Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: vs+O5y1kdgzXvCPmPU55rbdW1oHbWNqU30oUSaz4f84=
Subject key identifier: B9:38:6A:98:3A:B6:76:F5:98:C4:3D:12:E1:C6:4D:3A:72:C5:4E:D0
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 019E1D22C16CED5FE482E5FC704D4510DDBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 1918
Signing time: Tue 12 May 2026 17:01:17 +0000
Manifest this update: Tue 12 May 2026 17:01:17 +0000
Manifest next update: Wed 13 May 2026 17:01:17 +0000
Files and hashes: 1: 32lYY6uEr5NQiZ36Yw1PDpEB0LE.roa (hash: nbIrlyDfM/OsIW8q6DxR5+MKnNJS4Cwv/h7ugS3W6kw=)
2: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: 1TKBrAdNxWOkvYYkitKDSN7imF1lPuWXJXybgNidNIw=)
3: 4brBRSXd-3J0XI6W1cQMml969rM.roa (hash: HAAIbdurASwhGqOl0EqIaoNlObK5qBtHlNL6sAbPYAw=)
4: CV0Da0hDhTImPAfNEKg1Zmq-t4Y.roa (hash: gRQv5O+XgMBfojo8WrrSJ295oJBia/Hac6oJn0s/JA4=)
5: CcbOPSFowzuVmbQQQVUT4gQZao4.roa (hash: QoVwdK39dtT9IvoLSexiLLdImyTyxwcjHq7QNn6fGOA=)
6: Nmra5MQ90P6ykkpupDiPaVY1kco.roa (hash: iXU9Ga0vhV6ku1r3OaZ+HmJepE5UeaNFpriSH+GfUVo=)
7: YorSmVSKuGvPWA7DA6m1cRcL1FY.roa (hash: qU63ylCGxnEyiZbz76RKuCXngXRAm2RLSoEhfEzs9Wk=)
8: hsVsux8sHzZqQOz9MIXAz_SM6VI.roa (hash: 3Hc4odb8fRJz6qv0eC3Z9gpTtQGDv+DPG+2jWtEDSs8=)
9: vulmYW4p9PU9wnTvn-jVp44qOCM.roa (hash: MXgO5bfy+NsKZlh8zhQJtMRiH5fhuEIemBIGiWuNsdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:c1:6c:ed:5f:e4:82:e5:fc:70:4d:45:10:dd:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: May 12 17:01:17 2026 GMT
Not After : May 13 17:01:17 2026 GMT
Subject: CN=b9386a983ab676f598c43d12e1c64d3a72c54ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ac:0e:9f:20:6d:be:7b:ca:05:7b:5a:66:8d:
78:44:0b:e2:ee:8f:01:d4:22:11:23:d0:ba:c9:ef:
69:80:9e:f3:dd:39:fe:66:25:f6:cc:1a:61:b9:76:
fc:d2:be:eb:0a:d3:97:dc:a3:cf:ce:1a:fb:d4:15:
ba:ab:cd:4d:84:40:fa:9c:2b:f8:ea:c1:dd:30:af:
91:82:9c:d8:aa:e2:ca:ad:b2:c1:a2:86:d7:f4:52:
bd:31:ac:f7:c9:0d:08:91:fa:ac:ee:65:13:fe:30:
80:b8:57:f8:a9:82:cc:5d:9d:d3:6d:f5:6e:19:14:
e3:7e:51:90:56:46:52:59:d9:54:62:22:f8:9c:e6:
77:4c:e8:3d:17:9c:a0:f5:f6:0d:e2:ee:5b:21:c1:
25:f6:db:4a:c0:72:fa:7b:0d:09:9e:b7:b0:84:23:
59:f7:73:06:1f:5d:18:28:12:01:44:5e:d7:5b:aa:
d7:a0:5c:9c:e0:3d:db:07:dc:ba:51:f6:27:95:d2:
39:62:c0:0e:47:37:e5:0c:6c:ff:c2:6a:b4:a4:9d:
13:c1:4e:99:af:45:ae:98:1b:89:ca:49:d9:5a:cb:
12:9c:e6:ad:92:dd:50:b8:bf:25:78:e0:06:6c:bf:
