Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: aOojPBWH4Cx6quzsHKvMp0NUDqsf0mN9PhE+7qYcPIs=
Subject key identifier: 25:CE:8C:9A:A2:6C:05:85:E6:AD:F2:CB:CC:32:C5:96:A7:D4:FF:F1
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 019EC148F68DFA495EB54882BD54992F6CE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0DCC
Signing time: Sat 13 Jun 2026 14:00:44 +0000
Manifest this update: Sat 13 Jun 2026 14:00:44 +0000
Manifest next update: Sun 14 Jun 2026 14:00:44 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: tDmVwRUtq3vLxHafNg62eeh28p/yGfjnx6++egqfaYQ=)
2: _ioUT6ot6spKYeitBH6WHig08aI.roa (hash: lPf90VagjG9YZhFPp1sns8p7TmON2JIuqMSkRErr21k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:f6:8d:fa:49:5e:b5:48:82:bd:54:99:2f:6c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Jun 13 14:00:44 2026 GMT
Not After : Jun 14 14:00:44 2026 GMT
Subject: CN=25ce8c9aa26c0585e6adf2cbcc32c596a7d4fff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ae:83:32:6c:0e:2a:b9:85:52:a4:5f:d9:a8:
e9:99:31:1b:1d:35:9d:21:a4:a7:a0:1b:4a:5a:4f:
d8:06:ac:a0:97:14:69:b2:5b:7a:2e:c4:33:a8:fe:
ec:f2:9d:41:58:12:37:e8:8a:b1:26:22:a5:68:75:
6a:88:a7:aa:a0:c5:50:64:9e:ec:17:13:36:7a:ef:
d1:a4:16:06:a3:5c:9e:1d:9a:4f:d1:7c:e3:96:db:
77:90:59:a5:43:fd:97:87:89:56:44:68:58:44:02:
a2:8d:19:98:40:04:2d:58:3b:77:7d:5d:49:44:de:
a5:1a:46:bc:43:a3:04:8e:95:b6:30:79:3b:6a:1e:
42:ca:c5:c2:83:72:e0:d8:12:25:2b:d0:d1:05:e4:
5e:77:e0:a3:61:6e:97:8c:ec:01:7a:eb:9a:3b:d3:
97:66:fb:e3:31:fa:37:0f:6b:fa:05:ff:29:ed:94:
70:db:de:de:a0:30:f7:01:a3:82:74:7a:05:4a:d9:
b5:92:c2:93:a9:93:ae:2d:3b:af:c7:70:5a:4b:85:
12:fd:f0:0a:96:c3:ac:98:6c:7e:96:1f:90:c1:b2:
08:ec:bd:1b:f2:17:2f:b1:ec:02:c4:6b:7f:b3:42:
81:c8:11:c1:83:1c:e7:d8:8e:f5:21:38:d9:92:8f:
ce:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:CE:8C:9A:A2:6C:05:85:E6:AD:F2:CB:CC:32:C5:96:A7:D4:FF:F1
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:09:42:e6:02:6b:da:89:f6:6e:2d:d3:c8:3a:63:53:80:59:
98:88:1b:af:88:de:00:44:26:cf:74:e1:95:73:b0:39:98:34:
0f:d6:ed:9b:4c:f3:7c:19:c8:d7:ea:ec:20:79:12:b4:e9:cb:
87:5e:10:54:f4:87:52:fe:2a:92:9d:a1:03:53:d7:57:29:2a:
a5:4a:43:32:a4:7d:23:be:09:b3:d6:e0:e0:85:15:27:8f:1d:
4c:e4:3f:78:25:06:ff:dd:2f:18:3b:21:c8:46:f9:bb:c2:82:
a7:58:3e:00:28:5a:92:ca:e5:9c:be:bb:c7:87:f5:c0:50:25:
8a:67:23:c8:6e:7e:e6:54:06:2a:00:cd:22:ca:d2:3b:8d:e2:
39:47:21:1d:9e:74:e9:44:49:04:4a:7b:15:3d:35:80:7b:0a:
1c:5a:8e:8f:cf:b5:30:fb:15:1e:72:aa:a5:f3:2e:95:16:4e:
d1:bc:2e:a8:37:84:40:21:4c:fb:b3:82:21:12:c9:e1:ac:c3:
ae:da:f1:68:fc:0d:76:ee:29:2e:dc:b2:a7:9c:9c:58:53:85:
9a:2b:85:2f:56:2b:ab:5c:cf:b5:33:21:68:f0:61:a1:b6:05:
42:33:ae:c2:93:0d:54:a0:9c:ab:42:b0:5a:28:26:bf:98:b7:
3a:6a:1e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:37:13 2026 by rpki-client