Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: 3mJpDA3TTsshd1PTqNvVYCs4bOkj4N/hV7/q8JE1Gyg=
Subject key identifier: DB:3B:FF:ED:B4:7A:64:58:16:3D:D0:1D:8B:E9:2C:64:84:9A:DD:21
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 019E1DC70B7FA8377B94121587F152E5031A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 1905
Signing time: Tue 12 May 2026 20:00:44 +0000
Manifest this update: Tue 12 May 2026 20:00:44 +0000
Manifest next update: Wed 13 May 2026 20:00:44 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: Xge5NuxE9+lpki8OFOWO/sK2t0rsiyzyBU/4KodPXq0=)
2: BVmlLvTO3TnwU-WykyLWkZijiEQ.roa (hash: GjheiEWnUhL3hO3K8TeuKDirKE8ozbAnofhtWixZIn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:0b:7f:a8:37:7b:94:12:15:87:f1:52:e5:03:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: May 12 20:00:44 2026 GMT
Not After : May 13 20:00:44 2026 GMT
Subject: CN=db3bffedb47a6458163dd01d8be92c64849add21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:aa:d7:67:d2:21:a7:59:54:15:72:49:c6:b6:
6e:f8:1e:a5:cb:32:a7:42:f2:2d:17:45:de:7f:2b:
d4:3e:42:1a:31:59:40:69:29:11:5a:b9:75:e8:ab:
3e:d8:fa:7f:1f:a9:b7:c3:7f:8a:3d:49:84:16:ae:
e6:f3:91:35:34:06:24:f6:df:d2:a0:8d:09:78:68:
5c:30:09:fe:62:a3:3b:83:a5:3f:1b:e4:f4:90:82:
3c:31:23:d1:2e:53:e3:b3:76:9a:b5:e2:6c:88:ac:
79:36:7e:ab:df:18:61:14:66:02:fd:7a:73:e9:c3:
aa:37:af:ee:29:42:86:00:e0:95:be:f7:22:a4:5e:
74:4c:3b:16:19:d5:64:0d:45:1b:69:31:87:ac:d1:
ab:20:86:f7:88:fd:6d:0f:a5:58:4d:b5:d7:77:1f:
62:ec:f2:e6:2c:b2:ac:99:12:71:f2:20:4f:ca:7f:
a2:4a:19:07:de:0d:90:f0:26:51:ce:24:f5:12:c0:
2b:4a:b5:fe:1c:7d:78:69:71:a3:70:9f:c9:97:d8:
8b:d7:0f:d3:9f:58:f4:c5:17:3f:04:de:1d:b0:4b:
73:36:35:80:e6:d6:42:0d:c7:fa:ea:1b:a9:53:f4:
70:3c:c0:5f:e2:10:8f:51:35:38:3b:13:6a:53:d8:
03:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:3B:FF:ED:B4:7A:64:58:16:3D:D0:1D:8B:E9:2C:64:84:9A:DD:21
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:b7:ae:a6:2c:e7:3a:f6:f9:f8:e5:43:5b:7c:6e:66:96:57:
c6:36:97:c2:ad:c7:e1:1c:cb:99:10:e6:8a:0a:d5:7a:67:fa:
b3:24:10:5d:82:0f:81:75:31:cc:b1:6c:5c:55:81:8a:17:8c:
a6:6f:2a:0f:0c:ca:0e:47:ba:07:64:63:aa:1b:30:2d:f8:69:
92:a3:c5:df:8e:61:62:a3:b3:ff:27:af:3e:76:7e:d8:83:6a:
f6:3e:96:77:e1:75:7d:00:2b:c2:81:c7:2f:9d:af:98:1c:d1:
87:80:aa:a4:ad:e2:6e:3d:85:31:e9:bc:2a:46:49:c7:55:65:
38:c4:e3:b7:59:93:1b:61:9e:dd:4f:1e:70:ed:d6:75:a3:b3:
a2:41:84:9b:da:97:e2:2b:db:79:bd:5b:d5:82:0a:4a:3d:de:
47:e1:bf:16:08:39:23:75:a2:ad:5a:fb:8e:4c:62:c3:52:a6:
93:40:92:11:5f:4c:58:96:e0:66:8a:28:8c:92:d2:ee:f6:56:
d6:1c:0b:d9:d1:92:f5:c9:be:58:62:c9:fa:61:f1:f7:af:a8:
6c:9a:f3:e7:72:a6:6f:97:a1:96:cc:ae:9f:8b:f5:e0:0d:c5:
8d:03:b1:1a:82:26:ba:63:7f:41:d7:19:fe:a7:92:b4:39:38:
0a:f3:42:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:30:12 2026 by rpki-client