Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
File: 3_XMSEiUO0_onSznH9weT_fX8-M.mft (raw, json)
Hash identifier: AEdtzJ03e0ObLHDSOPaNNEgaexfJbUJjTjD6lxLHyZk=
Subject key identifier: DF:FC:69:B3:17:44:8D:17:88:0F:E8:79:1C:4A:56:78:05:C7:6B:1E
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 019E1DC743A6027E510D31DFE473EF11B14D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
Manifest number: 18E2
Signing time: Tue 12 May 2026 20:00:58 +0000
Manifest this update: Tue 12 May 2026 20:00:58 +0000
Manifest next update: Wed 13 May 2026 20:00:58 +0000
Files and hashes: 1: 3_XMSEiUO0_onSznH9weT_fX8-M.crl (hash: Ieds063TNnnhBl5REVgP3jEhAqmYKlWnR+H1q9AA+Q0=)
2: I_klKsqV4Xc27UFkAneEsuB-gHk.roa (hash: AkW1e4Xf71kIFS8tvO/5F4giqlxcvlPyuHSMW67qHI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:43:a6:02:7e:51:0d:31:df:e4:73:ef:11:b1:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: May 12 20:00:58 2026 GMT
Not After : May 13 20:00:58 2026 GMT
Subject: CN=dffc69b317448d17880fe8791c4a567805c76b1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:93:d7:86:78:9e:9e:66:7d:de:19:f4:f3:f1:
b6:94:06:10:93:a5:ca:ef:92:2c:fd:e2:b2:fc:11:
db:e2:87:af:e6:de:7e:d5:7a:23:57:f0:5b:82:42:
5c:47:99:f6:bc:5c:82:54:08:31:62:2d:cb:c6:c3:
e1:f1:24:e1:11:f3:68:82:95:86:a7:2b:fd:3f:da:
26:66:ef:6e:df:6a:95:5a:35:47:20:26:96:8e:93:
d0:cb:92:e9:e2:fe:75:f4:41:52:b5:9b:d8:e7:f0:
a3:5e:0c:a2:18:de:36:40:e5:45:c5:0d:5d:57:65:
3e:e0:3f:3f:b9:0b:1c:02:b6:03:a4:a8:f9:b2:ed:
60:50:4f:9a:08:b9:62:36:b2:72:9f:e6:a9:99:d3:
22:aa:3c:ae:dc:35:9d:91:51:21:fe:e9:10:7f:26:
00:23:17:3c:0b:29:31:f4:09:0f:6a:36:26:c3:f3:
80:bc:f7:7d:c8:40:24:f1:b5:4e:f4:5b:60:54:d2:
b4:61:16:74:fa:12:fd:16:8f:1d:4f:63:bd:90:85:
41:36:a4:53:b4:c3:e6:17:46:c9:83:34:d6:0a:75:
0b:10:ea:7a:15:b2:07:d6:08:c4:1a:45:dd:25:f7:
64:b4:e6:17:ca:6b:f5:90:51:db:f4:75:f8:5d:67:
6e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:FC:69:B3:17:44:8D:17:88:0F:E8:79:1C:4A:56:78:05:C7:6B:1E
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:58:65:4b:7f:74:4f:0a:a8:16:e4:87:ce:4a:1a:77:26:0e:
27:f3:b0:b7:b6:cc:e9:fd:bc:75:0e:ba:70:23:61:50:d6:ac:
32:73:48:24:52:e5:0c:52:c1:7d:0d:dc:ac:53:98:6e:0d:64:
7f:01:0e:b1:7c:66:25:e6:7d:ad:48:1a:0d:dc:7b:1a:10:33:
36:88:ad:6b:74:a2:a4:f2:24:9e:13:c1:b4:4f:98:61:ec:ec:
84:af:b2:96:f5:6a:20:e2:4b:2d:c0:ec:0a:ba:92:06:15:0d:
77:a7:88:ee:bb:79:8e:7e:83:3b:49:28:bf:48:21:8d:50:ad:
ad:8c:30:75:90:1a:ed:e3:05:18:95:f0:48:c0:19:7e:77:7a:
87:80:28:3f:61:87:fe:dc:98:7e:5c:12:7d:1d:ea:3d:e3:54:
84:ed:92:6b:f1:6a:2e:73:97:49:4d:92:a9:40:4d:19:41:4c:
91:8d:63:3f:66:da:62:53:38:7a:79:99:36:0d:7a:82:e6:9b:
62:46:fa:a0:26:76:bd:1d:db:e2:e3:5a:52:a2:1d:7d:dd:6b:
ad:7d:85:7b:04:7f:22:3f:c1:53:e5:d4:27:8e:47:c4:73:1c:
72:99:c1:53:10:f9:3d:b0:2a:ff:9b:c4:ee:39:9d:5f:c6:c4:
c2:5a:3f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:32:21 2026 by rpki-client