Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
File: 3AXfbkBO-SDmpZKNiWPmpfjWESA.mft (raw, json)
Hash identifier: Km6u/Og4tpDg43ZL2UPSm0MSCo1ACC0tpBqK5FrZf5g=
Subject key identifier: 11:06:55:47:69:97:51:F3:10:F2:C0:88:1F:D0:E6:7C:2B:95:6A:08
Authority key identifier: DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
Certificate issuer: /CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Certificate serial: 019EBD6C982F70313405BB00FB3CA96AC998
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
Manifest number: 195A
Signing time: Fri 12 Jun 2026 20:01:11 +0000
Manifest this update: Fri 12 Jun 2026 20:01:11 +0000
Manifest next update: Sat 13 Jun 2026 20:01:11 +0000
Files and hashes: 1: 3AXfbkBO-SDmpZKNiWPmpfjWESA.crl (hash: x38ZYB+O7edI3idxvxc8QdoM7aJI2Uhl56d0cCO5Om4=)
2: WLGZfCZKmxfMTTmHvuZLK2OwTpM.roa (hash: o/3DvFAKUtiQSitJNR+MpNrJR84HlaGWEw9iU7EJXWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 20:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:6c:98:2f:70:31:34:05:bb:00:fb:3c:a9:6a:c9:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Validity
Not Before: Jun 12 20:01:11 2026 GMT
Not After : Jun 13 20:01:11 2026 GMT
Subject: CN=11065547699751f310f2c0881fd0e67c2b956a08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b3:58:ef:38:7b:b5:ad:bb:40:db:84:ed:b4:
05:d0:62:73:68:06:d0:67:ad:7b:ed:02:f1:f6:eb:
00:20:d9:84:ae:b0:3f:b3:1f:db:cf:6e:83:0a:d0:
7d:9c:11:ec:e6:b9:58:be:11:3f:80:c7:9f:75:3e:
87:24:52:b0:37:e0:cb:1b:e7:77:15:c7:e3:4d:c0:
d1:eb:ce:f5:5c:b6:8d:47:3d:1d:a3:0e:b9:96:6d:
9d:33:6f:4e:ea:ec:47:70:5d:24:b4:7e:2d:6c:92:
85:39:45:8f:48:36:93:18:4d:84:c3:4f:e7:04:f4:
6b:44:5c:e9:83:4e:2b:88:95:4d:99:63:a8:11:69:
33:20:d9:bc:50:b5:f7:b9:28:39:88:76:53:9c:76:
60:8d:df:ea:ef:1e:da:03:73:08:8a:89:0a:18:fe:
4a:3e:6e:27:ac:fe:f3:ad:70:6b:35:87:f2:56:0f:
5b:c5:84:16:b3:e8:9c:c9:9a:e9:1a:c2:4e:10:09:
1b:20:6c:98:52:77:f9:b7:8e:96:e8:45:41:a9:f5:
b6:52:dd:4d:25:d0:ed:d0:13:d4:a8:ca:97:8c:f2:
b9:23:b5:cc:5a:53:b2:c2:b2:9f:1f:39:8c:22:d5:
72:f5:f9:e9:c6:fb:2a:24:a4:73:a1:2f:c5:0c:ca:
8e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:06:55:47:69:97:51:F3:10:F2:C0:88:1F:D0:E6:7C:2B:95:6A:08
X509v3 Authority Key Identifier:
keyid:DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:b3:0b:61:ff:42:bc:eb:e9:96:ce:4c:56:cc:d0:0e:d6:f6:
7c:83:8d:89:4e:29:c8:38:fc:85:9d:c5:ee:72:07:5c:cc:65:
23:fc:8d:cb:25:ac:44:c6:d5:6a:4a:64:f3:06:72:46:1b:13:
a4:28:3d:5b:e9:70:73:04:b9:2a:84:f6:c5:16:15:7a:45:52:
af:3b:25:6b:22:af:4f:12:13:68:21:c8:8c:fc:b6:e1:41:06:
0b:d6:9a:fa:dc:7b:f9:a4:77:1a:1e:e0:dc:d7:cb:c6:9f:1a:
f3:5c:63:3b:fe:69:71:9e:2c:6d:12:83:48:d4:bc:de:1b:3b:
80:d0:5f:74:1b:4a:f7:9b:60:ab:82:91:b0:43:97:9a:49:c6:
a6:17:eb:f2:12:dc:31:bd:ba:11:df:1d:70:b6:cc:05:96:f5:
31:c0:a0:c5:ec:6f:a3:97:a5:10:93:92:4b:8a:ac:76:6b:a0:
bf:13:70:72:8e:e7:41:49:60:16:7e:4d:cf:d7:e4:80:26:25:
ae:c6:ca:aa:20:63:17:a9:91:62:47:b1:25:3e:b2:a5:6f:ff:
d6:b2:8a:81:36:a1:cd:aa:26:07:7a:35:1b:37:b1:7d:3b:86:
80:3f:98:7c:d8:94:00:e1:36:93:8b:45:d1:f3:75:22:d2:ad:
b8:a1:e7:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:57:46 2026 by rpki-client