Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: FYaDyf9AuGweg6WgxZSnY0lzUk6YNpynAyXS0I6pZsU=
Subject key identifier: E9:37:E5:AC:EF:57:CA:46:21:8F:25:C1:E8:4C:96:2B:D5:C3:4D:16
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 019E1DFE1DC9877698CDF5DFDD8F875E587E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 0D18
Signing time: Tue 12 May 2026 21:00:53 +0000
Manifest this update: Tue 12 May 2026 21:00:53 +0000
Manifest next update: Wed 13 May 2026 21:00:53 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: uYiO7COPMYeVrOTvMgaW7wERPqni7u3OnZrQK4i3F8Q=)
2: qVOiKU3-XCJIV1dlmVqm9Z8OCSU.roa (hash: 1b1b4ZznQQVB7nOvdHCZX+1O8620BLLwp7A6OVcEvQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:1d:c9:87:76:98:cd:f5:df:dd:8f:87:5e:58:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: May 12 21:00:53 2026 GMT
Not After : May 13 21:00:53 2026 GMT
Subject: CN=e937e5acef57ca46218f25c1e84c962bd5c34d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:85:35:a5:64:4a:9c:b6:0e:3f:0e:42:5b:cb:
11:a8:cb:37:1a:8e:5f:8a:31:9e:e2:4a:a4:05:fc:
f1:28:65:1f:e0:c4:bb:57:c0:68:18:65:bd:b8:24:
23:e7:55:f1:47:c0:f2:58:e6:2e:d0:51:a4:41:f9:
58:dd:b4:56:86:14:79:05:bc:bd:46:c9:f5:d8:2f:
4d:83:73:8d:da:52:44:08:09:1a:ee:d2:4c:8c:aa:
f4:12:50:91:20:e2:ec:f1:cf:fe:4f:9f:94:c9:da:
11:cd:fb:c9:22:df:f8:0b:bc:7f:8a:41:91:f1:27:
9f:87:52:a3:04:ff:9f:95:c1:19:6c:24:9e:6b:1e:
b5:17:08:df:f0:15:d1:de:68:59:7f:7e:06:25:78:
14:84:de:db:64:f1:5a:a1:34:17:13:ee:bd:05:cf:
12:ce:c5:8e:f8:9a:c1:02:7d:a2:c3:04:a7:12:ed:
39:8c:59:35:13:b1:95:e4:f5:31:35:e0:3f:dc:3f:
cc:bc:43:a1:e7:ca:47:f8:80:c9:d0:15:72:7c:3c:
0c:d0:77:1c:3a:6c:12:c8:3f:e4:03:4b:53:68:6c:
63:25:4f:8d:0a:dd:bd:5f:d0:02:06:c4:8d:e1:eb:
86:85:f1:59:23:d7:37:57:6f:eb:d4:a4:96:bc:76:
db:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:37:E5:AC:EF:57:CA:46:21:8F:25:C1:E8:4C:96:2B:D5:C3:4D:16
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:e0:73:91:2c:b5:5b:75:d8:1a:08:a6:44:43:e3:62:8f:ba:
14:46:86:c4:24:99:f7:07:06:f3:af:15:27:a1:3d:7a:05:cc:
6d:bb:d2:6a:21:ab:c5:72:9e:8f:68:94:a9:b5:12:35:b0:0c:
15:91:fd:b0:28:07:18:db:4d:a3:51:ba:20:23:e8:3e:19:41:
16:3f:56:38:ca:3b:b8:10:73:3b:68:8d:61:55:16:ed:4a:0f:
b6:0a:4a:48:05:27:a3:8e:56:00:31:90:ee:87:70:2a:30:98:
d4:8b:bd:a8:70:e7:19:86:a1:20:1e:18:fa:df:4a:54:71:ab:
b2:26:1d:9f:1b:bb:c1:28:32:16:fd:44:9a:15:8f:dd:7e:6d:
76:4d:30:a8:75:d3:ce:07:d0:c2:27:de:58:96:cf:e0:bd:65:
c0:96:58:a7:d5:0a:b8:c4:5a:6c:b5:f9:d6:b4:9f:f8:9a:0f:
05:f9:d0:7a:44:68:9e:7d:31:5f:40:c7:bc:08:1a:1b:81:51:
2c:2f:59:90:a3:a6:e2:8b:f9:27:d2:8f:e6:0d:ff:5a:a0:09:
27:fb:cc:b3:b3:84:ae:04:2d:36:64:cb:48:ed:f4:f4:a5:0f:
d0:8a:c3:04:e3:4e:35:3f:da:12:d8:43:09:0c:66:eb:94:c9:
8b:8e:4a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:11:42 2026 by rpki-client