Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
File: 3ohLjkYvPsE6QCTWaamdlK8FzbI.mft (raw, json)
Hash identifier: awmViijMnr9/sEKj9x50knYPayvhlt73GidTZ+0zP1E=
Subject key identifier: 48:25:D1:CE:68:51:2F:26:AC:A2:56:37:76:3E:A3:8D:F2:6A:7F:CA
Authority key identifier: DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
Certificate issuer: /CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Certificate serial: 019E1ED9FB840309C86AC6D6548E247E801D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
Manifest number: 09B6
Signing time: Wed 13 May 2026 01:01:02 +0000
Manifest this update: Wed 13 May 2026 01:01:02 +0000
Manifest next update: Thu 14 May 2026 01:01:02 +0000
Files and hashes: 1: 3ohLjkYvPsE6QCTWaamdlK8FzbI.crl (hash: uifZ638XWPWzZXDoudzGOtAVtZbRki6AQ1zjiWMIyfM=)
2: KyIGNZFDdjiF9uvViG3nRW9Bmw8.roa (hash: DzYiLKcYFU2Q0VtZNwQkwth/5N+BuGWGx0hMS551gkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:fb:84:03:09:c8:6a:c6:d6:54:8e:24:7e:80:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Validity
Not Before: May 13 01:01:02 2026 GMT
Not After : May 14 01:01:02 2026 GMT
Subject: CN=4825d1ce68512f26aca25637763ea38df26a7fca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5b:a2:02:5b:b8:78:b0:87:15:1e:79:9e:8a:
c6:e5:3c:42:38:2d:c2:46:f6:a6:68:65:b6:b6:e8:
01:88:0d:68:7a:6d:66:91:08:68:d2:84:73:b4:61:
2f:6f:d2:db:b4:47:07:52:2f:90:1b:eb:61:f8:2b:
d5:f6:13:2a:b9:23:7b:16:8b:ed:6c:e5:10:17:95:
b3:34:4f:0f:36:53:18:19:ce:48:a0:f8:4a:47:46:
b9:3b:f5:7a:3f:1b:27:a0:37:74:70:85:88:de:48:
2c:4f:2d:6b:d6:9b:43:62:55:10:6e:00:75:93:c7:
7c:39:60:3b:5a:af:ef:b9:39:92:4e:23:71:58:42:
d3:50:8a:cb:6c:7b:c5:e9:94:c4:06:26:31:42:b5:
32:16:5b:0c:72:67:f0:c6:a1:4e:28:53:3b:e9:52:
d4:40:3e:3a:95:bc:28:b2:ad:17:aa:17:1b:dd:09:
c8:db:a0:41:51:90:74:d4:9d:9d:e4:eb:59:46:d9:
56:ad:a9:30:b0:dc:c8:fe:4c:84:2b:78:3f:b3:eb:
1b:d3:6e:33:84:07:eb:52:08:64:32:e0:68:b5:b1:
70:25:2f:e3:c1:ed:ac:16:db:8d:0a:a4:5c:78:df:
57:90:fe:f0:0c:fe:00:9f:5b:75:e9:da:7e:de:6e:
d2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:25:D1:CE:68:51:2F:26:AC:A2:56:37:76:3E:A3:8D:F2:6A:7F:CA
X509v3 Authority Key Identifier:
keyid:DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b8:d2:1c:d6:3a:a2:98:1b:16:28:e7:e4:23:a5:45:ed:71:
74:5f:90:00:e0:47:1d:87:20:46:b1:12:6f:b7:a8:7d:4f:9d:
