Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
File: 3frtS0AyNuLKi-twkcug4GpUPQo.mft (raw, json)
Hash identifier: f5ZN1AW7BxxOxSTz+f3xJ1Iz3USmqEtyhGVvZCqOnYY=
Subject key identifier: DD:11:17:E8:4A:85:37:77:EF:41:49:50:33:40:A9:B6:0D:32:C0:97
Authority key identifier: DD:FA:ED:4B:40:32:36:E2:CA:8B:EB:70:91:CB:A0:E0:6A:54:3D:0A
Certificate issuer: /CN=ddfaed4b403236e2ca8beb7091cba0e06a543d0a
Certificate serial: 019E1E34D32B7024C439934E77AEC106FCD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3frtS0AyNuLKi-twkcug4GpUPQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
Manifest number: 0449
Signing time: Tue 12 May 2026 22:00:38 +0000
Manifest this update: Tue 12 May 2026 22:00:38 +0000
Manifest next update: Wed 13 May 2026 22:00:38 +0000
Files and hashes: 1: 3frtS0AyNuLKi-twkcug4GpUPQo.crl (hash: VbEI41zC9bKEfT23v7Q1lX17nLSjWmEzY3poC/nlxR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3frtS0AyNuLKi-twkcug4GpUPQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:34:d3:2b:70:24:c4:39:93:4e:77:ae:c1:06:fc:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfaed4b403236e2ca8beb7091cba0e06a543d0a
Validity
Not Before: May 12 22:00:38 2026 GMT
Not After : May 13 22:00:38 2026 GMT
Subject: CN=dd1117e84a853777ef4149503340a9b60d32c097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:73:6e:f6:2b:e7:b8:ef:85:23:79:58:a9:06:
93:3e:dd:93:1f:a6:a9:20:62:e3:8c:d2:1d:57:8a:
13:90:83:fd:91:04:e7:8b:0f:9d:6a:b3:c2:bf:2c:
18:34:ed:1a:e4:30:17:ad:f0:cc:7d:0c:d7:cc:ea:
50:0c:12:40:7a:49:23:f9:5c:ee:d6:12:70:f8:49:
cd:76:7a:26:e2:3f:62:e3:c4:a0:72:24:7b:d8:bb:
2e:46:dd:77:df:9d:f5:ba:6b:8b:60:68:d1:48:49:
00:ee:03:28:e8:48:9b:f1:ad:19:61:15:cb:00:e5:
ea:26:6c:53:86:f4:7a:80:b4:ec:8f:5e:0a:e7:1e:
fe:23:42:f4:7f:75:de:71:89:62:e7:86:9c:81:98:
94:5a:1c:23:90:4c:4e:a1:bf:86:c8:0f:4e:72:4d:
09:dc:a6:fa:f0:02:06:55:f9:e6:6e:d8:66:17:d4:
fb:35:f9:30:c6:7b:cd:41:db:17:1a:58:0f:e9:54:
16:a0:65:6d:1d:1a:6b:8e:5b:2d:7b:5d:35:a7:07:
0a:02:9a:14:3b:cc:7c:ee:20:78:ae:6d:e2:9c:9a:
73:92:1f:82:6d:b6:29:19:dd:0b:bd:cc:0d:54:3e:
68:c9:d3:a7:ff:17:d5:8f:53:8b:ba:86:12:aa:b3:
04:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:11:17:E8:4A:85:37:77:EF:41:49:50:33:40:A9:B6:0D:32:C0:97
X509v3 Authority Key Identifier:
keyid:DD:FA:ED:4B:40:32:36:E2:CA:8B:EB:70:91:CB:A0:E0:6A:54:3D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3frtS0AyNuLKi-twkcug4GpUPQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:31:3e:c9:85:d6:08:8f:f4:a3:d8:f6:e3:b3:7c:8f:3b:a3:
5f:8c:da:88:90:e8:77:8f:6b:64:94:52:a8:f5:d7:97:fd:bc:
3a:85:7d:70:f3:a4:f4:66:ae:d4:1c:30:b5:f8:98:92:6c:e8:
04:e3:51:5a:56:45:8a:0b:eb:f6:27:63:1a:20:7d:c3:c1:3a:
5a:02:07:3d:5a:14:22:6a:88:4d:aa:43:0a:ff:85:9d:c4:bd:
01:88:a0:d5:67:39:18:f7:bf:99:0f:9c:65:29:c2:5e:bd:ff:
d2:40:3a:25:20:10:ed:c3:2e:59:92:cd:02:5e:d1:32:1f:24:
a3:dc:84:7f:48:91:cf:72:da:3e:91:7b:f3:79:32:eb:3e:46:
51:fa:d3:20:a3:eb:be:25:3e:e0:4e:c0:7e:71:52:90:a3:f6:
56:b9:a6:13:42:dd:a6:13:38:19:16:1e:02:4e:91:0e:3a:60:
fa:f5:72:9d:b5:37:8c:ed:fd:32:45:1b:2e:f1:49:6c:55:29:
80:f1:ec:a5:d9:c7:ac:3b:e6:98:fd:9f:cf:54:53:ca:1e:57:
30:07:34:b9:ed:0f:d6:db:43:07:00:fa:34:c2:02:45:09:01:
a6:09:2f:16:a0:b1:b5:1d:bb:f4:25:72:cb:e8:84:8b:af:11:
b8:74:3f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:05:59 2026 by rpki-client