Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
File: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft (raw, json)
Hash identifier: hbdwMIzoA4LVTvAv+9P7vByYsm+C8YVcNHVajYpJ6OM=
Subject key identifier: 85:95:AA:E9:23:74:C0:F1:32:56:2D:23:FC:D3:57:C3:86:80:B4:E5
Authority key identifier: DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
Certificate issuer: /CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Certificate serial: 019E1CEC08D94214C8B75C6A26D6FAECB623
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
Manifest number: 0C24
Signing time: Tue 12 May 2026 16:01:31 +0000
Manifest this update: Tue 12 May 2026 16:01:31 +0000
Manifest next update: Wed 13 May 2026 16:01:31 +0000
Files and hashes: 1: 3eK1ZL7O23CEW3-d4NQhqQce6UE.roa (hash: MyvSzm1E1BuNXsJH9y2br5JSC+bFdaTi0xbtRaMTOVk=)
2: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl (hash: boJMxzOFyHBwMX7iiqCm8VK0EtotjZlzjAmOtobjSZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:ec:08:d9:42:14:c8:b7:5c:6a:26:d6:fa:ec:b6:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Validity
Not Before: May 12 16:01:31 2026 GMT
Not After : May 13 16:01:31 2026 GMT
Subject: CN=8595aae92374c0f132562d23fcd357c38680b4e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1d:fa:4f:7a:66:c7:cb:0c:86:82:cf:69:e1:
ff:cc:d5:fe:4f:3b:7a:8b:6d:ec:90:c9:8c:72:a6:
8f:ff:b7:4e:49:a7:82:c2:23:b9:f8:55:81:6c:77:
de:1c:12:36:ce:d4:cf:c7:4b:55:c1:c5:72:18:d9:
4b:33:74:e4:cd:fd:83:2b:aa:b2:cc:73:4e:19:a0:
c8:32:6f:1d:23:f2:73:5a:c0:13:ad:ee:df:9a:e7:
f8:4a:8e:79:c0:6e:b4:c9:61:2b:35:8d:6c:3f:62:
52:f4:ed:0d:39:9d:5f:6f:67:d4:17:22:4a:31:34:
cc:9a:94:a4:21:cb:a2:d5:84:c2:b9:19:84:50:6f:
a2:d8:47:80:8c:f0:2e:a7:d9:99:02:72:5f:93:fe:
59:d4:37:59:3f:43:86:5c:02:e3:51:6b:51:07:13:
0f:3e:16:f3:cc:28:b0:4c:38:ee:13:1a:a7:2c:ff:
ca:11:0e:93:49:e0:78:a2:73:98:50:a1:7a:fb:2c:
1a:a8:e0:96:1f:4f:cc:93:cf:fb:f2:42:39:2a:3c:
09:d4:02:51:70:9f:c3:9a:3f:c4:81:92:18:22:7d:
5a:b5:67:76:bb:41:98:4c:cf:a3:d5:58:2e:98:ce:
85:f4:2e:e9:6e:e5:9f:6e:fd:09:d4:ba:5e:08:63:
44:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:95:AA:E9:23:74:C0:F1:32:56:2D:23:FC:D3:57:C3:86:80:B4:E5
X509v3 Authority Key Identifier:
keyid:DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:42:ac:fb:18:bc:55:4d:34:6e:a9:ee:b6:ef:82:9c:c1:aa:
26:30:63:e5:83:8f:b3:9f:9d:ca:98:eb:2e:c2:aa:40:53:ae:
d2:69:ee:51:eb:31:ee:ad:a6:9c:37:ae:f7:b5:55:b0:ee:24:
b3:4c:29:de:5c:dd:4e:ae:d8:d0:a7:ae:01:7d:8e:3b:2b:8c:
02:76:d3:3f:85:d8:e9:e5:a2:dd:d4:7f:32:40:01:7b:af:1f:
4a:d0:ea:67:9c:85:7a:5d:95:e6:57:1c:7e:01:b1:38:34:5f:
e5:60:34:79:9a:99:1f:99:5b:7d:bd:ec:77:4a:c5:7c:db:08:
c1:46:da:74:6e:2c:a2:9a:78:93:f8:50:19:97:8a:df:5a:f7:
24:60:6b:e2:6d:f9:51:27:4a:66:89:9a:26:92:71:a3:29:76:
7c:a8:8d:55:2a:09:6a:0f:53:ee:47:3e:28:67:db:06:e1:ed:
8e:f6:6c:fb:50:72:c9:7c:4d:7f:da:11:a1:5b:b9:e4:8e:94:
95:5f:6a:e7:a7:39:d9:26:fc:5c:3c:6e:08:75:66:59:d9:8b:
fb:ac:5e:37:af:0d:51:31:6a:47:43:29:6d:8f:a8:56:ce:f4:
9a:bb:65:9d:ea:d3:be:cb:0e:35:d7:24:e4:23:22:49:5c:7d:
e4:94:89:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4c7AjZQhTIt1xqJtb67LYjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjIwYTA2ODViNmZlOTc1NGNhMjI0ODY3NzViMmQ4YTdl
OWMxMWUwHhcNMjYwNTEyMTYwMTMxWhcNMjYwNTEzMTYwMTMxWjAzMTEwLwYDVQQD
Eyg4NTk1YWFlOTIzNzRjMGYxMzI1NjJkMjNmY2QzNTdjMzg2ODBiNGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsB36T3pmx8sMhoLPaeH/zNX+Tzt6
i23skMmMcqaP/7dOSaeCwiO5+FWBbHfeHBI2ztTPx0tVwcVyGNlLM3Tkzf2DK6qy
zHNOGaDIMm8dI/JzWsATre7fmuf4So55wG60yWErNY1sP2JS9O0NOZ1fb2fUFyJK
MTTMmpSkIcui1YTCuRmEUG+i2EeAjPAup9mZAnJfk/5Z1DdZP0OGXALjUWtRBxMP
PhbzzCiwTDjuExqnLP/KEQ6TSeB4onOYUKF6+ywaqOCWH0/Mk8/78kI5KjwJ1AJR
cJ/Dmj/EgZIYIn1atWd2u0GYTM+j1VgumM6F9C7pbuWfbv0J1LpeCGNEPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIWVqukjdMDxMlYtI/zTV8OGgLTlMB8GA1UdIwQY
MBaAFN3yCgaFtv6XVMoiSGd1stin6cEeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZJS0JvVzJfcGRVeWlKSVozV3kyS2Zwd1I0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS81OTRjNzgtNGJkMC00M2Q4LTgxNGYt
NTgzNDlmNzQwZTk2LzEvM2ZJS0JvVzJfcGRVeWlKSVozV3kyS2Zwd1I0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS81OTRjNzgtNGJkMC00M2Q4LTgxNGYtNTgzNDlmNzQwZTk2
LzEvM2ZJS0JvVzJfcGRVeWlKSVozV3kyS2Zwd1I0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW0Ks+xi8
VU00bqnutu+CnMGqJjBj5YOPs5+dypjrLsKqQFOu0mnuUesx7q2mnDeu97VVsO4k
s0wp3lzdTq7Y0KeuAX2OOyuMAnbTP4XY6eWi3dR/MkABe68fStDqZ5yFel2V5lcc
fgGxODRf5WA0eZqZH5lbfb3sd0rFfNsIwUbadG4sopp4k/hQGZeK31r3JGBr4m35
USdKZomaJpJxoyl2fKiNVSoJag9T7kc+KGfbBuHtjvZs+1ByyXxNf9oRoVu55I6U
lV9q56c52Sb8XDxuCHVmWdmL+6xeN68NUTFqR0MpbY+oVs70mrtlnerTvssONdck
5CMiSVx95JSJWw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:37:43 2026 by rpki-client