Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json)
Hash identifier: AgOPxP6TI3Xqawc8vObeNgO1WGI1aemvRlWLsz0sDK4=
Subject key identifier: 90:86:91:5B:1D:DD:62:B6:35:34:17:B7:F2:A1:FF:B9:52:06:8E:39
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 019E1D912A5259F6C70B9AE9018FC3D22F35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
Manifest number: 1913
Signing time: Tue 12 May 2026 19:01:53 +0000
Manifest this update: Tue 12 May 2026 19:01:53 +0000
Manifest next update: Wed 13 May 2026 19:01:53 +0000
Files and hashes: 1: 1fQajHTJp0S8KUunDd6YeyFtENM.roa (hash: mmAzmTwR/ELzJWO/mTGxkNnXnKiWntSSUF9kf4/Kzb4=)
2: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: MSppXUXWLCBoEVYDmoBTaXrRzQYjTVicVzkKOZDo/ps=)
3: 6I-aggcE89s528aMt_8CuZqJ61A.roa (hash: 1l0d6AnGSzNrEZie8Z3fZ9Fg7c3oqYcQ4vM6hMLN2Xk=)
4: AFp3F2X8yQTaBQfkM_zsF9UYmww.roa (hash: 7p1zPt6PNmGU8W+3TijuQxRqjYyJqKF96JpQUyZBeZY=)
5: EHQpUpEMo4S4SvN6ygFHQVkQJ6A.roa (hash: aL98OrOlu07CFPxf6rwXnJMO4vbO/beSHKJmE+F/5nQ=)
6: XBx3ZjkQBmOob1C1AQifpzrj3Es.roa (hash: toUyH2dFBi0jUqBudUbZQlU2ok2/b2pqbfdKdGPRAog=)
7: l6dcV9zJ9n_Ctd5EzzonA7X-jFo.roa (hash: mwxDuvlYfTCoynYTFAQOpS/BivdbtxW1voj1voq8fsg=)
8: rrxhY0T34NFm8dBURFOGg9BvJjw.roa (hash: CAUMQZvZz6QKlQgRUZEx4oRHdyyDBXGnUQ6HYMNXgDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:91:2a:52:59:f6:c7:0b:9a:e9:01:8f:c3:d2:2f:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: May 12 19:01:53 2026 GMT
Not After : May 13 19:01:53 2026 GMT
Subject: CN=9086915b1ddd62b6353417b7f2a1ffb952068e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:10:62:2e:b1:5f:97:37:50:56:7e:b8:54:18:
86:77:40:a1:9d:ba:e6:5c:43:4a:13:60:de:9c:8e:
60:4c:de:19:e9:5b:4c:fc:bc:d0:71:3a:78:63:c7:
98:4e:98:ad:8f:8a:6f:8b:58:ba:06:a8:9b:10:21:
ea:2c:6f:63:4c:06:d5:c7:66:1d:9a:ca:bb:ef:66:
d4:3a:c5:f3:dd:eb:de:06:52:74:f9:b4:dd:03:9c:
d7:68:67:09:1e:20:8a:9a:43:aa:00:45:27:a3:80:
42:e8:08:2b:9e:0e:9c:3f:19:93:d2:b1:37:a9:66:
df:c1:61:03:9a:e5:60:a1:30:13:0f:72:e3:f0:4b:
19:a0:38:c8:74:e3:33:4a:60:84:2a:40:6e:ee:4c:
b5:ec:54:3e:5f:d9:79:b1:9b:38:7b:23:e2:38:37:
fc:9a:12:17:62:76:92:df:6d:6a:6f:19:c0:7a:15:
0c:69:24:07:9e:da:58:7c:88:0d:c7:20:e5:27:fa:
21:c7:18:31:e8:38:62:8b:e9:10:b0:7b:8e:d6:1f:
2b:24:37:b3:36:73:40:7e:cb:f1:18:38:0f:11:03:
4f:d4:05:93:dd:b1:8b:8a:e3:7e:61:60:0a:d3:9a:
d1:9a:55:94:cf:40:1c:7c:f6:d8:3d:1d:9a:3c:8b:
e1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:86:91:5B:1D:DD:62:B6:35:34:17:B7:F2:A1:FF:B9:52:06:8E:39
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:3a:d2:71:1f:a7:81:32:8e:53:e0:58:25:fe:6e:0a:10:70:
22:d1:ed:38:ba:a2:2e:a8:95:32:89:dc:79:a1:0b:b0:fd:af:
2c:be:73:28:83:da:e0:bd:e3:aa:25:bf:62:14:a8:85:a7:b9:
a4:92:77:a2:dd:bd:1b:48:79:c3:74:58:76:f7:e1:c8:29:28:
5b:f7:73:df:b2:17:3f:8d:6c:fa:52:f0:53:a3:54:5a:71:e7:
a3:22:86:3e:a0:16:06:50:ec:77:7d:e7:67:b9:20:0f:04:67:
8a:59:97:66:02:46:89:98:eb:20:ca:28:54:10:07:23:60:cf:
71:8e:6c:4e:09:6d:f0:70:aa:72:1c:e0:94:7f:8b:bc:92:d4:
1f:1b:42:8d:e7:26:99:8f:73:83:7c:2a:fd:75:26:a4:38:17:
45:77:d1:b5:8e:51:e5:60:54:0e:4e:0c:7f:f8:8a:df:69:60:
89:48:c3:d6:92:18:da:95:5c:4c:4e:87:f8:97:5b:cd:9e:cd:
05:3d:ac:b0:cb:f5:aa:2a:88:5d:d2:68:32:c1:47:59:ac:6b:
26:f4:0b:1b:ef:ac:08:63:eb:69:1c:de:cc:1d:ef:d7:6d:08:
ba:c3:a3:f2:8a:c1:e5:99:00:f1:ca:4c:18:95:28:03:23:1c:
d7:23:05:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:16:05 2026 by rpki-client