Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
File: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft (raw, json)
Hash identifier: EwizOf4zSJWA9IKcDYZvweQT7Q5huz1jqPfj0GJF6OU=
Subject key identifier: 9F:FF:DA:B4:A1:8C:BE:F6:A2:DF:5A:DA:33:EE:06:A6:B9:4A:41:9C
Authority key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Certificate issuer: /CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Certificate serial: 019D98BDB8E1FB32918132FD99F1F5C860B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
Manifest number: 18C1
Signing time: Fri 17 Apr 2026 00:01:03 +0000
Manifest this update: Fri 17 Apr 2026 00:01:03 +0000
Manifest next update: Sat 18 Apr 2026 00:01:03 +0000
Files and hashes: 1: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl (hash: Eh8Pc4dZd8ZXKvO+0UCvqTUEzIqXEdsgzFoE74mzQVc=)
2: Db0vWV10PDdNvJlPrQIc334_tN8.roa (hash: c9vHRsLZpkXkOA11QWT95eyXoTQe6iY901YAkf3L6Io=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:b8:e1:fb:32:91:81:32:fd:99:f1:f5:c8:60:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Validity
Not Before: Apr 17 00:01:03 2026 GMT
Not After : Apr 18 00:01:03 2026 GMT
Subject: CN=9fffdab4a18cbef6a2df5ada33ee06a6b94a419c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:18:52:59:02:d5:4f:e8:09:d1:4f:f7:46:bd:
b2:2a:3f:35:55:b6:1d:58:e7:e1:3b:ea:38:6b:1d:
54:ba:02:99:18:9a:e0:a2:aa:b7:23:cb:eb:81:52:
2e:a6:e9:23:3a:d0:e5:90:71:06:12:1a:22:e4:af:
89:d3:8f:98:9c:22:70:16:70:ea:35:16:92:9d:c4:
88:2e:36:69:e4:b5:e3:9d:0a:d0:8f:f4:66:cb:00:
12:00:e9:db:49:a9:61:db:d4:48:5a:c1:b3:21:34:
5b:e9:3f:6e:5f:76:5c:63:92:73:38:85:76:57:cb:
a7:8e:8a:b0:fe:d0:f3:bf:f1:4d:ff:61:93:ce:eb:
a5:91:4e:72:d5:3b:71:f1:39:03:af:31:9d:4f:65:
ae:48:43:f6:07:21:70:17:80:40:c0:29:31:7f:f7:
30:fd:fc:9e:fd:4e:d0:2a:c0:d1:c9:c1:95:0b:6b:
f7:1a:b6:c1:6e:b4:1f:17:07:dd:a0:d2:94:5a:5b:
11:96:45:1c:dd:f4:21:f6:f2:2a:c0:1e:9d:23:de:
c6:7e:d8:2a:57:5b:a4:56:f2:ab:c4:e7:66:47:4a:
db:1c:14:91:8c:de:eb:e8:2e:bd:8b:14:5b:f4:5d:
6e:2b:51:7e:c3:22:83:d4:34:7a:ba:f3:e9:0e:02:
a9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:FF:DA:B4:A1:8C:BE:F6:A2:DF:5A:DA:33:EE:06:A6:B9:4A:41:9C
X509v3 Authority Key Identifier:
keyid:DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:19:f2:1b:d5:9b:7a:83:ec:76:d1:d0:29:40:23:0c:7e:89:
85:a5:29:84:0d:92:9c:f5:e5:da:48:fd:50:34:3b:72:aa:cf:
