Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json)
Hash identifier: jAO98HjLoWN4708k7vCOAfwUViWKMdmk9QSozDivugo=
Subject key identifier: B0:9D:AC:70:51:E5:8E:60:52:2D:41:57:B0:54:D7:6A:18:EC:A5:74
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 019E1D22AF58CD40D7A7959221FA9E9AE546
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
Manifest number: 191A
Signing time: Tue 12 May 2026 17:01:12 +0000
Manifest this update: Tue 12 May 2026 17:01:12 +0000
Manifest next update: Wed 13 May 2026 17:01:12 +0000
Files and hashes: 1: 2W3yWm1HMzPskIDqOBKTk5NLDnk.roa (hash: zkzysD/L4UIm9OcLl6P6Mv4weJO+FXhHhd0t2XLROjI=)
2: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: F94iEJoQxiJaHBQOAiftZ5bWjn1FBESTHoCSSKLkhCY=)
3: K3l-f-R4fzp0JNI40Ow_kAwQElE.roa (hash: lzT7cfBjG064YjxJ7JvC+eelDCQdNhykEA7ZwxG3cvA=)
4: PKWl5L-Kf_6-uLjkK3IrLmDHIJ8.roa (hash: a8KnYbin0YfzPy81a2Ft5OJRitrpc3uTgAStWm8odkA=)
5: WVGS-uOqCUSz2p_N5CL2Cz4z-K0.roa (hash: IB5UKLk0ZZT7DbiIeOg9ZlXwRRXDT147MF0fykJ8TKI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:af:58:cd:40:d7:a7:95:92:21:fa:9e:9a:e5:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: May 12 17:01:12 2026 GMT
Not After : May 13 17:01:12 2026 GMT
Subject: CN=b09dac7051e58e60522d4157b054d76a18eca574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4a:7b:69:51:8a:64:ac:de:bf:8c:95:27:fa:
d9:84:5f:86:76:be:44:c7:fe:8a:cf:8a:81:45:fc:
5d:8a:e9:ce:b9:46:c8:e0:7f:10:fd:c3:a2:6e:89:
77:c2:32:57:64:0c:c5:d0:59:80:e5:e5:2d:11:89:
31:32:cf:f6:39:47:c5:58:a9:38:21:6f:bd:74:01:
dc:b1:95:0b:e6:41:29:7d:f8:ee:8b:f8:4a:6c:c1:
1f:0b:24:02:26:27:0e:61:a8:04:ae:03:1e:43:b8:
c5:71:de:40:9c:4c:34:40:a6:b9:b7:18:7a:49:58:
e3:1a:dc:4e:69:4c:46:08:9e:74:37:11:f0:b7:2b:
5e:b5:dc:33:e4:78:ee:e6:37:d4:ac:e7:d3:41:26:
6a:5d:12:98:a4:43:44:1c:14:10:3d:2b:2b:e7:a2:
e9:9f:67:7b:96:49:70:35:ab:cc:a5:6f:63:c0:8c:
8f:ea:16:43:ba:ae:7e:c1:18:c9:a7:5b:08:42:f2:
2b:7c:26:4c:71:ef:d7:08:3c:ba:31:a7:d6:7a:a8:
db:42:e1:55:4e:c2:fa:04:65:cf:3f:c2:8a:8c:b3:
98:45:3b:71:b5:77:b1:a3:ce:98:76:c2:99:96:73:
c3:dd:ca:62:9f:26:64:b4:77:f0:dc:b7:f5:5b:28:
88:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9D:AC:70:51:E5:8E:60:52:2D:41:57:B0:54:D7:6A:18:EC:A5:74
