Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: WIA5fhYSpD5QW84QXQiH+7N+GlnzwP+zdkEqmMWX7Qo=
Subject key identifier: 8C:06:5A:89:9A:81:00:0F:1D:A1:0C:24:D4:A0:66:12:C9:24:AD:72
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 019E1CB479C5D2DD049DE95111E34C818325
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 15:00:50 +0000
Manifest this update: Tue 12 May 2026 15:00:50 +0000
Manifest next update: Wed 13 May 2026 15:00:50 +0000
Files and hashes: 1: 36CB5eigCHYIuRmXqrnDW_-F3Xc.roa (hash: KcH/S3GFg0T0gWVpA5XkZVyUjTJRMZNW3hzXP6Ng0zo=)
2: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: 5udjvS/5iYLkCdRZT044ECkJJmfz1DyEopjOgfwsNRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:79:c5:d2:dd:04:9d:e9:51:11:e3:4c:81:83:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: May 12 15:00:50 2026 GMT
Not After : May 13 15:00:50 2026 GMT
Subject: CN=8c065a899a81000f1da10c24d4a06612c924ad72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:17:dd:5e:cc:66:b4:8b:e6:6c:63:40:71:af:
35:ec:36:c0:7f:92:46:79:c4:b7:37:61:ef:62:ff:
13:a0:eb:02:7e:ac:26:3e:d6:3a:e9:38:54:58:db:
cd:4b:c8:7b:66:25:0b:b6:bf:c1:a1:40:6e:4c:9f:
4e:10:76:2e:93:48:40:9c:69:5d:63:fb:1f:5f:27:
b5:14:26:a6:78:37:b9:c9:f5:4c:23:3e:32:e1:0c:
f9:b6:78:27:d5:80:d3:8a:16:78:fb:56:7d:57:9e:
d3:0f:68:6c:22:09:56:ce:64:6e:04:a5:62:68:00:
c6:88:d5:a2:21:dd:4a:10:eb:f0:bc:d0:5a:b2:d6:
4b:db:f6:82:f3:48:31:8d:d8:26:54:a5:69:64:aa:
6d:d6:dc:a1:d0:5f:3f:68:c2:2f:0f:3f:08:9c:3c:
5d:5c:46:4a:16:f6:88:f7:92:23:82:2f:e7:f5:1d:
9f:7a:53:11:a9:6e:9f:a7:b2:18:ce:4e:84:70:03:
50:da:fa:f0:cc:92:c6:50:7e:45:71:3c:86:23:bb:
4d:f8:72:13:d1:a9:ab:d0:d1:fe:34:7a:3d:08:12:
a8:46:0f:79:32:40:c0:16:1b:1e:ec:ce:83:36:b4:
9b:cb:07:f4:ff:bf:70:9e:7d:57:65:2b:d4:db:b1:
71:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:06:5A:89:9A:81:00:0F:1D:A1:0C:24:D4:A0:66:12:C9:24:AD:72
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:6f:c2:59:a7:9a:88:ff:ef:b8:9d:23:e3:cc:3d:b3:26:eb:
14:6c:5b:ec:ab:4a:8d:26:17:90:3f:31:22:b7:e3:54:49:ad:
86:fe:a3:f7:b6:01:a9:43:b8:68:bb:b9:c6:5f:0e:ac:1f:f2:
a4:1d:ce:41:7a:56:e8:76:3a:40:12:fe:92:a9:47:13:42:38:
7e:66:85:ed:c1:90:87:f5:0f:05:31:70:4e:01:d7:d5:32:f6:
74:9e:71:6b:8c:b6:9d:25:e9:fb:32:5c:57:d1:eb:22:c3:30:
bd:51:87:6e:4c:07:b8:e9:8d:35:9e:b9:5b:dd:32:5a:f5:7c:
d0:58:4d:56:da:ea:eb:1c:8a:23:7c:f8:67:0f:17:56:85:46:
c2:59:fc:f9:0d:70:a5:66:b1:14:21:15:62:4a:da:ad:92:d1:
40:8f:f9:e2:ec:6b:ae:b2:13:6a:2f:ad:18:5e:0f:3a:68:84:
a9:d9:86:04:80:85:8a:e3:76:79:7b:e6:a7:f9:cf:17:ce:b7:
79:6f:76:19:de:e0:ee:2e:53:df:07:11:72:57:69:e6:67:b5:
fa:4c:17:7e:27:b0:5c:8b:5c:fd:c3:3e:b2:03:b1:6c:ae:59:
b0:74:31:ea:37:49:99:6a:7f:ab:d3:5c:92:bc:19:2a:9b:cb:
c6:b3:b8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:14:34 2026 by rpki-client