0e:0a:a2:8e:32:c2:e5:00:72:84:35:9c:59:bf:c3:
cd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:38:6A:98:3A:B6:76:F5:98:C4:3D:12:E1:C6:4D:3A:72:C5:4E:D0
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:8d:71:7c:a0:d3:db:ac:88:39:68:80:46:d5:ce:3c:49:7e:
c3:02:89:d2:52:d3:12:63:f4:8a:0d:bf:ec:9b:e5:55:6d:d2:
29:53:35:d3:19:8b:56:12:f6:af:6a:8d:23:f5:d5:73:29:26:
03:22:dc:32:6f:27:1f:fb:e4:6c:f5:0f:71:c1:ae:23:fb:71:
33:22:0a:31:d6:37:3f:66:ba:5e:a8:a2:4c:eb:6b:f5:c1:58:
ca:7c:65:e9:50:56:9e:eb:e4:bd:60:6b:7e:75:0a:8f:60:5d:
b1:7c:c5:cf:e6:d4:23:75:0a:e6:01:3a:c2:83:b1:42:51:63:
bc:c6:86:2e:34:14:53:f8:5d:49:2c:53:78:c0:47:e9:f6:0b:
ec:43:c0:a2:49:ca:b7:c3:09:0a:aa:b3:e3:f8:8a:81:10:c2:
c4:a9:3a:1b:f6:ea:ca:91:3f:59:fa:d7:ac:5f:5b:cc:2c:a8:
45:c0:90:aa:11:93:cf:db:ee:10:8c:49:b9:4d:2b:72:d7:f3:
51:92:f4:cd:ea:8b:9a:57:f7:02:86:d3:bd:06:c9:53:37:26:
5f:3b:73:62:40:aa:5a:fb:40:c8:30:30:34:e3:f0:36:a8:1f:
19:bc:92:ac:6e:62:18:35:1c:b9:c7:99:d4:a4:f4:27:23:c7:
50:5b:bc:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dIsFs7V/kguX8cE1FEN29MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4
MTNjNWYwHhcNMjYwNTEyMTcwMTE3WhcNMjYwNTEzMTcwMTE3WjAzMTEwLwYDVQQD
EyhiOTM4NmE5ODNhYjY3NmY1OThjNDNkMTJlMWM2NGQzYTcyYzU0ZWQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA46wOnyBtvnvKBXtaZo14RAvi7o8B
1CIRI9C6ye9pgJ7z3Tn+ZiX2zBphuXb80r7rCtOX3KPPzhr71BW6q81NhED6nCv4
6sHdMK+RgpzYquLKrbLBoobX9FK9Maz3yQ0Ikfqs7mUT/jCAuFf4qYLMXZ3TbfVu
GRTjflGQVkZSWdlUYiL4nOZ3TOg9F5yg9fYN4u5bIcEl9ttKwHL6ew0JnrewhCNZ
93MGH10YKBIBRF7XW6rXoFyc4D3bB9y6UfYnldI5YsAORzflDGz/wmq0pJ0TwU6Z
r0WumBuJyknZWssSnOatkt1QuL8leOAGbL8OCqKOMsLlAHKENZxZv8PNowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLk4apg6tnb1mMQ9EuHGTTpyxU7QMB8GA1UdIwQY
MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt
ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli
LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFY1xfKDT
26yIOWiARtXOPEl+wwKJ0lLTEmP0ig2/7JvlVW3SKVM10xmLVhL2r2qNI/XVcykm
AyLcMm8nH/vkbPUPccGuI/txMyIKMdY3P2a6XqiiTOtr9cFYynxl6VBWnuvkvWBr
fnUKj2BdsXzFz+bUI3UK5gE6woOxQlFjvMaGLjQUU/hdSSxTeMBH6fYL7EPAoknK
t8MJCqqz4/iKgRDCxKk6G/bqypE/WfrXrF9bzCyoRcCQqhGTz9vuEIxJuU0rctfz
UZL0zeqLmlf3AobTvQbJUzcmXztzYkCqWvtAyDAwNOPwNqgfGbySrG5iGDUcuceZ
1KT0JyPHUFu8Vw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:26:18 2026 by rpki-client