Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
File: 3EThniu05wI8wboQ1Jt07eS_hlw.mft (raw, json)
Hash identifier: tSE9VqaTHuxaslssaDDMeAWTnSAevHjPAwqpvnglUqY=
Subject key identifier: 95:60:E3:B3:A4:0A:D7:65:0E:DB:4E:DE:62:F7:2C:57:1B:22:0A:40
Authority key identifier: DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
Certificate issuer: /CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Certificate serial: 019D9B19BB744B5E573C2A39B69FCF11A3AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
Manifest number: 1220
Signing time: Fri 17 Apr 2026 11:00:47 +0000
Manifest this update: Fri 17 Apr 2026 11:00:47 +0000
Manifest next update: Sat 18 Apr 2026 11:00:47 +0000
Files and hashes: 1: 3EThniu05wI8wboQ1Jt07eS_hlw.crl (hash: gbST6ciiibQpVSs2bPSjGbJJ3VZfQPuNxOunIZyu/NU=)
2: 7OkmnPh3ynYj5y3_NgmBm3m_TO4.roa (hash: 76UePjEP+wElQI63EJrAUQNqnmL6+mG0ZmW2QHArepk=)
3: ICKtn9FiA8o1E110emXc1Z_9SHM.roa (hash: VFWWvtCtDRylV3Kwhn/OLe+sEMZLlpEgPe5DOIGJ9cA=)
4: bRiAj1-hf7sNdEiD1YkRkRllIpg.roa (hash: QwlE0RKPjkh4vpQe1ZoXKOsV7QKRd+qV+VA/PdPxz0M=)
5: iXgvCFVYLYuWNg_lY55_1JUdv1Y.roa (hash: sekPzygHUOkEd1ly9r7LBo/JOh0iiRtcIXhoK8Xl8WU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 11:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:bb:74:4b:5e:57:3c:2a:39:b6:9f:cf:11:a3:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Validity
Not Before: Apr 17 11:00:47 2026 GMT
Not After : Apr 18 11:00:47 2026 GMT
Subject: CN=9560e3b3a40ad7650edb4ede62f72c571b220a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ad:48:88:fc:14:fe:07:d4:d1:9c:5b:d7:10:
9a:fb:2f:91:fd:ad:53:5a:66:a7:41:44:b3:3e:8b:
30:61:f5:a0:61:a5:85:e2:01:ea:57:04:05:c5:68:
dc:de:39:16:91:f3:ca:9a:f9:1e:1d:7b:9d:d0:0d:
b1:14:d0:8b:85:25:36:4d:20:94:e6:9e:f9:43:c6:
61:cc:7f:07:8d:9d:34:62:4c:82:f4:a1:ba:60:e6:
d5:d0:85:09:76:ad:34:58:77:93:8c:a5:5c:08:9f:
2b:33:1c:fa:d1:5d:c9:14:ba:78:cb:31:bb:0c:ba:
a0:07:e9:0c:e4:cf:a5:8d:e8:2b:44:d9:f3:c6:3f:
42:37:5a:41:e2:39:11:fb:c2:27:d9:42:09:95:56:
d2:81:ac:63:33:b0:f7:52:86:97:2c:83:5c:fd:0f:
82:d2:17:3c:3a:63:94:2f:cf:cc:39:e5:83:da:f8:
af:57:6f:ab:c0:b3:11:49:db:75:f0:2e:58:b9:5a:
81:0d:5f:fd:89:60:f5:80:ca:fe:8e:fc:d5:03:1b:
90:83:10:1b:c5:9a:c3:78:01:25:d8:65:19:9a:ab:
9f:3c:32:28:91:20:e9:e2:a0:25:f5:6c:aa:3c:5c:
85:d3:97:d8:00:ec:a7:e3:2a:6a:b5:22:04:e4:82:
cc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:60:E3:B3:A4:0A:D7:65:0E:DB:4E:DE:62:F7:2C:57:1B:22:0A:40
