Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json)
Hash identifier: /WJ7gqeqQ4Aug5vpET6E13L4heoJChGkRaSWKtd2Fhc=
Subject key identifier: A1:70:E0:AE:1B:B7:E0:80:2F:D1:9A:A0:34:25:83:BC:79:37:6B:0D
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 019EC1B6C9AA978A598FFCBB17B36A53001A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
Manifest number: 1968
Signing time: Sat 13 Jun 2026 16:00:42 +0000
Manifest this update: Sat 13 Jun 2026 16:00:42 +0000
Manifest next update: Sun 14 Jun 2026 16:00:42 +0000
Files and hashes: 1: 1fQajHTJp0S8KUunDd6YeyFtENM.roa (hash: mmAzmTwR/ELzJWO/mTGxkNnXnKiWntSSUF9kf4/Kzb4=)
2: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: UoptAj70FrEpIhnpxwHb0W9jvbtURiZjm71HxGdIq0E=)
3: 6I-aggcE89s528aMt_8CuZqJ61A.roa (hash: 1l0d6AnGSzNrEZie8Z3fZ9Fg7c3oqYcQ4vM6hMLN2Xk=)
4: AFp3F2X8yQTaBQfkM_zsF9UYmww.roa (hash: 7p1zPt6PNmGU8W+3TijuQxRqjYyJqKF96JpQUyZBeZY=)
5: EHQpUpEMo4S4SvN6ygFHQVkQJ6A.roa (hash: aL98OrOlu07CFPxf6rwXnJMO4vbO/beSHKJmE+F/5nQ=)
6: XBx3ZjkQBmOob1C1AQifpzrj3Es.roa (hash: toUyH2dFBi0jUqBudUbZQlU2ok2/b2pqbfdKdGPRAog=)
7: l6dcV9zJ9n_Ctd5EzzonA7X-jFo.roa (hash: mwxDuvlYfTCoynYTFAQOpS/BivdbtxW1voj1voq8fsg=)
8: rrxhY0T34NFm8dBURFOGg9BvJjw.roa (hash: CAUMQZvZz6QKlQgRUZEx4oRHdyyDBXGnUQ6HYMNXgDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:c9:aa:97:8a:59:8f:fc:bb:17:b3:6a:53:00:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: Jun 13 16:00:42 2026 GMT
Not After : Jun 14 16:00:42 2026 GMT
Subject: CN=a170e0ae1bb7e0802fd19aa0342583bc79376b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:51:f9:40:a7:06:45:22:45:79:e5:0e:2c:5b:
fc:a5:08:8f:ae:c4:33:02:1b:1d:63:a1:20:44:60:
79:85:20:43:b8:4a:79:7f:39:26:4f:c5:ac:d1:4e:
4c:d5:60:04:3a:db:d0:87:9c:be:54:38:1d:11:ba:
64:78:9f:1c:79:24:51:de:ef:b6:dc:60:7d:a8:24:
92:e0:68:24:05:d3:f3:10:8f:3b:4f:ef:48:f1:6d:
53:40:70:a1:dd:1f:97:bc:82:bb:b7:1c:5d:ce:49:
5c:86:0d:52:d2:f6:6b:20:92:38:7d:1c:f7:bf:b4:
d8:b9:90:c7:d8:49:fa:ca:66:f2:26:03:52:c7:bc:
e5:a9:3c:4e:6b:08:1f:e3:0b:9a:2f:0e:96:97:53:
e9:8d:8a:fd:a7:7f:03:fa:d5:fc:0e:ba:29:5c:78:
d6:0a:67:16:e9:5e:0e:20:bc:e5:b7:85:87:8b:72:
67:79:b6:06:b6:12:40:01:29:3f:aa:76:ae:cd:4b:
02:72:28:3c:14:2c:03:26:e8:01:d3:21:48:18:e1:
79:f4:20:65:7d:79:8b:7e:73:33:d3:50:3d:79:e1:
cf:15:30:1a:4c:48:45:b0:2f:43:a9:b8:f7:e0:ae:
a5:ec:25:62:9b:86:4f:25:5c:6b:05:a6:7e:a9:77:
2b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:70:E0:AE:1B:B7:E0:80:2F:D1:9A:A0:34:25:83:BC:79:37:6B:0D
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:33:ca:7b:59:11:a0:2b:c8:72:24:eb:28:05:96:93:33:d6:
c7:42:9f:c3:fe:07:cc:76:a4:c9:34:9c:2e:ab:7f:30:0d:b8:
11:66:f9:86:fe:c5:eb:bc:0e:44:d4:5f:5a:a6:37:6b:de:9f:
be:5d:c3:3d:1f:8f:cc:a7:e2:18:22:89:3e:82:96:4d:d3:dc:
e3:3e:86:2f:c6:11:d3:4e:14:62:ab:85:41:d8:e5:bf:ff:07:
52:09:b1:90:8d:8a:9b:8c:82:3c:df:cb:c2:fa:07:f2:11:f4:
87:db:b2:2b:6f:28:15:f2:ea:f4:ff:ec:6c:bd:ae:17:00:a9:
18:cd:2b:e9:ac:52:ec:25:4d:03:00:ae:6a:61:5f:0d:50:dc:
6b:d0:f8:44:45:e3:b8:3a:15:93:b1:20:89:f6:51:c7:06:c6:
a6:36:80:ee:3d:cd:13:b6:d1:7d:c6:28:d2:cc:3a:63:1e:ab:
7b:40:00:a4:0f:9e:1a:0d:c8:0c:3d:5b:70:c2:7a:8e:16:48:
25:2a:75:71:d7:f1:37:07:3e:6e:e2:ea:ec:e8:a4:bb:ed:fd:
57:a7:11:e7:be:92:3b:65:fa:8f:08:5c:24:0d:3c:87:03:ef:
1d:40:97:0f:59:c5:b3:2a:27:f5:d5:25:9f:64:50:30:aa:05:
9d:bf:2d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:12:04 2026 by rpki-client