Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json)
Hash identifier: i8+l2w2qEOUaqPBZGllOn5PXBgDlC2OmontrX7UIHuk=
Subject key identifier: 77:D3:21:16:E0:6D:08:B9:A8:E5:3E:32:A7:39:03:30:FD:D4:1F:14
Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Certificate serial: 019EC1125CD343F4429F347D26F83FFE944F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
Manifest number: 18CA
Signing time: Sat 13 Jun 2026 13:01:06 +0000
Manifest this update: Sat 13 Jun 2026 13:01:06 +0000
Manifest next update: Sun 14 Jun 2026 13:01:06 +0000
Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: NaKdfM982csmuzDqir8FVanz2Exp2TceyIXtSlw8/34=)
2: TWjQ2gsQUU9MXDJP00l8lOI_i8I.roa (hash: PtqnNrTefbS8Cw3BlkL6LKO9S8DUkKbOBZ0zbUviWfs=)
3: WoaNei28YSaPDdcENSu3LjSXLKg.roa (hash: YXB0+7Vswy/qgNB0Agbnb+glIUAaceZRMWc/efKKqKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:12:5c:d3:43:f4:42:9f:34:7d:26:f8:3f:fe:94:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Validity
Not Before: Jun 13 13:01:06 2026 GMT
Not After : Jun 14 13:01:06 2026 GMT
Subject: CN=77d32116e06d08b9a8e53e32a7390330fdd41f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:14:e5:52:f3:32:cd:44:23:6e:b7:3f:0e:1b:
07:61:de:f4:e3:9b:dc:82:dc:7b:0a:8d:ed:fd:20:
e7:72:db:20:88:0b:82:8d:7e:f2:d1:d2:fe:17:57:
ba:aa:ea:fa:44:cc:4d:89:b4:6c:7b:88:96:a4:3f:
30:eb:93:9c:ac:f8:74:09:4e:fb:12:0b:5b:32:d8:
d9:65:0b:55:41:28:c2:28:62:be:d5:03:23:e2:90:
50:fa:46:47:23:f4:1d:c2:8a:ed:be:88:9d:21:7c:
6a:2f:ef:58:0b:fa:3f:ba:83:0c:54:e3:65:73:27:
9c:05:7e:1b:c5:82:90:e0:63:42:26:9c:ab:49:ca:
ae:b0:93:87:4e:73:bb:c5:6e:24:30:64:1d:9c:7e:
6f:a0:21:00:e9:09:89:3e:11:36:da:5e:46:3e:d1:
a5:f4:13:7d:32:c3:d5:e3:f2:33:28:ae:83:a1:18:
4a:f8:7e:27:73:cc:3b:1a:88:c0:79:e5:8d:75:3d:
8e:a9:d7:e2:2c:5b:d5:64:84:97:f7:07:7d:b0:bb:
93:a9:76:f4:0d:5c:10:c9:50:9a:69:19:d5:a9:8b:
c4:7f:8d:3a:f2:4f:2d:b2:e9:56:ae:e4:51:64:42:
6e:bf:50:fa:8a:91:11:cc:91:00:f9:ae:f2:17:cf:
b9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D3:21:16:E0:6D:08:B9:A8:E5:3E:32:A7:39:03:30:FD:D4:1F:14
X509v3 Authority Key Identifier:
keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:f6:62:23:53:e8:cd:2f:4e:a3:a2:52:52:9d:79:ab:47:d6:
9c:9a:24:88:c1:fc:07:b4:be:3b:2a:c1:bc:28:bf:99:1e:19:
a4:ad:a1:3b:09:61:d8:51:59:f7:15:91:a9:7c:22:cf:4c:6c:
4c:6d:d3:83:57:74:3a:81:f9:b5:b4:d7:ff:46:d3:d2:02:cb:
84:08:73:44:c3:15:f4:7a:be:91:53:74:2e:d8:44:3a:08:96:
c1:81:18:41:a4:60:10:c8:96:a3:c3:43:40:1a:83:f9:f3:e7:
de:c4:d1:8c:56:1e:c7:41:f4:b1:36:05:75:20:f5:7d:8e:59:
3f:44:1f:24:db:d7:3f:fd:2d:aa:bf:4b:d2:d5:f4:8c:5f:0b:
db:ae:a9:9b:55:9c:8e:38:fd:fe:96:c3:84:aa:e3:e6:22:07:
ee:a3:dd:bd:e8:34:fd:6a:14:df:d2:29:81:31:09:66:c4:ba:
0a:11:df:bd:ab:9a:bd:08:fa:5f:5d:af:45:72:5f:55:06:af:
fa:76:ee:51:33:5f:be:34:38:b2:ca:52:06:3c:06:19:d8:c4:
a4:2d:0a:31:0c:45:39:7b:c5:b6:b6:45:66:1e:c3:47:08:5c:
86:b8:77:87:6d:6a:67:06:fe:e2:ff:a5:3a:d0:f6:0f:e7:e6:
9e:b5:0c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:35:19 2026 by rpki-client