Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: Q0hLVD8ic+dYJohGeo5PTuUuzYtWSrosumiCSvqTqqY=
Subject key identifier: EE:13:8C:FA:FB:0E:2A:4D:D3:28:36:BA:A5:23:DA:62:F3:56:4C:A3
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 019E1EA327B94B466A9A42339092F2FA431E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 1846
Signing time: Wed 13 May 2026 00:01:09 +0000
Manifest this update: Wed 13 May 2026 00:01:09 +0000
Manifest next update: Thu 14 May 2026 00:01:09 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: tPih6sqr130ayxv3kA81/wYVmYsQ0Zr1/NULd1kEpH8=)
2: xU2EDS3A1kqxHB5fmWawALQua5w.roa (hash: gy/kCjpuCiDHyb5854bh+q6WsJ4/S+45FLFM/o6soug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:27:b9:4b:46:6a:9a:42:33:90:92:f2:fa:43:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: May 13 00:01:09 2026 GMT
Not After : May 14 00:01:09 2026 GMT
Subject: CN=ee138cfafb0e2a4dd32836baa523da62f3564ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7b:bf:6a:57:92:40:fc:cb:c2:35:0e:ee:d9:
b5:b3:6d:00:3d:b0:b9:d5:d5:f8:d6:6e:7e:da:19:
9e:7e:3a:4d:b4:8c:ba:8a:d5:c7:af:21:35:c5:01:
f5:38:03:b7:80:d7:df:37:16:7b:41:7c:b2:0a:64:
4a:cf:3b:e2:c0:33:29:92:41:3c:1c:c3:10:ab:50:
b8:34:a9:6e:b3:74:22:11:6b:5d:97:13:f8:2f:61:
4b:ff:7a:95:ec:8d:66:ee:e6:fa:3e:f7:0c:9d:63:
a5:f0:75:ba:80:59:ae:b0:d0:39:19:81:d0:f7:17:
73:12:89:f0:49:26:1f:1b:00:db:c1:f4:b9:87:03:
27:0b:72:99:5d:ad:50:1a:fe:1d:2f:4c:04:05:06:
a1:1d:57:19:e5:a3:49:d9:1a:4d:bf:48:4b:f0:f8:
54:78:cb:07:73:68:99:fa:25:65:a2:9f:83:23:b6:
a9:f0:18:96:8d:34:e5:0f:78:8d:5d:17:c0:c9:2b:
a6:f8:26:e3:41:90:81:b6:58:ff:42:b2:92:82:c2:
2d:37:54:de:de:e1:19:6d:b6:ac:f0:e2:9a:6d:40:
3d:3a:5f:ec:42:c2:0d:08:95:84:90:b4:7f:20:8b:
7d:3f:85:55:1a:ec:bd:64:91:98:ad:ed:62:4d:4e:
da:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:13:8C:FA:FB:0E:2A:4D:D3:28:36:BA:A5:23:DA:62:F3:56:4C:A3
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:ef:6f:69:b1:3b:a8:e9:6b:d0:4d:38:71:21:f8:fe:48:b3:
f1:df:bd:5a:ba:22:20:1c:c0:f9:01:35:b8:9f:67:ce:8a:a9:
9a:51:e8:3f:c5:66:1b:c8:bc:3a:f4:5f:88:fe:38:c1:11:70:
f9:97:3d:a6:e5:0f:e2:c5:3f:e3:90:a9:ae:7c:b6:59:01:de:
40:0f:bb:f2:19:ac:bf:7d:db:43:02:40:c4:55:c0:d4:56:6e:
18:0b:f3:41:d8:37:cb:73:ac:05:7f:37:e1:d8:6a:75:6d:5d:
0b:e1:6a:c8:ed:ed:24:3a:f9:28:0a:be:96:4a:1b:69:13:5b:
c8:ec:15:5f:c1:ce:0f:65:bc:1b:5f:8c:53:2c:3a:c9:fe:3a:
9d:1d:5f:31:0f:38:76:46:5c:51:51:a7:a7:bc:3b:7c:c0:bb:
78:7a:fc:05:97:f5:5c:cb:1b:f7:b8:af:11:c3:02:fc:e6:ea:
98:75:9c:4d:17:27:d2:e7:4b:ed:a3:45:36:b3:f8:a1:7a:ed:
29:ab:68:37:19:4c:95:fd:fc:cf:af:1c:a9:37:74:30:87:9b:
79:bc:ab:b0:7d:62:c8:bc:20:7d:26:f0:dd:02:7b:32:7f:dd:
9e:87:d0:80:e7:32:62:56:34:9d:6f:fd:46:4a:08:13:37:04:
28:68:c6:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eoye5S0ZqmkIzkJLy+kMeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMmI1Y2JmOTY3YTAzNDlkODg5NzA0YmI0ZDYxZmE1MjZh
MzFkNmYwHhcNMjYwNTEzMDAwMTA5WhcNMjYwNTE0MDAwMTA5WjAzMTEwLwYDVQQD
EyhlZTEzOGNmYWZiMGUyYTRkZDMyODM2YmFhNTIzZGE2MmYzNTY0Y2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXu/aleSQPzLwjUO7tm1s20APbC5
1dX41m5+2hmefjpNtIy6itXHryE1xQH1OAO3gNffNxZ7QXyyCmRKzzviwDMpkkE8
HMMQq1C4NKlus3QiEWtdlxP4L2FL/3qV7I1m7ub6PvcMnWOl8HW6gFmusNA5GYHQ
9xdzEonwSSYfGwDbwfS5hwMnC3KZXa1QGv4dL0wEBQahHVcZ5aNJ2RpNv0hL8PhU
eMsHc2iZ+iVlop+DI7ap8BiWjTTlD3iNXRfAySum+CbjQZCBtlj/QrKSgsItN1Te
3uEZbbas8OKabUA9Ol/sQsINCJWEkLR/IIt9P4VVGuy9ZJGYre1iTU7a2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO4TjPr7DipN0yg2uqUj2mLzVkyjMB8GA1UdIwQY
MBaAFN4rXL+WegNJ2IlwS7TWH6Umox1vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi82NDZlN2QtNGY0Ni00MDdjLWJkZDAt
ZmQ3MmQ5NjJkZjI3LzEvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi82NDZlN2QtNGY0Ni00MDdjLWJkZDAtZmQ3MmQ5NjJkZjI3
LzEvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiu9vabE7
qOlr0E04cSH4/kiz8d+9WroiIBzA+QE1uJ9nzoqpmlHoP8VmG8i8OvRfiP44wRFw
+Zc9puUP4sU/45Cprny2WQHeQA+78hmsv33bQwJAxFXA1FZuGAvzQdg3y3OsBX83
4dhqdW1dC+FqyO3tJDr5KAq+lkobaRNbyOwVX8HOD2W8G1+MUyw6yf46nR1fMQ84
dkZcUVGnp7w7fMC7eHr8BZf1XMsb97ivEcMC/ObqmHWcTRcn0udL7aNFNrP4oXrt
KatoNxlMlf38z68cqTd0MIebebyrsH1iyLwgfSbw3QJ7Mn/dnofQgOcyYlY0nW/9
RkoIEzcEKGjGNg==
-----END CERTIFICATE-----
Generated at Wed May 13 04:02:04 2026 by rpki-client