Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: RC6tPc7x0sYMad0qZwieLx47Ce1xjgEw3EOqrcjbRIU=
Subject key identifier: E7:E8:F9:99:06:CC:F5:5E:6A:7F:63:17:D4:87:50:F3:FB:8A:64:4D
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 019D99D055A37F44B7003E3A4A4E23B9BC71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0D33
Signing time: Fri 17 Apr 2026 05:01:00 +0000
Manifest this update: Fri 17 Apr 2026 05:01:00 +0000
Manifest next update: Sat 18 Apr 2026 05:01:00 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: Tvc5W5pdz67aG2FlULtm9pZViED0yCaV22FEMgHKCcQ=)
2: _ioUT6ot6spKYeitBH6WHig08aI.roa (hash: lPf90VagjG9YZhFPp1sns8p7TmON2JIuqMSkRErr21k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:55:a3:7f:44:b7:00:3e:3a:4a:4e:23:b9:bc:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Apr 17 05:01:00 2026 GMT
Not After : Apr 18 05:01:00 2026 GMT
Subject: CN=e7e8f99906ccf55e6a7f6317d48750f3fb8a644d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cd:43:ce:08:86:6f:04:b1:5f:54:b0:8c:da:
62:79:f7:3d:1c:4a:d6:e8:f1:07:2a:9f:73:e3:5e:
34:8c:7f:d8:80:af:8e:a1:c2:c6:17:b3:f2:8f:f7:
fb:aa:f2:4f:ca:24:28:39:3f:1f:a6:20:65:86:41:
84:74:f0:41:ff:1c:e9:91:44:c5:5b:62:37:a2:ef:
e6:ed:8d:b9:9b:40:40:16:74:2d:4d:11:1f:d2:ab:
f8:16:a8:e1:41:e6:f3:1c:ed:e9:9a:79:c8:72:8e:
92:e5:17:22:b4:ba:0f:67:89:1a:bf:9b:f8:d4:bd:
41:88:a3:b5:ac:11:39:89:9d:ba:fa:22:a3:65:ea:
2a:fa:a7:2e:6e:6b:2c:c8:66:ea:43:21:d2:2c:03:
66:60:2b:9b:09:a1:3a:d9:4f:b4:f7:d8:b8:12:ce:
1a:08:12:ee:08:70:29:28:2b:7d:31:72:f9:71:2d:
0b:53:3b:14:0c:91:fd:66:c9:3b:55:cf:b7:af:0d:
ce:db:02:ae:2f:ec:a7:63:20:78:bf:38:8f:a9:91:
17:7a:8c:5e:25:1d:d2:81:ec:9c:97:5f:ae:1f:70:
86:74:6d:a0:84:84:82:a9:a4:d3:0e:43:d2:e3:93:
b9:d9:fc:c3:ff:9f:d0:1e:79:63:25:ed:40:45:d5:
e3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E8:F9:99:06:CC:F5:5E:6A:7F:63:17:D4:87:50:F3:FB:8A:64:4D
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:2f:3e:de:c3:b3:e5:03:0e:44:31:4a:71:40:1e:e2:a5:bb:
ca:3d:72:a0:8b:8f:75:87:5c:5d:a6:53:bf:be:93:e6:f1:fe:
91:4f:8d:34:6c:fb:09:b1:91:6f:11:5e:37:f5:4c:64:0b:5e:
8b:20:00:58:1d:58:73:d5:95:ae:8f:aa:db:b4:cc:ec:f8:5f:
87:d6:c3:f1:d5:4e:43:c3:f7:57:2d:d3:ef:ed:7f:61:03:f9:
e3:b0:49:8e:5f:1a:b6:21:97:81:2e:59:a3:5f:6a:5d:d5:a2:
dd:22:6c:f6:f8:96:57:84:8c:0f:f9:c5:a6:84:6b:77:8e:56:
e4:ab:06:45:a0:57:69:68:fe:1e:18:cd:d4:e6:0b:0b:57:81:
09:a2:74:90:71:8c:3b:38:14:82:8b:8e:b2:75:d6:15:d6:e1:
84:4a:5f:0b:2e:c9:ff:a8:3e:70:ec:7c:6b:38:dc:90:e4:7c:
73:f6:e9:5e:26:64:3b:d8:ff:e3:df:5b:b5:f6:70:ee:86:5e:
8f:bd:67:e5:8d:80:1e:68:7a:10:67:5f:c1:d2:51:64:7c:67:
13:af:3c:bd:dd:89:b2:8a:75:27:af:b6:ac:eb:93:9a:b2:98:
91:6f:aa:5e:21:35:e4:13:39:4c:c5:0e:75:e5:3a:21:47:a6:
27:77:10:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:36:35 2026 by rpki-client