ff:69:c0:85:be:7b:f4:8f:65:26:28:30:e2:ca:c0:4f:7e:77:
10:88:77:33:c5:1f:d2:73:d8:8c:5d:19:65:e2:d4:fc:16:13:
9a:85:a7:b9:4a:95:70:bc:3e:7a:6d:ad:8d:97:8e:98:ac:15:
17:92:db:17:97:95:0b:3e:24:83:bd:d4:e4:0f:2d:44:25:2e:
a1:6e:a2:f3:c6:8e:34:1e:0d:74:77:5d:19:4c:97:16:0e:ca:
04:39:8d:37:f1:83:97:d1:ce:80:dc:d3:1f:06:d4:33:9c:f8:
80:28:ec:c9:e7:ee:c5:73:1e:25:49:96:5f:90:95:ce:e8:82:
df:e3:7d:fd:04:fe:b0:fa:96:c6:45:e7:89:4d:e1:b7:6b:5e:
88:33:52:e9:b3:66:fc:4f:de:a2:6d:16:57:fd:98:df:2e:b7:
df:5f:d1:20:c9:5d:2b:83:e1:02:3e:eb:15:09:c1:49:1d:a6:
e0:6e:23:28:c0:0e:94:98:07:af:87:ae:53:98:80:84:c5:0e:
e7:1f:25:17:4a:50:98:ee:e9:bf:f8:19:6b:f4:44:78:89:bc:
21:b7:0b:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2fuEAwnIasbWVI4kfoAdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlODg0YjhlNDYyZjNlYzEzYTQwMjRkNjY5YTk5ZDk0YWYw
NWNkYjIwHhcNMjYwNTEzMDEwMTAyWhcNMjYwNTE0MDEwMTAyWjAzMTEwLwYDVQQD
Eyg0ODI1ZDFjZTY4NTEyZjI2YWNhMjU2Mzc3NjNlYTM4ZGYyNmE3ZmNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVuiAlu4eLCHFR55norG5TxCOC3C
RvamaGW2tugBiA1oem1mkQho0oRztGEvb9LbtEcHUi+QG+th+CvV9hMquSN7Fovt
bOUQF5WzNE8PNlMYGc5IoPhKR0a5O/V6PxsnoDd0cIWI3kgsTy1r1ptDYlUQbgB1
k8d8OWA7Wq/vuTmSTiNxWELTUIrLbHvF6ZTEBiYxQrUyFlsMcmfwxqFOKFM76VLU
QD46lbwosq0Xqhcb3QnI26BBUZB01J2d5OtZRtlWrakwsNzI/kyEK3g/s+sb024z
hAfrUghkMuBotbFwJS/jwe2sFtuNCqRceN9XkP7wDP4An1t16dp+3m7SZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEgl0c5oUS8mrKJWN3Y+o43yan/KMB8GA1UdIwQY
MBaAFN6IS45GLz7BOkAk1mmpnZSvBc2yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM29oTGprWXZQc0U2UUNUV2FhbWRsSzhGemJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny80NWRmNTYtZGQzMi00MzNjLWI0NGUt
NGFmNzA0MDJiMjcwLzEvM29oTGprWXZQc0U2UUNUV2FhbWRsSzhGemJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny80NWRmNTYtZGQzMi00MzNjLWI0NGUtNGFmNzA0MDJiMjcw
LzEvM29oTGprWXZQc0U2UUNUV2FhbWRsSzhGemJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAErjSHNY6
opgbFijn5COlRe1xdF+QAOBHHYcgRrESb7eofU+d/2nAhb579I9lJigw4srAT353
EIh3M8Uf0nPYjF0ZZeLU/BYTmoWnuUqVcLw+em2tjZeOmKwVF5LbF5eVCz4kg73U
5A8tRCUuoW6i88aONB4NdHddGUyXFg7KBDmNN/GDl9HOgNzTHwbUM5z4gCjsyefu
xXMeJUmWX5CVzuiC3+N9/QT+sPqWxkXniU3ht2teiDNS6bNm/E/eom0WV/2Y3y63
31/RIMldK4PhAj7rFQnBSR2m4G4jKMAOlJgHr4euU5iAhMUO5x8lF0pQmO7pv/gZ
a/REeIm8IbcLZg==
-----END CERTIFICATE-----
Generated at Wed May 13 04:56:12 2026 by rpki-client