Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: 3DxVjF7MPV0FLf2MWBnf8zezC3vN+GmIh/XM/fdo0f8=
Subject key identifier: 7A:18:64:92:D2:20:04:C7:FC:15:87:BB:92:61:A9:F6:7C:34:A0:79
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 019E1D2295DD47871C78EE037F976DFB3E66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 13A0
Signing time: Tue 12 May 2026 17:01:06 +0000
Manifest this update: Tue 12 May 2026 17:01:06 +0000
Manifest next update: Wed 13 May 2026 17:01:06 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: anhpuH9hRsCkJ40qQQRwoIuw4JZcHB9cZgNGxCDkBhQ=)
2: BsyNzVaxxAwnI04Dd9aOhMe6ucE.roa (hash: 0aNXoEKl0ws+Toia/ObhW+i07V56stDq9dLrY8oS6mU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:95:dd:47:87:1c:78:ee:03:7f:97:6d:fb:3e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: May 12 17:01:06 2026 GMT
Not After : May 13 17:01:06 2026 GMT
Subject: CN=7a186492d22004c7fc1587bb9261a9f67c34a079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6c:fa:aa:a3:42:06:c0:31:0a:4f:ba:61:d1:
30:e6:24:a2:fe:39:0b:2a:9e:ec:63:c7:11:ab:52:
85:5d:75:85:85:ee:c8:61:8e:69:c5:75:e6:e5:6d:
a1:1d:f3:30:b8:98:b6:16:ea:95:a7:45:71:01:e6:
c7:72:0d:5d:fb:09:1d:23:f3:60:64:5e:b8:d0:a6:
9d:69:18:e4:93:8c:7e:72:a3:89:78:2d:f0:d6:6a:
c1:f7:62:4a:5a:77:e0:46:45:66:82:be:0a:e5:20:
05:bb:cb:c3:b2:cd:8f:70:46:ba:0a:78:51:39:7a:
d3:d6:1f:0d:68:73:1e:00:3d:a1:f6:e2:89:c5:f4:
b0:6a:a6:76:b1:cd:ff:1d:54:3a:c1:3f:ad:75:c8:
e7:fa:1d:80:18:89:60:0c:83:d3:12:b2:55:04:61:
67:11:29:9e:da:b3:cd:f4:c0:36:71:9a:e3:47:5e:
fc:59:47:6a:98:b4:ad:0f:9c:a2:d9:81:5e:62:29:
ec:f8:43:ac:7f:7b:03:a0:c3:57:9d:5e:f4:2a:35:
2e:dc:48:c9:5e:b8:aa:31:89:8c:98:30:6f:b8:b8:
13:61:74:59:96:93:c3:b8:71:3b:b7:0f:e2:16:7b:
cc:df:d0:a5:74:3b:f6:fc:41:fd:bf:67:5b:a3:ab:
c2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:18:64:92:D2:20:04:C7:FC:15:87:BB:92:61:A9:F6:7C:34:A0:79
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:55:94:86:fb:2b:a7:33:f3:fd:48:7f:57:87:f7:8b:57:6e:
9e:30:8d:3e:21:6c:0c:47:a3:3c:03:56:c9:07:65:d1:31:af:
98:80:d9:8f:5f:77:4e:b4:37:93:83:ce:3e:8c:c5:49:82:7b:
13:60:1f:7d:4c:1d:24:5b:09:f9:b3:7a:0f:1b:ae:c8:98:0f:
0a:0a:7e:74:04:d0:19:18:f5:40:d6:02:c2:17:d9:d1:7c:b2:
27:14:13:dc:b4:a1:ce:b4:a7:1e:a6:c3:32:bb:21:97:90:d3:
f2:d8:d2:4d:0b:8e:71:af:95:14:9a:df:45:ab:8e:8d:df:cd:
d7:a4:87:13:40:c2:f7:39:63:0b:d3:e1:19:61:99:d4:ab:4a:
11:b3:b5:19:f2:82:e7:78:89:ec:d3:c0:b7:f9:4d:c5:fe:7a:
83:d0:d8:32:7d:92:7b:94:cc:81:44:a3:1b:f7:e8:6a:de:bf:
7a:eb:5a:92:19:76:d1:53:82:2a:48:b0:e4:ae:f1:40:e3:d1:
84:73:a6:e4:68:cc:27:d8:7d:17:53:5e:74:af:3d:a4:27:3e:
9c:f4:0e:8b:b9:f3:3c:9e:cb:a3:60:fb:ad:3a:42:da:df:5d:
66:e6:95:ee:a0:68:e6:33:fb:8f:a6:79:30:18:51:d1:2e:46:
13:6c:39:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:17:02 2026 by rpki-client