Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
File: 3EThniu05wI8wboQ1Jt07eS_hlw.mft (raw, json)
Hash identifier: /aku0aKp7zuKB97Jrkik2JEbY9GfR+zZx+KcQVFO5SE=
Subject key identifier: 68:C5:BB:9D:76:76:54:30:63:78:04:0E:0E:E0:B9:4E:8C:07:3E:29
Authority key identifier: DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
Certificate issuer: /CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Certificate serial: 019CA9B3C41ABD6C380B31C4E9C2DBF6E448
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
Manifest number: 11A3
Signing time: Sun 01 Mar 2026 14:00:56 +0000
Manifest this update: Sun 01 Mar 2026 14:00:56 +0000
Manifest next update: Mon 02 Mar 2026 14:00:56 +0000
Files and hashes: 1: 3EThniu05wI8wboQ1Jt07eS_hlw.crl (hash: uKT/6qfZSyQPn3BzMFmiI9HPIqCrTyxYAcMgoVVMMOI=)
2: 7OkmnPh3ynYj5y3_NgmBm3m_TO4.roa (hash: 76UePjEP+wElQI63EJrAUQNqnmL6+mG0ZmW2QHArepk=)
3: ICKtn9FiA8o1E110emXc1Z_9SHM.roa (hash: VFWWvtCtDRylV3Kwhn/OLe+sEMZLlpEgPe5DOIGJ9cA=)
4: bRiAj1-hf7sNdEiD1YkRkRllIpg.roa (hash: QwlE0RKPjkh4vpQe1ZoXKOsV7QKRd+qV+VA/PdPxz0M=)
5: iXgvCFVYLYuWNg_lY55_1JUdv1Y.roa (hash: sekPzygHUOkEd1ly9r7LBo/JOh0iiRtcIXhoK8Xl8WU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:c4:1a:bd:6c:38:0b:31:c4:e9:c2:db:f6:e4:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Validity
Not Before: Mar 1 14:00:56 2026 GMT
Not After : Mar 2 14:00:56 2026 GMT
Subject: CN=68c5bb9d767654306378040e0ee0b94e8c073e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ab:09:de:70:69:4e:e4:f9:d1:36:f7:f4:ee:
b2:0d:6a:99:9b:8e:d9:29:4b:aa:02:3b:d6:c3:1d:
1d:c1:d6:4e:06:62:69:6a:3c:eb:74:80:76:96:96:
5d:4c:99:22:d9:82:2e:fa:77:50:30:d8:42:3e:71:
ed:48:62:02:02:d3:dd:bf:be:ad:53:ac:b3:1c:ca:
82:fb:d8:ab:32:31:72:6a:75:30:7d:0e:86:96:f3:
fd:58:9f:bd:6e:17:e5:8f:d4:dd:b6:6f:33:10:5d:
18:1d:59:af:43:a1:6a:da:a4:96:0a:e3:9b:d3:ee:
54:61:37:7d:ef:42:68:82:9b:d3:cf:37:05:a1:0f:
9c:4c:94:01:59:ff:56:19:33:b6:a5:96:e8:02:71:
88:9d:03:ef:96:82:96:a0:1d:60:89:b4:1b:6d:f7:
b4:e8:89:41:3e:bd:6e:ef:68:59:f2:76:a7:50:18:
69:85:16:bf:2e:33:47:8a:f0:b5:e1:2e:cd:ca:2c:
d6:02:fc:ea:13:ee:9b:34:62:de:29:19:65:e4:e1:
59:b0:d9:3a:a4:0e:3e:03:4d:90:b0:3d:de:39:da:
da:8e:90:8a:02:86:e5:71:b4:39:8b:77:86:cd:f2:
02:54:23:38:fc:95:35:32:44:9e:b5:d9:50:97:56:
b4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C5:BB:9D:76:76:54:30:63:78:04:0E:0E:E0:B9:4E:8C:07:3E:29
