Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json)
Hash identifier: ntVKL+580b5RQTmdzfdq0cYEsA6ie0O1YYPoKDcMdWk=
Subject key identifier: DE:DD:51:E5:10:FE:DC:DC:03:DD:1F:54:2E:5B:18:EE:E6:50:3B:87
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 019D9A3E8446CEB6A07F295C8D3918B40C8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
Manifest number: 18CF
Signing time: Fri 17 Apr 2026 07:01:21 +0000
Manifest this update: Fri 17 Apr 2026 07:01:21 +0000
Manifest next update: Sat 18 Apr 2026 07:01:21 +0000
Files and hashes: 1: 1fQajHTJp0S8KUunDd6YeyFtENM.roa (hash: mmAzmTwR/ELzJWO/mTGxkNnXnKiWntSSUF9kf4/Kzb4=)
2: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: VLS1pah582wEV+Ojd8BGKMgm4vGXWbDBX7nAxG/Z0vw=)
3: 6I-aggcE89s528aMt_8CuZqJ61A.roa (hash: 1l0d6AnGSzNrEZie8Z3fZ9Fg7c3oqYcQ4vM6hMLN2Xk=)
4: AFp3F2X8yQTaBQfkM_zsF9UYmww.roa (hash: 7p1zPt6PNmGU8W+3TijuQxRqjYyJqKF96JpQUyZBeZY=)
5: EHQpUpEMo4S4SvN6ygFHQVkQJ6A.roa (hash: aL98OrOlu07CFPxf6rwXnJMO4vbO/beSHKJmE+F/5nQ=)
6: XBx3ZjkQBmOob1C1AQifpzrj3Es.roa (hash: toUyH2dFBi0jUqBudUbZQlU2ok2/b2pqbfdKdGPRAog=)
7: l6dcV9zJ9n_Ctd5EzzonA7X-jFo.roa (hash: mwxDuvlYfTCoynYTFAQOpS/BivdbtxW1voj1voq8fsg=)
8: rrxhY0T34NFm8dBURFOGg9BvJjw.roa (hash: CAUMQZvZz6QKlQgRUZEx4oRHdyyDBXGnUQ6HYMNXgDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:84:46:ce:b6:a0:7f:29:5c:8d:39:18:b4:0c:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: Apr 17 07:01:21 2026 GMT
Not After : Apr 18 07:01:21 2026 GMT
Subject: CN=dedd51e510fedcdc03dd1f542e5b18eee6503b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3e:7a:3b:84:32:a2:b9:31:ae:f2:d2:dd:4d:
ba:b3:10:e2:9f:a5:22:f6:36:3c:62:ca:fc:8f:75:
de:3b:dd:04:f2:6c:a3:71:3d:71:20:9f:e4:a1:ab:
61:1b:d3:35:c5:5a:33:09:de:40:d6:e7:ee:13:24:
69:49:cd:98:97:a1:0a:c3:87:68:9a:f1:90:25:b0:
eb:5c:4e:d9:e3:bf:08:16:54:fa:8f:bc:76:4d:00:
a7:2d:c7:1d:dd:84:d1:e4:de:b8:94:4f:07:f7:40:
06:8c:71:53:70:3f:47:06:b9:18:41:3e:b8:e9:97:
cf:ed:50:2b:fa:94:ba:d7:e3:86:20:45:11:d9:18:
30:b9:5a:19:20:39:5a:06:c3:09:3b:07:b8:60:98:
ac:9a:b4:94:bd:92:a1:b1:fb:a1:f7:21:21:25:c0:
0a:93:84:f2:33:70:50:1a:da:cf:f2:27:e1:94:71:
55:2a:50:10:6d:99:32:c4:cf:76:4f:b3:07:67:95:
4c:52:cd:b4:95:be:8e:2d:e5:e4:f9:92:ce:a3:12:
9e:24:d6:ba:a0:1c:78:a7:36:57:db:d6:53:58:e9:
ca:5a:bf:69:8e:4c:65:63:55:92:33:5f:4d:50:5c:
89:f4:18:3f:15:a6:dc:43:ed:28:3a:31:5f:6f:51:
a4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DD:51:E5:10:FE:DC:DC:03:DD:1F:54:2E:5B:18:EE:E6:50:3B:87
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:35:f0:db:b0:0e:74:8a:7e:66:b9:62:e9:22:84:db:74:12:
4d:4b:bf:dd:cf:a5:9e:49:26:13:6c:6b:f8:ed:0f:a4:99:bf:
21:e8:d5:c6:7c:66:cf:f6:f4:c4:86:e0:13:cf:4d:8a:34:21:
51:3b:5b:4b:17:05:ca:5c:25:1b:96:1a:08:77:55:de:06:50:
3e:b5:41:f0:17:45:1d:a9:83:69:6a:cb:cc:82:31:16:cc:1e:
3d:06:f1:27:80:9f:09:45:ee:eb:4a:94:b9:80:84:66:cd:c3:
62:f5:25:4d:74:0d:2b:3b:2b:cb:d5:e7:57:07:d8:df:d4:c7:
1a:b2:f4:f7:1d:45:e0:44:13:c4:98:e9:28:ca:92:9e:3a:3c:
cc:fd:86:c4:10:73:c9:85:25:f5:f2:80:23:20:91:61:13:bf:
8e:03:32:a4:6b:2e:08:e9:c2:fe:ce:f8:47:15:08:56:04:02:
e2:d5:14:d4:15:5e:40:0f:8b:c1:93:8e:3f:46:9d:82:f2:2c:
ac:dd:ca:e2:c3:ca:3e:e0:bd:08:3a:20:2b:02:55:b0:e7:64:
5d:a2:5c:26:ff:c4:f9:d4:d0:8f:95:9e:29:c1:86:69:84:e8:
b7:be:54:91:10:d1:e2:55:ff:d9:82:ea:87:e8:54:e6:d7:58:
fe:9a:45:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:21:08 2026 by rpki-client