTEzMTQwMDUyWjAzMTEwLwYDVQQD
Eyg5MDY5YmQ0MDI2YmE2ZDViMTA4OGVmNzM5ODBkOGEwYTgzYWY1OWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhdaNFkQHwIwFZKbc0huCi9nKOPab
KcF+RG7T/qdQLmb+jduWuu3ChRWpa0dFwY/VNQTllUFlegEFwPZiykvZgL8rtuKE
xObwDDbp/Tg+Bf10gXRE85/Fp7IH5e4ChhALBgppM4WL4faRaLSYtOnUFVLfnLTX
QMxjHxpSW20Ax2rxXJN9scvJEeM7WmbT+vUNOw4vS4t//u2mEaPwxOMmXsRZLtzq
yEQnm0aAqgici7CsKDoIpcDGGZrsqb5Rw18/KObhpzDJV1DRAUAf2SpVVogfroCO
PRKF7SSunp28DDKgsHB27NwalVmhw4wzUJj8y1UvJB2EXUYIu78KzFZRBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJBpvUAmum1bEIjvc5gNigqDr1m3MB8GA1UdIwQY
MBaAFNw4RFAHMdVfiYjd6YVZz+0LMJq2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0RoRVVBY3gxVi1KaU4zcGhWblA3UXN3bXJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9iZmZjNzItYmI2ZC00OTk4LWExMGIt
NmZmOGMzN2RiMWE4LzEvM0RoRVVBY3gxVi1KaU4zcGhWblA3UXN3bXJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9iZmZjNzItYmI2ZC00OTk4LWExMGItNmZmOGMzN2RiMWE4
LzEvM0RoRVVBY3gxVi1KaU4zcGhWblA3UXN3bXJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeNDVO8oK
FL6lqmBDhU7lFV5/fN4JIFh6vemTt35Z5YisvAYpuNCCFkwQGy0Uh/YrCZNkNRZ7
omVcSkI0O8Cqjvfa4/4HqAOSzzWhwGgUVQnULSUuW+tUMSZtk6ZaDrXFiya8o5YM
6Z80cEJDYNeAHl8d1v640yUYVCvfUxD0MlrClQ6/cpIAvbEJ3jc7dx2ghEmFJnUd
XaMhlJqJiPZplYZPQarZcHC6yJWKcpdd9yy/slZaKVJMAvRCOIyuOLc9z1+0N43C
PoYgIJ9u/XVH5pgk7OY/Xtp2UIyh59obHsIAxL6qeDL33L7yguu2rSiimkupT/kf
vesFESea6GJeVA==
-----END CERTIFICATE-----
Generated at Tue May 12 21:31:17 2026 by rpki-client