Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json)
Hash identifier: oNWcXMtZEAXwI6nYA5fcQLb9t0oL/qoDA6FJ0dRV4Bg=
Subject key identifier: BD:91:89:78:34:4A:C8:75:79:FB:B6:20:55:59:7A:A2:B2:C3:E7:F0
Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b
Certificate serial: 019EC18026F976F9AF4FE89C54B0D8618E21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
Manifest number: 08EE
Signing time: Sat 13 Jun 2026 15:01:01 +0000
Manifest this update: Sat 13 Jun 2026 15:01:01 +0000
Manifest next update: Sun 14 Jun 2026 15:01:01 +0000
Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: olI/c4CbOMwRFqjbo2451reHxzaaaV6gppAmRFsJHLg=)
2: hBUefaIMV4VxrEK-fm1hTMzaWD8.roa (hash: ULTyVqCoLmJTp6EzOZiZ2uvQqGHDruUXv80DgFEK1ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:80:26:f9:76:f9:af:4f:e8:9c:54:b0:d8:61:8e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b
Validity
Not Before: Jun 13 15:01:01 2026 GMT
Not After : Jun 14 15:01:01 2026 GMT
Subject: CN=bd918978344ac87579fbb62055597aa2b2c3e7f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:64:26:6a:b2:d3:8b:fc:e5:46:f4:c7:d0:e0:
ee:4a:d3:a1:ad:04:e0:f5:2f:85:1a:e6:c4:53:ae:
3d:fa:10:12:f2:f8:82:17:b8:84:9f:63:6f:04:6c:
95:6b:b7:5a:ac:cc:c6:fe:ec:ab:90:73:cf:d6:87:
07:28:95:91:80:e4:f7:c7:a8:7b:57:1e:e1:f8:77:
b4:73:1d:36:ec:71:7e:15:ff:3b:41:a1:f8:9d:5e:
9a:f7:cb:ac:42:d8:7a:d8:cc:92:4b:4a:99:5a:50:
a5:9a:41:7b:b6:f5:f7:b2:20:ec:81:5f:20:e2:16:
f9:07:95:6c:3a:f1:01:5b:5f:a4:dd:1e:78:bb:6a:
b0:60:80:73:d5:e3:d0:cf:75:ce:b6:fb:5d:0d:d9:
51:a7:35:6f:cd:44:be:ba:11:5d:bf:f4:de:74:03:
d8:96:a2:3e:d4:5f:ac:f8:cb:37:7b:9d:d6:4a:70:
d0:ef:1e:c4:7a:2a:95:89:cd:36:bc:ed:80:e6:21:
da:b0:38:2b:3b:40:88:8b:02:39:40:2e:6e:31:d5:
6f:7f:6d:8c:74:f6:20:0a:15:86:fb:78:36:94:34:
45:ab:42:4a:e3:e8:b8:c1:49:be:a3:9d:6f:8c:f2:
45:bd:01:d4:bb:73:58:3d:67:3d:8d:a0:81:88:23:
b3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:91:89:78:34:4A:C8:75:79:FB:B6:20:55:59:7A:A2:B2:C3:E7:F0
X509v3 Authority Key Identifier:
keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:26:86:c8:bd:44:9a:48:77:dd:b0:75:db:39:9e:ed:87:ea:
8c:d6:dc:21:a0:41:e6:79:e6:ef:49:c9:b6:fe:e5:fb:be:2b:
45:08:bf:29:72:c6:9d:03:b4:49:9d:dc:f8:9d:2a:57:9c:11:
57:12:8c:52:11:70:16:68:6d:43:a7:14:40:fe:1b:aa:b5:15:
dc:9e:08:b5:42:a2:39:62:2c:7e:c6:9e:bf:bc:1f:ab:52:ce:
a3:48:dd:23:fa:8e:18:30:42:5a:33:65:60:11:33:cb:26:09:
b6:a2:08:96:bc:3e:38:df:50:eb:52:01:db:25:bd:e7:65:d8:
67:03:3c:5c:d9:fc:94:d1:02:75:14:4c:eb:3f:92:41:c8:6b:
27:b8:d0:4d:ff:69:89:27:0c:2d:c8:f6:0a:a1:25:42:b9:e6:
cd:d1:ec:df:a6:21:19:a6:4f:ef:ea:41:1b:78:b5:6a:d6:57:
e7:86:f1:77:8a:f3:4a:52:4f:95:75:38:35:f0:77:ca:9a:9e:
44:0d:e8:46:c9:a9:75:41:ba:54:15:48:94:f5:3f:0e:36:56:
24:85:84:34:2b:24:50:14:69:e5:f5:c2:bb:73:8a:73:18:a3:
a6:44:50:56:db:04:31:04:30:98:89:f5:d6:a5:d8:66:af:eb:
31:a0:82:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:55:52 2026 by rpki-client