Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
File: 3c6wiktA8fheTroXzcfIPke7WX0.mft (raw, json)
Hash identifier: EmxhHBRsYvdYjOdUVJvklGjuOKJIRzW7Rs5zqVpt1HM=
Subject key identifier: 9E:A9:32:69:68:A5:B6:A3:BC:03:E1:44:FE:E4:C5:61:66:C2:6E:2E
Authority key identifier: DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D
Certificate issuer: /CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d
Certificate serial: 019DA41D0A27BA0AA9BC0239B59BC4A4136A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
Manifest number: 0E3C
Signing time: Sun 19 Apr 2026 05:00:59 +0000
Manifest this update: Sun 19 Apr 2026 05:00:59 +0000
Manifest next update: Mon 20 Apr 2026 05:00:59 +0000
Files and hashes: 1: 3c6wiktA8fheTroXzcfIPke7WX0.crl (hash: nzunWrXuoTOo68DsY4o6LFzD64s1xgKAAooWmTPc+qw=)
2: beU-evce9w8RpnlnhExOwqlTqVk.roa (hash: CxYZfkZx1/BXf+X3x5D+cUabOXDyrgunzk0Oi/R5nlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1d:0a:27:ba:0a:a9:bc:02:39:b5:9b:c4:a4:13:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d
Validity
Not Before: Apr 19 05:00:59 2026 GMT
Not After : Apr 20 05:00:59 2026 GMT
Subject: CN=9ea9326968a5b6a3bc03e144fee4c56166c26e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bf:8f:5d:ef:e8:bf:1c:f4:a3:75:1f:05:a6:
a6:40:f3:1e:13:52:83:4e:44:ae:d5:c7:e7:ec:18:
9b:b7:73:32:25:0f:bf:c1:24:6a:08:d2:b4:6a:00:
c8:45:49:08:ee:7b:7d:b8:f6:2e:de:12:61:ed:f0:
d6:b3:e0:a5:57:95:1a:fd:0e:4b:4d:41:67:6b:f9:
e4:b8:b2:bd:91:da:96:e1:15:4e:7e:f2:bc:69:f5:
af:6c:02:11:bb:d0:59:f6:f7:a4:ac:89:f0:f5:d8:
18:e0:a8:84:bc:9b:5a:93:ef:d9:f1:03:2a:50:ff:
f1:84:ef:96:bc:0a:2e:b7:5e:39:64:d1:eb:36:5b:
af:79:f3:e3:32:85:28:4e:f9:02:ef:dc:e3:9b:23:
48:98:7b:98:14:07:40:bc:52:a2:38:5b:61:84:28:
b6:ec:10:1a:3c:9c:d6:2d:9b:03:19:e1:70:15:84:
28:b1:36:73:a5:47:83:87:6b:63:02:f5:83:eb:c5:
f2:90:93:8e:63:d0:45:38:1a:54:6b:20:01:30:9f:
ce:29:7d:24:be:9f:b8:01:30:56:3c:b3:c5:ae:17:
03:0f:ee:75:ba:df:92:32:f0:8a:f8:4c:dc:24:99:
7c:b0:4a:ad:86:9b:83:b1:9e:d3:89:8e:8c:68:4d:
58:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A9:32:69:68:A5:B6:A3:BC:03:E1:44:FE:E4:C5:61:66:C2:6E:2E
X509v3 Authority Key Identifier:
keyid:DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:18:2c:d7:79:e9:8c:39:9b:5f:d4:d0:cc:ee:4e:0b:bc:c9:
6f:7e:46:26:55:83:d9:ee:a7:f2:bb:da:64:12:44:7e:5c:e1:
