Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
File: 3keU2fyrI-wF3d1QSKP8cgQAKio.mft (raw, json)
Hash identifier: BHPf4XBsmAhK7bsVabsZG/MMAPVj7YfJNoRHcnKL6Yk=
Subject key identifier: 19:BF:BD:66:D3:6B:1E:66:D1:49:21:56:D2:7A:47:31:43:5A:FE:26
Authority key identifier: DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
Certificate issuer: /CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Certificate serial: 019E1D5947ED516D5364BD85E5CBB8485236
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
Manifest number: 1235
Signing time: Tue 12 May 2026 18:00:50 +0000
Manifest this update: Tue 12 May 2026 18:00:50 +0000
Manifest next update: Wed 13 May 2026 18:00:50 +0000
Files and hashes: 1: 3keU2fyrI-wF3d1QSKP8cgQAKio.crl (hash: +PdBUlciV5rLtGiG8Ijx6HraMu3NqvbjFsyiGnWFyIo=)
2: kZWW_ntfYvdgmDKHXouZXpr8UMU.roa (hash: pybDSm/TxiDymAX06iB+SSYkpRn7EWk4DKtBzvh17SE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:47:ed:51:6d:53:64:bd:85:e5:cb:b8:48:52:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Validity
Not Before: May 12 18:00:50 2026 GMT
Not After : May 13 18:00:50 2026 GMT
Subject: CN=19bfbd66d36b1e66d1492156d27a4731435afe26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fb:a8:6d:6e:32:e4:2f:70:73:a7:24:ca:e5:
bf:ce:1b:4e:83:a0:25:80:8f:1c:54:2a:89:a6:88:
43:47:00:75:56:9f:dc:5a:ef:35:2a:9b:0e:88:67:
c1:81:b2:48:1f:7b:4b:0e:b3:ff:d5:80:2a:87:f0:
58:f7:a3:b5:e6:d9:7a:15:e1:4a:5a:6c:31:02:cb:
93:26:26:51:a1:e1:b6:b9:2e:0d:e9:9c:fa:18:77:
38:b1:e7:dd:d5:4e:2f:e9:58:b8:f6:60:6d:2e:e8:
21:52:86:f5:71:b0:b1:10:46:d5:c8:91:0e:39:2e:
66:b7:5e:72:23:a2:53:5d:c5:06:eb:d9:8d:f9:6f:
48:9f:40:21:86:a1:aa:88:ee:e4:43:90:e6:07:6c:
14:81:15:68:c5:b0:04:8e:24:e9:14:f5:81:10:ab:
62:38:08:ba:ff:1a:f8:da:82:c3:bb:17:c2:af:3c:
ab:10:e0:f2:06:56:8b:a4:d4:9e:25:08:af:f4:e3:
a1:b5:0a:6a:76:45:4b:db:cd:69:ec:ff:ab:be:d1:
9f:e3:0a:69:e8:8c:4c:e6:d0:fa:40:89:cf:5e:63:
51:2c:14:cb:d8:1c:1f:42:1b:9b:69:ba:d1:91:2b:
d3:5f:9c:54:dd:16:07:b8:69:2f:9e:f6:dd:d0:35:
25:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BF:BD:66:D3:6B:1E:66:D1:49:21:56:D2:7A:47:31:43:5A:FE:26
X509v3 Authority Key Identifier:
keyid:DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:ef:68:7d:04:4f:ee:18:13:7c:c5:94:84:43:c4:58:13:7a:
f8:45:9b:b7:d7:81:8d:90:65:a3:a0:b8:7d:0d:89:a5:69:f8:
b9:46:1d:33:d9:80:09:0a:fe:77:4c:89:0e:b4:8c:c5:9a:f4:
9f:19:c4:c9:69:97:a4:29:56:e1:ab:27:0e:56:22:13:de:c9:
82:e7:5a:11:c9:99:84:30:27:7e:a7:c6:96:61:c2:cb:b5:81:
d0:1b:56:5b:8a:67:22:d0:3a:8a:95:d5:92:76:26:c6:7b:14:
2b:bb:98:2e:06:76:9e:ac:d2:49:de:a0:85:c4:13:0d:bf:4a:
45:5f:9b:0c:ca:74:24:c1:2b:e7:8a:a9:55:13:fa:e4:a7:e9:
ed:36:2e:ca:3b:cf:77:c3:0e:33:5d:85:4c:34:10:b6:c7:c0:
39:3f:4d:50:36:fa:fb:5a:ed:80:e4:b5:a1:e4:eb:73:76:46:
19:50:61:c8:ca:03:81:e9:42:e8:b1:81:21:1c:2b:be:00:c2:
f0:57:d8:be:87:e9:ca:8a:9b:3f:5a:32:45:d2:52:6e:73:ab:
9c:ab:ab:6f:9e:42:21:7d:8d:94:6b:ed:d2:b3:d6:18:4d:ab:
26:34:db:2a:37:3b:83:ce:24:64:b3:81:dc:30:82:ce:59:08:
a4:99:90:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dWUftUW1TZL2F5cu4SFI2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlNDc5NGQ5ZmNhYjIzZWMwNWRkZGQ1MDQ4YTNmYzcyMDQw
MDJhMmEwHhcNMjYwNTEyMTgwMDUwWhcNMjYwNTEzMTgwMDUwWjAzMTEwLwYDVQQD
EygxOWJmYmQ2NmQzNmIxZTY2ZDE0OTIxNTZkMjdhNDczMTQzNWFmZTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPuobW4y5C9wc6ckyuW/zhtOg6Al
gI8cVCqJpohDRwB1Vp/cWu81KpsOiGfBgbJIH3tLDrP/1YAqh/BY96O15tl6FeFK
WmwxAsuTJiZRoeG2uS4N6Zz6GHc4sefd1U4v6Vi49mBtLughUob1cbCxEEbVyJEO
OS5mt15yI6JTXcUG69mN+W9In0AhhqGqiO7kQ5DmB2wUgRVoxbAEjiTpFPWBEKti
OAi6/xr42oLDuxfCrzyrEODyBlaLpNSeJQiv9OOhtQpqdkVL281p7P+rvtGf4wpp
6IxM5tD6QInPXmNRLBTL2BwfQhubabrRkSvTX5xU3RYHuGkvnvbd0DUl7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBm/vWbTax5m0UkhVtJ6RzFDWv4mMB8GA1UdIwQY
MBaAFN5HlNn8qyPsBd3dUEij/HIEACoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDIt
ZjAxMTI5Mzk1M2Y1LzEvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDItZjAxMTI5Mzk1M2Y1
LzEvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhe9ofQRP
7hgTfMWUhEPEWBN6+EWbt9eBjZBlo6C4fQ2JpWn4uUYdM9mACQr+d0yJDrSMxZr0
nxnEyWmXpClW4asnDlYiE97JgudaEcmZhDAnfqfGlmHCy7WB0BtWW4pnItA6ipXV
knYmxnsUK7uYLgZ2nqzSSd6ghcQTDb9KRV+bDMp0JMEr54qpVRP65Kfp7TYuyjvP
d8MOM12FTDQQtsfAOT9NUDb6+1rtgOS1oeTrc3ZGGVBhyMoDgelC6LGBIRwrvgDC
8FfYvofpyoqbP1oyRdJSbnOrnKurb55CIX2NlGvt0rPWGE2rJjTbKjc7g84kZLOB
3DCCzlkIpJmQcA==
-----END CERTIFICATE-----
Generated at Tue May 12 21:12:38 2026 by rpki-client