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:3d:e0:73:ee:16:a3:31:d4:7f:38:64:a0:41:8f:8f:72:8e:
9c:e7:ff:3e:aa:04:89:90:3c:00:89:61:0b:a3:a8:36:32:c9:
92:f0:0e:0a:09:f2:f6:a5:e9:ec:ed:2c:2d:82:d1:64:0c:58:
2d:b3:8e:62:18:06:ec:c5:42:dc:45:65:73:41:d1:0f:2d:51:
d2:b8:f3:43:26:0c:df:10:5b:0c:33:50:58:e6:66:b5:6b:89:
f1:85:4b:45:45:b8:47:8c:c1:2d:6c:73:dd:11:2b:48:07:db:
1d:c1:86:6e:c8:a8:15:80:cd:04:3d:b6:38:86:06:2b:f1:4f:
7a:f7:1e:f0:6a:13:c4:32:dc:60:c2:36:ba:42:13:4b:93:4e:
27:d1:f0:57:3c:17:14:18:17:74:9d:ec:94:3d:55:c3:29:a0:
b5:42:4e:27:dc:2a:d1:99:92:0b:2d:27:cc:cf:39:a9:ab:b9:
f2:4e:ea:d9:fa:40:50:09:30:0a:b1:21:99:91:ad:5d:5a:5d:
a4:fa:7e:58:ce:8e:af:69:5d:f6:0b:75:79:cd:84:75:b4:01:
0a:0a:b5:c2:fd:e3:c7:64:fb:0b:3d:e6:91:25:07:70:12:f2:
eb:47:98:c1:56:2f:94:5a:e4:2e:65:3b:d0:7e:0c:4f:4e:78:
77:6f:57:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dIq9YzUDXp5WSIfqemuVGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjYjY1YTkwZWQzY2Y0YWUwNDUyNTU0ZWUzNGI5MmE4NDc2
ZGNmMTAwHhcNMjYwNTEyMTcwMTEyWhcNMjYwNTEzMTcwMTEyWjAzMTEwLwYDVQQD
EyhiMDlkYWM3MDUxZTU4ZTYwNTIyZDQxNTdiMDU0ZDc2YTE4ZWNhNTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEp7aVGKZKzev4yVJ/rZhF+Gdr5E
x/6Kz4qBRfxdiunOuUbI4H8Q/cOibol3wjJXZAzF0FmA5eUtEYkxMs/2OUfFWKk4
IW+9dAHcsZUL5kEpffjui/hKbMEfCyQCJicOYagErgMeQ7jFcd5AnEw0QKa5txh6
SVjjGtxOaUxGCJ50NxHwtytetdwz5Hju5jfUrOfTQSZqXRKYpENEHBQQPSsr56Lp
n2d7lklwNavMpW9jwIyP6hZDuq5+wRjJp1sIQvIrfCZMce/XCDy6MafWeqjbQuFV
TsL6BGXPP8KKjLOYRTtxtXexo86YdsKZlnPD3cpinyZktHfw3Lf1WyiIPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLCdrHBR5Y5gUi1BV7BU12oY7KV0MB8GA1UdIwQY
MBaAFNy2WpDtPPSuBFJVTuNLkqhHbc8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEt
ODVhOTU1ZjIxNjNiLzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEtODVhOTU1ZjIxNjNi
LzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABz3gc+4W
ozHUfzhkoEGPj3KOnOf/PqoEiZA8AIlhC6OoNjLJkvAOCgny9qXp7O0sLYLRZAxY
LbOOYhgG7MVC3EVlc0HRDy1R0rjzQyYM3xBbDDNQWOZmtWuJ8YVLRUW4R4zBLWxz
3RErSAfbHcGGbsioFYDNBD22OIYGK/FPevce8GoTxDLcYMI2ukITS5NOJ9HwVzwX
FBgXdJ3slD1VwymgtUJOJ9wq0ZmSCy0nzM85qau58k7q2fpAUAkwCrEhmZGtXVpd
pPp+WM6Or2ld9gt1ec2EdbQBCgq1wv3jx2T7Cz3mkSUHcBLy60eYwVYvlFrkLmU7
0H4MT054d29Xtw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:31:10 2026 by rpki-client