4d:01:07:fa:57:8d:49:22:d6:fd:89:88:fb:bb:4e:c9:ae:6f:
88:cd:ec:af:5b:e1:2b:2b:52:7c:68:a3:f3:2e:37:75:82:ae:
56:a0:66:db:d4:40:49:d4:42:f6:9a:3e:29:2e:ef:da:cf:72:
f5:fe:79:b1:f6:8c:11:94:5c:19:2f:5b:a8:05:d4:cb:18:c9:
08:09:ac:77:07:bf:ae:2a:11:c3:e5:a3:ee:27:60:24:7c:ab:
e5:c3:15:d7:61:77:98:b5:2e:05:41:ec:f6:ba:5c:dc:c7:4a:
4f:7c:85:1b:07:7c:be:bc:06:04:55:74:70:56:78:13:71:40:
35:d5:01:72:d9:fe:63:91:73:de:12:ac:69:88:9e:8a:ab:1d:
43:1b:10:82:42:df:11:a7:e8:f8:26:b3:10:21:d5:9d:92:73:
93:f7:e4:28:52:0e:0e:e5:f0:e3:e3:f6:4d:9a:f0:b9:ac:e9:
ef:ec:cb:d9:e7:ba:3e:57:a5:ea:fe:01:be:3c:44:64:d1:37:
7c:9a:70:60:bc:b7:9e:c0:9b:02:46:9b:3a:a0:48:2c:02:c3:
5d:96:c8:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2kHQonugqpvAI5tZvEpBNqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkY2ViMDhhNGI0MGYxZjg1ZTRlYmExN2NkYzdjODNlNDdi
YjU5N2QwHhcNMjYwNDE5MDUwMDU5WhcNMjYwNDIwMDUwMDU5WjAzMTEwLwYDVQQD
Eyg5ZWE5MzI2OTY4YTViNmEzYmMwM2UxNDRmZWU0YzU2MTY2YzI2ZTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyb+PXe/ovxz0o3UfBaamQPMeE1KD
TkSu1cfn7Bibt3MyJQ+/wSRqCNK0agDIRUkI7nt9uPYu3hJh7fDWs+ClV5Ua/Q5L
TUFna/nkuLK9kdqW4RVOfvK8afWvbAIRu9BZ9vekrInw9dgY4KiEvJtak+/Z8QMq
UP/xhO+WvAout145ZNHrNluvefPjMoUoTvkC79zjmyNImHuYFAdAvFKiOFthhCi2
7BAaPJzWLZsDGeFwFYQosTZzpUeDh2tjAvWD68XykJOOY9BFOBpUayABMJ/OKX0k
vp+4ATBWPLPFrhcDD+51ut+SMvCK+EzcJJl8sEqthpuDsZ7TiY6MaE1YWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ6pMmlopbajvAPhRP7kxWFmwm4uMB8GA1UdIwQY
MBaAFN3OsIpLQPH4Xk66F83HyD5Hu1l9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2M2d2lrdEE4ZmhlVHJvWHpjZklQa2U3V1gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi85MmIwZGYtZTBkYi00Mjc2LTgzMzQt
OGRiOTQ0ZTEzODEwLzEvM2M2d2lrdEE4ZmhlVHJvWHpjZklQa2U3V1gwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi85MmIwZGYtZTBkYi00Mjc2LTgzMzQtOGRiOTQ0ZTEzODEw
LzEvM2M2d2lrdEE4ZmhlVHJvWHpjZklQa2U3V1gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbxgs13np
jDmbX9TQzO5OC7zJb35GJlWD2e6n8rvaZBJEflzhTQEH+leNSSLW/YmI+7tOya5v
iM3sr1vhKytSfGij8y43dYKuVqBm29RASdRC9po+KS7v2s9y9f55sfaMEZRcGS9b
qAXUyxjJCAmsdwe/rioRw+Wj7idgJHyr5cMV12F3mLUuBUHs9rpc3MdKT3yFGwd8
vrwGBFV0cFZ4E3FANdUBctn+Y5Fz3hKsaYieiqsdQxsQgkLfEafo+CazECHVnZJz
k/fkKFIODuXw4+P2TZrwuazp7+zL2ee6Plel6v4BvjxEZNE3fJpwYLy3nsCbAkab
OqBILALDXZbIeg==
-----END CERTIFICATE-----
Generated at Sun Apr 19 10:02:55 2026 by rpki-client