X509v3 Authority Key Identifier:
keyid:DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:4b:4d:4d:01:c6:62:34:7e:9d:2e:ee:39:2e:1d:7a:60:f5:
78:cd:18:0c:fd:8c:c5:e2:51:bf:fa:52:59:21:fd:d1:9f:74:
c8:13:d4:84:34:2c:2a:6c:5b:5b:f8:20:bf:1e:ca:84:bd:93:
06:52:74:3e:0e:39:2c:0d:d6:0b:ce:96:ac:8b:ff:00:88:e2:
46:dc:24:1a:fc:9a:5a:50:d0:11:66:6b:6e:4d:17:35:6a:80:
a5:41:b4:6c:25:3a:73:a5:7f:55:8f:22:dc:3a:98:04:b3:26:
c4:fa:03:19:f3:aa:bb:49:56:33:fa:79:9e:62:c1:0f:48:d5:
2f:5c:8f:75:fb:73:63:19:9b:ea:fc:1e:8a:e8:d2:9a:2c:46:
da:06:8d:8b:ff:68:2e:ba:85:e0:09:72:ab:be:d1:77:17:ec:
d6:4e:fa:ad:3d:ea:be:75:07:b6:8c:1f:0c:e5:9b:0a:36:35:
75:8a:4b:8c:65:fc:71:d6:67:13:f0:8e:51:4f:40:f8:54:63:
b1:fc:61:88:0c:30:a5:65:b8:31:f2:27:5f:3b:5f:21:cf:0e:
d3:fe:28:ac:20:0a:20:25:7f:e8:bc:e4:c2:5f:a1:b8:53:ee:
33:65:2f:32:0e:fc:99:ed:b0:61:f5:3a:59:95:80:c9:37:93:
07:99:0d:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bGbt0S15XPCo5tp/PEaOtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNDRlMTllMmJiNGU3MDIzY2MxYmExMGQ0OWI3NGVkZTRi
Zjg2NWMwHhcNMjYwNDE3MTEwMDQ3WhcNMjYwNDE4MTEwMDQ3WjAzMTEwLwYDVQQD
Eyg5NTYwZTNiM2E0MGFkNzY1MGVkYjRlZGU2MmY3MmM1NzFiMjIwYTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5a1IiPwU/gfU0Zxb1xCa+y+R/a1T
WmanQUSzPoswYfWgYaWF4gHqVwQFxWjc3jkWkfPKmvkeHXud0A2xFNCLhSU2TSCU
5p75Q8ZhzH8HjZ00YkyC9KG6YObV0IUJdq00WHeTjKVcCJ8rMxz60V3JFLp4yzG7
DLqgB+kM5M+ljegrRNnzxj9CN1pB4jkR+8In2UIJlVbSgaxjM7D3UoaXLINc/Q+C
0hc8OmOUL8/MOeWD2vivV2+rwLMRSdt18C5YuVqBDV/9iWD1gMr+jvzVAxuQgxAb
xZrDeAEl2GUZmqufPDIokSDp4qAl9WyqPFyF05fYAOyn4ypqtSIE5ILMBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJVg47OkCtdlDttO3mL3LFcbIgpAMB8GA1UdIwQY
MBaAFNxE4Z4rtOcCPMG6ENSbdO3kv4ZcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS80NmY1YjktNjAwMC00MDcyLTg5ZjIt
NGM4MmFjZTcyYzg1LzEvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS80NmY1YjktNjAwMC00MDcyLTg5ZjItNGM4MmFjZTcyYzg1
LzEvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaktNTQHG
YjR+nS7uOS4demD1eM0YDP2MxeJRv/pSWSH90Z90yBPUhDQsKmxbW/ggvx7KhL2T
BlJ0Pg45LA3WC86WrIv/AIjiRtwkGvyaWlDQEWZrbk0XNWqApUG0bCU6c6V/VY8i
3DqYBLMmxPoDGfOqu0lWM/p5nmLBD0jVL1yPdftzYxmb6vweiujSmixG2gaNi/9o
LrqF4Alyq77Rdxfs1k76rT3qvnUHtowfDOWbCjY1dYpLjGX8cdZnE/COUU9A+FRj
sfxhiAwwpWW4MfInXztfIc8O0/4orCAKICV/6Lzkwl+huFPuM2UvMg78me2wYfU6
WZWAyTeTB5kNeQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 19:08:40 2026 by rpki-client