9d:2c:a5:90:4a:43:e6:a6:d6:65:c8:77:4a:dd:44:e5:5c:eb:
2e:09:a7:60:a0:16:b1:b0:79:d3:b8:e4:df:44:13:b3:1b:c2:
c6:62:5f:39:05:a9:b4:25:b0:0b:7c:f2:af:17:d1:76:4e:3e:
60:ca:a2:4a:24:19:a7:f6:f9:8c:a8:b3:2e:32:2d:fc:c8:53:
1a:0b:e9:0d:91:b0:65:b1:c0:b0:57:72:43:18:c1:3b:3f:58:
5c:15:c4:da:a8:7c:40:b5:64:24:6a:62:3f:76:56:d4:21:13:
c3:19:7b:ba:79:df:1d:c0:b8:04:83:7a:35:30:1a:97:cd:b7:
a7:c5:0a:64:af:b6:15:b8:9b:6e:32:79:ce:e6:1c:1a:e7:bd:
f1:56:a0:4c:57:ae:00:33:c3:72:ae:1a:20:04:d5:49:a7:98:
d9:0e:d8:d0:06:91:6f:63:ae:79:f6:33:c1:4a:83:4f:f7:8a:
f2:4c:c2:b5:5a:34:35:5b:55:33:21:68:87:03:d1:77:f0:0b:
76:bc:7c:70:1f:62:da:64:5e:b1:8d:20:0e:ff:7d:b3:c6:eb:
26:20:0f:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Yvbjh+zKRgTL9mfH1yGC5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlODA0YzljOGE0MzM5N2QxNjc3OWFhOTM0ZjcwNjczODhm
YzdkN2MwHhcNMjYwNDE3MDAwMTAzWhcNMjYwNDE4MDAwMTAzWjAzMTEwLwYDVQQD
Eyg5ZmZmZGFiNGExOGNiZWY2YTJkZjVhZGEzM2VlMDZhNmI5NGE0MTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxhSWQLVT+gJ0U/3Rr2yKj81VbYd
WOfhO+o4ax1UugKZGJrgoqq3I8vrgVIupukjOtDlkHEGEhoi5K+J04+YnCJwFnDq
NRaSncSILjZp5LXjnQrQj/RmywASAOnbSalh29RIWsGzITRb6T9uX3ZcY5JzOIV2
V8unjoqw/tDzv/FN/2GTzuulkU5y1Ttx8TkDrzGdT2WuSEP2ByFwF4BAwCkxf/cw
/fye/U7QKsDRycGVC2v3GrbBbrQfFwfdoNKUWlsRlkUc3fQh9vIqwB6dI97Gftgq
V1ukVvKrxOdmR0rbHBSRjN7r6C69ixRb9F1uK1F+wyKD1DR6uvPpDgKpuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ//2rShjL72ot9a2jPuBqa5SkGcMB8GA1UdIwQY
MBaAFN6ATJyKQzl9FneaqTT3BnOI/H18MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM29CTW5JcERPWDBXZDVxcE5QY0djNGo4Zlh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC85NjI1NGMtZmMwZS00ZjU4LTk1ZTIt
YWY0ZTUyNDFiZjIwLzEvM29CTW5JcERPWDBXZDVxcE5QY0djNGo4Zlh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC85NjI1NGMtZmMwZS00ZjU4LTk1ZTItYWY0ZTUyNDFiZjIw
LzEvM29CTW5JcERPWDBXZDVxcE5QY0djNGo4Zlh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArxnyG9Wb
eoPsdtHQKUAjDH6JhaUphA2SnPXl2kj9UDQ7cqrPnSylkEpD5qbWZch3St1E5Vzr
LgmnYKAWsbB507jk30QTsxvCxmJfOQWptCWwC3zyrxfRdk4+YMqiSiQZp/b5jKiz
LjIt/MhTGgvpDZGwZbHAsFdyQxjBOz9YXBXE2qh8QLVkJGpiP3ZW1CETwxl7unnf
HcC4BIN6NTAal823p8UKZK+2FbibbjJ5zuYcGue98VagTFeuADPDcq4aIATVSaeY
2Q7Y0AaRb2OuefYzwUqDT/eK8kzCtVo0NVtVMyFohwPRd/ALdrx8cB9i2mResY0g
Dv99s8brJiAPkQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:24:24 2026 by rpki-client