Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
File: 3EThniu05wI8wboQ1Jt07eS_hlw.mft (raw, json)
Hash identifier: 0V3DdfWFL+a+rhY0pODKdj/Z9cApAQOcH6QJ3DiAtiU=
Subject key identifier: 57:D6:8C:0E:8B:27:4F:AE:40:E6:1C:FF:50:19:04:EF:8F:95:13:33
Authority key identifier: DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
Certificate issuer: /CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Certificate serial: 019EBEB63BF874FE2C61FF45CB3D580A8961
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
Manifest number: 12B7
Signing time: Sat 13 Jun 2026 02:01:14 +0000
Manifest this update: Sat 13 Jun 2026 02:01:14 +0000
Manifest next update: Sun 14 Jun 2026 02:01:14 +0000
Files and hashes: 1: 3EThniu05wI8wboQ1Jt07eS_hlw.crl (hash: vO7rUdzaC4NETHk22tw6gXZqFNozyxqDEdgHmdBAHwI=)
2: 7OkmnPh3ynYj5y3_NgmBm3m_TO4.roa (hash: 76UePjEP+wElQI63EJrAUQNqnmL6+mG0ZmW2QHArepk=)
3: ICKtn9FiA8o1E110emXc1Z_9SHM.roa (hash: VFWWvtCtDRylV3Kwhn/OLe+sEMZLlpEgPe5DOIGJ9cA=)
4: bRiAj1-hf7sNdEiD1YkRkRllIpg.roa (hash: QwlE0RKPjkh4vpQe1ZoXKOsV7QKRd+qV+VA/PdPxz0M=)
5: iXgvCFVYLYuWNg_lY55_1JUdv1Y.roa (hash: sekPzygHUOkEd1ly9r7LBo/JOh0iiRtcIXhoK8Xl8WU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b6:3b:f8:74:fe:2c:61:ff:45:cb:3d:58:0a:89:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Validity
Not Before: Jun 13 02:01:14 2026 GMT
Not After : Jun 14 02:01:14 2026 GMT
Subject: CN=57d68c0e8b274fae40e61cff501904ef8f951333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d8:2b:91:92:8f:08:15:e0:69:ee:85:e7:d3:
7b:49:68:f6:cf:97:71:18:f2:9a:ea:05:92:22:dc:
60:ba:33:c2:40:af:73:ec:b0:71:b0:e1:21:33:c5:
5a:f9:6e:5f:80:e6:f8:d5:43:92:37:8c:18:32:b4:
ca:00:32:8d:4d:87:f8:20:f3:66:dd:1e:e4:d8:ee:
50:b0:bc:7c:2d:0a:09:33:12:7c:66:ca:0f:3a:45:
c8:ef:38:2b:e3:45:46:b9:2c:a5:7e:bb:a9:4d:97:
8b:ad:b1:1c:83:9b:5c:d2:d1:0c:c3:2e:ff:50:b6:
fc:88:0e:9b:22:25:9e:3f:b5:0c:7b:f9:1b:de:a7:
20:f4:12:6c:2c:b6:41:d1:79:f9:0b:b6:b8:46:ae:
d8:cf:62:9f:55:30:65:90:dd:d7:8c:2a:46:21:d0:
96:eb:39:aa:3f:14:11:53:e1:22:7d:e2:dc:78:1c:
d9:24:47:a9:22:7b:21:34:23:16:50:61:ff:82:64:
ba:ec:99:d7:4f:a3:da:e5:fd:eb:b9:f0:1b:57:10:
4c:ac:3c:31:7f:ef:23:38:14:84:3a:a2:6f:94:c8:
42:2b:7b:d3:a9:4a:34:57:c1:8d:61:aa:10:7f:46:
1a:fb:21:4e:51:db:27:9a:d4:f1:2e:66:4b:db:ec:
48:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D6:8C:0E:8B:27:4F:AE:40:E6:1C:FF:50:19:04:EF:8F:95:13:33
X509v3 Authority Key Identifier:
keyid:DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:90:3d:12:e9:b0:40:fe:34:09:3d:bc:ce:ac:ab:17:a5:24:
a9:4f:22:d4:6b:f2:82:49:6c:1b:b1:ad:4a:5d:e5:4b:48:1f:
cf:32:86:35:14:3c:16:ee:61:ad:fd:59:6b:dc:fe:b2:dd:52:
96:72:4b:fb:e5:5b:6a:92:54:1d:06:2b:23:36:d6:64:55:da:
86:aa:1f:20:8c:0b:6b:db:f6:d2:1f:a4:fe:4e:4a:7a:3c:a8:
06:ca:15:2a:56:f8:11:ac:b8:82:3a:e6:2e:0f:d6:2b:94:91:
6c:6c:99:ea:79:01:68:f2:d4:5e:0a:5a:05:31:4d:75:1c:81:
2e:0c:e3:39:cf:6e:bf:83:03:5c:b4:c3:23:42:a6:87:51:fe:
08:c4:c0:9e:38:62:7b:27:49:03:ef:f0:ea:03:d1:7d:9d:ae:
8a:74:e7:03:93:bc:95:8e:18:39:b5:70:89:c3:4b:fc:54:2f:
3f:c9:8c:43:99:7f:e6:c1:d2:7a:d3:32:05:fe:eb:20:18:ee:
43:f0:77:92:14:9a:f6:a8:32:09:f8:5d:07:5d:e6:47:74:fe:
34:3f:53:b6:91:3c:00:c5:c2:2a:2a:af:39:e6:da:c5:1c:74:
a0:5a:6f:bc:a7:83:3f:b2:7a:04:68:61:5f:31:5e:cf:5b:37:
43:e2:ba:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:34:20 2026 by rpki-client