Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: Ywv+AZfUFdq6Ns5eeNJSr++yJDFy1ix/gt7E7reHM7s=
Subject key identifier: E8:31:83:05:A7:AE:C4:4D:6D:A0:9C:28:8D:E5:7D:23:96:54:01:92
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 019E1E34D008BE3AC0B20BC29EE32FBAA748
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 10EF
Signing time: Tue 12 May 2026 22:00:37 +0000
Manifest this update: Tue 12 May 2026 22:00:37 +0000
Manifest next update: Wed 13 May 2026 22:00:37 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: Ax8tBktpjKKld+M1E2Nut4ttrRYCCmAFHxjbaUOD4dE=)
2: 41nL5ZV4qJFS5Q2xxQRuLMPoip0.roa (hash: BJiNQu65WQwhnTLfbv69MpyE5IwMrQPr3mJhDc7s1uM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:34:d0:08:be:3a:c0:b2:0b:c2:9e:e3:2f:ba:a7:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: May 12 22:00:37 2026 GMT
Not After : May 13 22:00:37 2026 GMT
Subject: CN=e8318305a7aec44d6da09c288de57d2396540192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:42:78:58:de:40:b8:34:a9:4c:2f:e7:3f:ac:
ae:13:fa:1c:e1:63:fa:1c:c8:a5:d6:f0:2c:5b:3f:
28:06:3e:e3:bc:4b:4e:be:7a:58:2c:5a:e3:5d:3e:
cf:e1:45:0d:a0:66:28:af:d0:21:6e:ea:e7:45:b3:
00:e5:81:57:a7:12:0c:40:db:48:f3:95:eb:7e:6e:
e5:2a:39:28:06:36:2b:f5:51:8e:68:1c:00:94:95:
ae:ba:de:4f:e2:12:5c:98:36:4f:97:6e:3d:09:82:
4f:b8:eb:77:6f:e9:12:96:21:c4:e7:9f:33:8a:d4:
72:7a:ee:cf:db:b7:c6:21:e9:b3:6c:58:62:18:f2:
c8:5d:6e:ef:c5:45:58:30:43:48:06:0d:a7:24:67:
da:c7:37:bd:d0:cb:a2:62:24:4f:80:02:5d:0f:dd:
5f:24:da:29:f6:dc:52:67:bb:6a:89:f4:9b:58:b1:
28:1b:81:9d:0e:7d:db:64:64:49:3a:b4:dc:01:45:
71:d5:b8:b7:c5:ca:29:6a:c7:c0:13:6f:7e:d2:f4:
ee:ec:d9:55:35:22:4b:69:50:65:33:9b:1a:f0:0e:
6c:b2:73:5d:83:99:65:3b:3d:1f:ec:f7:71:35:79:
1b:7c:0d:de:b5:d8:c0:e0:44:58:31:cc:eb:7b:be:
6f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:31:83:05:A7:AE:C4:4D:6D:A0:9C:28:8D:E5:7D:23:96:54:01:92
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:29:65:f3:f5:47:09:44:d4:3b:55:65:da:eb:0f:9d:d4:c5:
49:6d:73:06:1c:1a:0b:0c:17:d1:91:47:cd:de:0b:6c:0a:41:
de:40:90:96:c9:e7:df:d0:22:f1:61:af:29:b1:ee:34:53:42:
a0:f8:5a:38:19:49:bf:9b:cf:3c:2d:39:70:f8:b7:86:64:7d:
01:a1:99:25:e7:8a:26:61:0b:06:96:a0:d1:f5:f1:f4:d8:48:
3f:e0:d9:97:54:d6:62:7d:1f:9d:96:ad:b9:f9:10:de:7d:1e:
e2:4f:c6:eb:e4:d3:b1:ca:fa:72:25:9d:ef:16:4d:03:09:d9:
34:36:f3:14:ca:bc:48:15:12:44:de:bb:21:2d:05:09:4a:58:
2e:ef:dd:51:3e:aa:a6:03:fa:e3:06:16:0e:3b:df:52:42:91:
42:a5:85:db:f3:ea:e3:77:45:7c:2b:ba:f0:32:eb:53:f4:a3:
ae:2a:21:5a:2c:3f:5c:02:60:c2:d1:2b:4d:56:d0:97:a5:be:
e4:72:87:e3:53:96:31:11:59:08:60:af:d9:44:f9:21:f0:c5:
55:f4:7a:3e:15:40:a1:2a:6d:c6:e2:8b:7e:56:d6:eb:05:9b:
11:87:6f:d2:60:d3:71:de:c9:51:af:71:63:d4:ca:c8:4a:2c:
3f:96:48:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:39:06 2026 by rpki-client