Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
File: 3EFBHpPiXV7GUJlWmxtcX63Brj0.mft (raw, json)
Hash identifier: SSp624M8K7z+l89CExtZmwDccSwqIV5+GZqXw99QOZY=
Subject key identifier: 68:33:F5:5A:11:58:96:17:2F:58:CC:F3:19:B5:14:90:EA:2E:51:1A
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 019E1F11061F5B80E56AA6D28992B18136F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
Manifest number: 14D1
Signing time: Wed 13 May 2026 02:01:09 +0000
Manifest this update: Wed 13 May 2026 02:01:09 +0000
Manifest next update: Thu 14 May 2026 02:01:09 +0000
Files and hashes: 1: 2uJAkewiUJwsbNaj2yvunQboIco.roa (hash: FFjpTcabKOY4bvHAqUpVIWDG0dv6yHtpa4jSe9dcbIQ=)
2: 3EFBHpPiXV7GUJlWmxtcX63Brj0.crl (hash: UShX+Jdjcy7By2Md2GuV/bj56EqJ8dp+6MgMcDgl2/I=)
3: B1STsfdesV5NfTBKRKCVN2ABrCw.roa (hash: NWB6mpqgZNqK5Ki19/Fr7idV+OhlroMe3Jwdlj+J+M0=)
4: VaQhwNUDpB1f377_pgDC7bKIVs8.roa (hash: yIsP2S+y7+H5E1qVaCf/heokAGlt0wDZeCh1+1PijTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:06:1f:5b:80:e5:6a:a6:d2:89:92:b1:81:36:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: May 13 02:01:09 2026 GMT
Not After : May 14 02:01:09 2026 GMT
Subject: CN=6833f55a115896172f58ccf319b51490ea2e511a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d0:ba:b7:f0:bb:98:de:0a:68:15:32:cb:08:
fa:a7:b0:f7:6a:47:4f:e6:f3:0b:d6:47:00:4f:ad:
90:83:52:01:e4:93:1b:f6:68:50:61:b2:9c:cb:8b:
a7:73:fc:57:9e:27:40:d2:48:b2:6b:1d:fc:45:fe:
3d:80:a2:63:24:7a:0b:3d:e0:eb:e0:2a:e8:56:1a:
92:35:2e:07:c6:18:a0:62:c5:24:2b:e5:88:db:cd:
12:73:4a:72:f8:d8:74:df:c0:72:7e:1a:42:9b:ae:
1e:db:1c:0b:8b:49:1c:1d:e9:72:12:bf:a0:2f:d5:
89:24:f9:e0:98:8b:cc:f0:87:aa:0a:b0:56:89:0b:
11:56:61:57:2c:70:f9:2f:92:8b:b5:a8:af:6f:cd:
c0:39:52:94:33:62:f7:50:3a:08:c8:e1:17:16:12:
aa:75:ab:d4:3a:c4:4f:7f:8c:6e:48:90:4a:b6:dd:
87:11:10:fc:fb:2e:12:0e:5f:66:6e:f9:a0:51:59:
2b:5d:5f:4a:7f:cc:37:ea:87:58:05:be:cf:6a:f0:
2a:e9:77:dd:4b:8e:11:49:57:7a:8c:17:c6:9b:0d:
7e:ba:95:c4:94:0f:c4:a3:1d:97:c5:5e:b3:12:6e:
98:20:16:d2:69:1f:6d:ac:1e:0f:04:3b:cc:a6:fc:
63:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:33:F5:5A:11:58:96:17:2F:58:CC:F3:19:B5:14:90:EA:2E:51:1A
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:ee:af:b3:94:9e:0a:9b:24:e6:76:f7:80:1a:19:6c:ff:82:
9d:d0:eb:34:15:fa:ad:5f:39:81:20:8b:51:c3:2e:af:1e:03:
67:ef:d1:4e:aa:85:fd:ee:ee:b1:50:98:60:2c:68:f5:16:06:
f5:05:15:03:c7:ef:65:9a:8a:13:fc:16:91:df:3f:b1:7e:c2:
c2:41:97:cd:2a:ae:3a:f5:3f:46:93:8b:e9:93:94:02:57:a1:
f8:20:f0:f3:a1:48:48:e0:05:5c:a3:3f:d7:15:c6:60:98:6e:
10:91:31:d7:2d:8b:02:a7:58:46:51:4e:36:8d:20:e2:ab:25:
0a:9a:71:79:23:4e:75:1b:38:38:78:c9:1f:90:89:55:fd:8c:
66:3c:9c:85:b9:01:b8:56:b7:5d:4b:96:6a:ad:44:71:c5:92:
78:26:0f:49:54:57:45:71:ee:75:b6:c4:22:aa:6b:f0:c7:42:
e8:fa:b1:26:99:70:be:36:8c:cb:0e:09:e2:64:4d:ae:2b:88:
77:45:3d:98:73:8f:fa:c4:97:3c:90:1b:8a:39:2b:80:ed:ab:
09:ae:8e:57:28:bd:49:52:c9:53:5c:41:07:cd:05:6f:27:70:
48:9e:1b:6d:b2:37:83:e5:db:8f:6f:e6:17:6d:4f:77:e4:ca:
44:2a:e6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:55:21 2026 by rpki-client