Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json)
Hash identifier: u0TlATRHYDBYcMes1q9ABjHek0xRpoYLpGlTn/hzsCw=
Subject key identifier: 21:6B:E6:E9:4C:76:29:01:43:6C:53:08:BA:4E:D0:B9:44:10:BF:23
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 019D98BDA24CBC35C6FF68818F1549C0B2A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
Manifest number: 16E5
Signing time: Fri 17 Apr 2026 00:00:57 +0000
Manifest this update: Fri 17 Apr 2026 00:00:57 +0000
Manifest next update: Sat 18 Apr 2026 00:00:57 +0000
Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: HjXJqDlfV0rMfCslsLt/11x8eVSaV903p+Wz3ehmPpk=)
2: dQKWrb4274MA9TnUoPK0iLguRN8.roa (hash: iabYGi8dw6jC4+Zg8izYgwpn552JIuXwr1GRxu62hag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:a2:4c:bc:35:c6:ff:68:81:8f:15:49:c0:b2:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: Apr 17 00:00:57 2026 GMT
Not After : Apr 18 00:00:57 2026 GMT
Subject: CN=216be6e94c762901436c5308ba4ed0b94410bf23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:88:76:e5:a9:48:62:ec:e4:bf:79:4a:7f:71:
4d:79:61:3b:1b:22:82:20:51:46:71:fb:b1:c8:d7:
b3:54:df:f5:43:fe:27:fd:de:04:a9:3c:3a:b6:1e:
37:00:01:49:af:67:8e:ef:b3:4b:84:d7:ee:73:ad:
b5:f0:d0:8c:08:c7:17:53:7d:2b:9e:5b:0a:b9:e3:
c0:1d:eb:f2:82:f5:32:ba:af:dd:92:cf:88:94:17:
9f:e4:0c:90:43:8b:ff:ee:06:6f:77:2f:20:47:f8:
bb:b2:77:a0:c8:59:7a:a2:b6:47:cd:85:29:e1:7b:
b6:28:e7:3e:4d:23:bd:a5:d5:5b:0b:df:f6:37:76:
09:65:14:81:8c:e1:2b:d4:e5:00:de:e4:c2:4f:0a:
61:6a:f2:6b:44:32:89:7e:63:0b:ae:d8:ba:8e:cc:
48:bd:c1:d9:97:4f:84:f4:77:b0:8c:71:83:55:04:
df:b5:db:d2:2e:ae:d5:ee:e0:bc:3b:3a:a6:8b:3a:
57:74:ac:2a:79:37:1e:f3:dd:06:d9:be:38:b5:df:
24:be:48:d8:d2:14:6b:f2:c4:dc:2f:7c:30:4c:36:
38:b1:21:08:91:0a:eb:dd:bc:2d:4f:4a:ab:b8:ec:
fb:8f:8c:24:fc:dc:d8:c1:b1:8b:f4:a0:4b:88:75:
08:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6B:E6:E9:4C:76:29:01:43:6C:53:08:BA:4E:D0:B9:44:10:BF:23
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:6d:6d:12:e8:d4:50:09:57:7f:b1:78:a7:5b:f2:ac:d8:45:
e7:37:32:cf:17:72:75:6f:a9:f5:4b:33:10:36:6c:a3:92:92:
b0:58:63:d6:05:cc:bc:50:2f:a3:fa:be:b1:77:95:1a:d8:66:
b8:fc:3f:8a:81:a4:d0:0a:a1:f0:f6:99:6c:3b:ab:6c:9d:97:
f1:36:f5:6b:71:9e:83:af:c4:e8:b9:f4:9a:ea:a6:11:a5:95:
23:69:d7:0a:a9:90:0d:52:71:41:4a:b5:9e:f6:ea:aa:82:c0:
89:b9:52:40:3e:1a:17:cc:58:22:12:59:05:2a:33:51:e5:08:
8b:be:8c:29:9b:0b:16:b0:b7:92:33:cc:2d:1f:d0:ba:c6:25:
d8:2b:92:66:9c:c6:21:f5:ff:34:1e:75:32:ff:57:b2:bd:b6:
af:26:de:fa:05:9e:44:47:58:79:17:3b:f0:77:18:43:59:7b:
cb:3e:6d:0b:48:96:91:6a:56:2b:9c:56:12:59:ec:85:64:ca:
1d:e7:73:97:23:d1:61:ae:79:97:b7:35:07:85:da:8a:15:40:
f6:e3:0e:ab:34:e8:4a:a6:fd:12:c1:57:f2:01:e7:8d:57:ed:
7a:f2:ee:c9:7c:fe:ae:16:e9:e2:2e:53:d1:d7:6c:19:73:4a:
30:6f:8e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:04:47 2026 by rpki-client