X509v3 Authority Key Identifier:
keyid:DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:af:af:37:ff:03:4a:3a:18:84:36:10:5e:c9:0c:4b:05:5f:
7e:c1:3a:3b:ec:12:d6:70:46:dd:d7:9e:ea:e7:58:57:b9:66:
ab:3f:8c:3d:68:d7:6b:1e:a8:97:0c:37:2b:c5:74:1b:03:41:
11:34:95:4f:7b:0e:aa:f1:e5:67:2d:51:ed:0a:e5:ef:0d:a6:
ef:7d:3e:fb:12:fd:51:cd:9e:73:38:cc:a8:57:ec:80:ba:1c:
43:ec:d2:6a:fc:7b:ca:13:aa:d4:0f:c1:45:37:80:5a:cb:5a:
84:3f:4e:c8:b6:d9:f6:ce:93:09:f4:7f:a7:5f:75:9b:b2:24:
81:55:af:5f:0e:dd:df:d9:26:87:0d:32:72:fe:74:ed:c7:8b:
14:96:62:12:3c:1e:16:7c:98:43:64:7f:1d:ae:c2:90:e6:c1:
09:b4:76:87:99:19:84:17:35:fc:e7:34:e7:94:36:3f:7e:21:
3a:20:9b:3b:bb:21:6e:3f:7c:62:7d:59:e1:8d:77:1d:a4:64:
50:35:21:d5:99:ac:a3:2b:ca:c0:b5:11:ac:55:81:67:6e:d2:
13:80:90:aa:9c:5f:df:39:18:89:bf:ce:9d:ac:6d:6d:84:46:
27:fd:c1:c7:1d:04:c1:c2:a0:fb:be:f6:1a:3c:d2:18:55:98:
a7:37:df:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyps8QavWw4CzHE6cLb9uRIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNDRlMTllMmJiNGU3MDIzY2MxYmExMGQ0OWI3NGVkZTRi
Zjg2NWMwHhcNMjYwMzAxMTQwMDU2WhcNMjYwMzAyMTQwMDU2WjAzMTEwLwYDVQQD
Eyg2OGM1YmI5ZDc2NzY1NDMwNjM3ODA0MGUwZWUwYjk0ZThjMDczZTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6sJ3nBpTuT50Tb39O6yDWqZm47Z
KUuqAjvWwx0dwdZOBmJpajzrdIB2lpZdTJki2YIu+ndQMNhCPnHtSGICAtPdv76t
U6yzHMqC+9irMjFyanUwfQ6GlvP9WJ+9bhflj9Tdtm8zEF0YHVmvQ6Fq2qSWCuOb
0+5UYTd970JogpvTzzcFoQ+cTJQBWf9WGTO2pZboAnGInQPvloKWoB1gibQbbfe0
6IlBPr1u72hZ8nanUBhphRa/LjNHivC14S7NyizWAvzqE+6bNGLeKRll5OFZsNk6
pA4+A02QsD3eOdrajpCKAoblcbQ5i3eGzfICVCM4/JU1MkSetdlQl1a0mwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGjFu512dlQwY3gEDg7guU6MBz4pMB8GA1UdIwQY
MBaAFNxE4Z4rtOcCPMG6ENSbdO3kv4ZcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS80NmY1YjktNjAwMC00MDcyLTg5ZjIt
NGM4MmFjZTcyYzg1LzEvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS80NmY1YjktNjAwMC00MDcyLTg5ZjItNGM4MmFjZTcyYzg1
LzEvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd6+vN/8D
SjoYhDYQXskMSwVffsE6O+wS1nBG3dee6udYV7lmqz+MPWjXax6olww3K8V0GwNB
ETSVT3sOqvHlZy1R7Qrl7w2m730++xL9Uc2eczjMqFfsgLocQ+zSavx7yhOq1A/B
RTeAWstahD9OyLbZ9s6TCfR/p191m7IkgVWvXw7d39kmhw0ycv507ceLFJZiEjwe
FnyYQ2R/Ha7CkObBCbR2h5kZhBc1/Oc055Q2P34hOiCbO7shbj98Yn1Z4Y13HaRk
UDUh1ZmsoyvKwLURrFWBZ27SE4CQqpxf3zkYib/OnaxtbYRGJ/3Bxx0EwcKg+772
GjzSGFWYpzffiw==
-----END CERTIFICATE-----
Generated at Sun Mar 1 21:07:37 2026 by rpki-client