Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: vK9iQPkrpXz6LXzMM5HbG0tip6j8VxcsLjh8ZIXOrm4=
Subject key identifier: DB:B6:B7:D9:77:D3:18:11:87:6F:E7:05:D4:81:30:10:19:C4:09:E5
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 019E1CEBA2292BFEE5FAB7EE45DE9D38E1D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 0D71
Signing time: Tue 12 May 2026 16:01:04 +0000
Manifest this update: Tue 12 May 2026 16:01:04 +0000
Manifest next update: Wed 13 May 2026 16:01:04 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: 7JubC2b+6S1VF72n36WPCP98TZzYiXa7rrGgeWOnu18=)
2: c52XhO4YGCrU48r6aoFS0wJifx0.roa (hash: 4+paDSnGo7aoDvCfZSAugeN0kcY8+2h3yijdRS9k2EQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:a2:29:2b:fe:e5:fa:b7:ee:45:de:9d:38:e1:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: May 12 16:01:04 2026 GMT
Not After : May 13 16:01:04 2026 GMT
Subject: CN=dbb6b7d977d31811876fe705d481301019c409e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dd:c4:77:80:b4:74:93:42:c0:16:92:61:92:
5e:a0:f2:e9:27:d7:13:14:cd:32:cb:b3:be:e2:41:
88:d4:62:68:0f:61:00:f9:9a:b3:f7:80:5f:99:ba:
ef:44:73:85:6d:04:dd:ba:98:ac:af:e2:40:63:f5:
c0:88:11:94:d5:c1:24:7f:4e:46:98:45:e8:68:31:
57:c6:8e:ca:e8:48:1a:af:f2:43:9b:60:a0:03:ea:
0f:85:9e:8e:5c:26:37:e6:b5:fa:8b:76:17:cf:78:
9d:61:13:14:6a:ea:9d:8d:f9:e5:27:1b:9a:2e:3c:
fe:1b:5d:66:9c:36:2d:f1:bb:6b:f1:0a:7b:86:6d:
73:c7:83:ea:be:dc:e5:00:82:82:50:f2:0d:2a:61:
25:4b:cc:f5:83:20:2b:e0:e5:c6:4b:bf:5a:e1:e7:
0c:0b:98:60:69:34:94:25:ae:2a:22:e3:ec:a3:ce:
c7:4c:8d:4d:1d:6b:e1:82:9e:8e:a2:93:61:f5:6e:
db:e4:08:ba:75:ac:9e:26:45:4d:7f:c3:44:b4:fe:
04:8d:d4:7e:a9:95:53:8d:21:6d:13:e5:86:7e:8a:
3b:6a:a2:1e:d3:61:06:bc:24:ee:7a:7c:4f:b7:ef:
ed:63:40:e3:6e:f1:0c:08:29:5c:cb:c9:b3:5c:44:
d3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B6:B7:D9:77:D3:18:11:87:6F:E7:05:D4:81:30:10:19:C4:09:E5
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:25:0b:e2:0e:75:a8:f0:bc:04:e5:ec:05:49:fe:5b:16:e6:
fe:8a:e5:e0:c7:37:16:a0:9a:8c:a6:79:4a:9d:24:81:67:3b:
f8:67:33:d7:bd:8a:d3:17:55:e3:72:bd:08:cf:d0:a7:5b:7d:
46:1e:ec:c3:86:23:6c:e8:0c:68:e1:d5:5a:04:11:5f:56:aa:
63:7b:e0:28:09:8a:74:15:c8:a8:51:05:c6:6f:54:f9:11:68:
f3:5c:75:b7:57:b0:d8:ce:3a:de:00:2a:97:8d:c1:d2:a3:56:
6f:c5:d6:da:1b:e0:c4:d1:05:96:42:b2:9c:b6:bb:09:c7:d5:
66:70:66:d1:0f:5a:74:58:8d:c4:67:e2:da:10:ae:a1:23:15:
18:f4:83:97:5b:1f:42:fa:ef:76:ab:65:41:83:ed:38:d6:7c:
25:2b:09:14:ee:2a:e3:26:db:09:37:6c:25:b4:bd:3f:25:30:
e8:77:ca:6a:52:82:30:fd:af:71:4d:9e:f0:d4:07:4c:87:0e:
77:45:38:f9:9b:3d:03:8c:1d:6c:ab:b7:ed:32:be:16:e5:44:
b3:f3:a0:d3:fe:29:ca:92:a9:50:3f:16:a1:9a:2d:d9:f4:80:
61:df:54:6b:e3:23:13:97:14:46:85:0d:83:05:83:33:db:8c:
f1:8d:98:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:01:06 2026 by rpki-client