Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
File: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft (raw, json)
Hash identifier: tbhYbp0qT7T3R86GguiDgakTycgbp2BKpm/19Kw5sm8=
Subject key identifier: A5:01:87:C6:E3:22:73:21:CE:A6:E7:9D:7D:11:75:B1:33:17:13:D4
Authority key identifier: DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
Certificate issuer: /CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Certificate serial: 019E1C10274355A92173BF5ACF163636CC60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
Manifest number: 0554
Signing time: Tue 12 May 2026 12:01:21 +0000
Manifest this update: Tue 12 May 2026 12:01:21 +0000
Manifest next update: Wed 13 May 2026 12:01:21 +0000
Files and hashes: 1: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl (hash: quINCtbR2+hbI/UY45HgZzkD+74AimxiE2KXFYJC2UA=)
2: _tzPs4jJj87d7Cluh9sgQm06Oy8.asa (hash: zWtQvDfWVHth5+g0jzyRaLgIhTdtWs7KPbDKeSI3a2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:10:27:43:55:a9:21:73:bf:5a:cf:16:36:36:cc:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Validity
Not Before: May 12 12:01:21 2026 GMT
Not After : May 13 12:01:21 2026 GMT
Subject: CN=a50187c6e3227321cea6e79d7d1175b1331713d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b1:eb:67:60:37:01:5e:98:f3:51:7f:e1:4b:
19:af:b1:ba:81:42:3e:2e:d1:fc:63:a0:d1:60:dc:
6f:95:ef:10:58:55:51:4e:33:b4:5a:07:86:4c:25:
0b:c1:ae:6a:df:21:e1:ae:65:71:e3:ee:48:5b:1f:
14:45:44:1d:a5:d8:05:39:f0:6e:36:e7:d5:5f:6e:
8f:72:43:7f:fd:e1:87:ff:99:9e:bf:c9:91:0c:ce:
95:23:d7:1e:56:d7:58:47:ee:16:ef:e4:a3:5d:78:
7f:f8:77:69:5b:f4:e4:e3:cb:10:9f:bd:ea:7c:c0:
e1:20:0c:d1:dd:c5:7c:91:e9:85:e1:ce:0d:18:7f:
17:25:81:c6:7c:07:03:18:ec:e5:d8:03:ba:72:95:
35:a8:18:88:5b:45:01:d6:d9:34:73:4b:1c:ac:bb:
bd:20:e6:95:ff:48:a5:c9:1f:2f:6d:30:90:06:9b:
f0:6d:05:3d:d6:d7:c9:24:8c:12:6a:66:6c:e6:d4:
5e:c2:ae:66:8a:41:65:25:6e:68:25:09:91:45:1e:
09:46:8b:ff:37:5c:bb:d4:60:23:2f:d6:bf:71:b8:
13:c3:8d:f3:df:7d:88:88:bd:6c:79:89:74:28:bb:
c0:dc:25:4e:a2:61:a6:c2:4c:08:68:18:1e:41:5c:
0f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:01:87:C6:E3:22:73:21:CE:A6:E7:9D:7D:11:75:B1:33:17:13:D4
X509v3 Authority Key Identifier:
keyid:DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:86:b9:52:30:f0:2b:84:f2:11:c2:fd:9b:3c:77:27:c4:87:
29:a1:33:f3:86:13:a0:09:4f:d2:53:23:1e:2f:a7:0c:02:ed:
2b:9b:79:4d:0d:db:92:18:b5:0b:04:96:37:24:40:3f:e7:89:
0d:44:5f:03:15:e8:5c:73:42:20:29:56:0f:32:24:d5:75:3f:
1b:ac:f5:30:91:93:c9:c8:79:40:a6:b8:80:c3:6e:e7:2f:fa:
e4:73:4e:2e:28:35:ce:32:fd:5b:82:f5:40:bb:e9:21:46:dd:
d9:de:b9:75:13:f8:f6:db:49:cf:61:42:93:46:48:83:6c:35:
85:67:88:67:47:34:dd:67:f0:45:a0:db:ef:33:cb:36:66:cc:
da:ea:82:08:55:4f:dc:c5:e5:4e:56:c2:72:16:82:e9:58:9d:
44:4e:e9:73:1a:4c:d2:9a:9d:88:ac:ed:85:4c:06:d9:58:99:
b0:b4:02:4f:45:1d:03:f0:df:15:23:9a:b8:f7:de:6c:eb:49:
93:a9:1f:1d:c2:03:16:59:e1:b0:79:6c:ba:44:ea:80:7f:9e:
7c:22:48:54:9f:fc:36:1b:b4:58:71:46:a6:31:5c:a4:88:1f:
6a:7c:69:97:24:d7:17:1d:87:39:78:db:1e:75:08:cb:14:70:
e0:c6:d5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:12:37 2026 by rpki-client