Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json)
Hash identifier: KE9qC87aZwnQOrIlMOpApX8vrhqrC/1/uoTQJcu7U4Q=
Subject key identifier: 06:B7:27:11:2F:72:AB:A9:13:CD:0C:65:5A:0E:B6:34:4B:09:D0:9B
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 019EBE47CD7BE0FA549F5E4C5EB1A5996C7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
Manifest number: 177D
Signing time: Sat 13 Jun 2026 00:00:37 +0000
Manifest this update: Sat 13 Jun 2026 00:00:37 +0000
Manifest next update: Sun 14 Jun 2026 00:00:37 +0000
Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: 7FfugcU3D4zCI333t/5BgyEAUM0ij3oAtL26uRAX5Xk=)
2: dQKWrb4274MA9TnUoPK0iLguRN8.roa (hash: iabYGi8dw6jC4+Zg8izYgwpn552JIuXwr1GRxu62hag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:47:cd:7b:e0:fa:54:9f:5e:4c:5e:b1:a5:99:6c:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: Jun 13 00:00:37 2026 GMT
Not After : Jun 14 00:00:37 2026 GMT
Subject: CN=06b727112f72aba913cd0c655a0eb6344b09d09b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:18:8d:63:b1:3e:01:7c:de:94:a4:29:99:09:
d6:08:1b:2a:d5:a5:1d:31:a3:ba:f6:8f:fb:9e:b4:
7c:f2:1b:0f:16:ba:27:c5:d9:bd:4d:04:42:82:9d:
8f:3f:fd:29:2f:d4:6d:db:59:57:22:d7:7c:e3:64:
c0:9b:41:b3:f5:48:26:df:ed:61:f2:98:fa:74:9f:
90:df:38:8f:22:0d:d6:23:b4:b2:ef:53:53:b0:6b:
ff:f3:78:81:a5:c3:9e:b5:05:4b:ad:07:d6:53:56:
0e:96:75:96:31:2e:e8:cd:67:aa:38:05:ad:03:dd:
6b:c0:14:a8:8f:82:6f:d4:c2:bf:7b:f9:e7:ec:02:
b0:5a:44:17:b1:d0:c1:5e:ec:ea:75:24:fd:58:9c:
04:09:a1:30:12:2e:ac:6e:2f:ac:bb:21:55:f3:52:
42:04:18:ed:83:b0:5c:0a:f6:4c:9e:2a:5c:16:03:
ef:f3:6f:8f:98:99:44:d4:31:31:22:85:30:d3:a1:
ed:c2:39:b9:a2:a0:ee:7e:ca:e5:93:6b:ed:92:06:
db:9d:9c:0a:4c:da:99:29:7b:46:d5:a4:c2:c1:c0:
14:85:70:8f:d4:96:62:fd:65:a6:eb:f4:e5:1a:f1:
da:3b:ec:46:7b:15:ab:ac:07:08:db:81:d7:c0:1e:
33:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B7:27:11:2F:72:AB:A9:13:CD:0C:65:5A:0E:B6:34:4B:09:D0:9B
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:e0:78:f2:fc:46:b8:84:50:90:9b:5d:cb:46:c9:65:02:a9:
a2:68:ca:70:b3:6b:f5:a9:4c:7b:a0:c5:43:36:f8:a7:3e:c4:
c4:9e:d1:08:28:ee:f0:7c:54:52:f8:a9:7a:27:1d:08:83:58:
1f:dd:ad:5a:ea:64:ad:f7:de:e2:b4:3e:80:f5:b3:05:d2:6c:
41:c8:93:71:9a:48:48:9e:7f:d1:03:e0:95:8b:68:63:74:11:
48:9e:68:22:5b:63:12:74:56:7f:b8:a9:6a:17:87:0d:dd:0f:
69:71:26:1c:a5:b5:18:2b:bc:c3:73:59:db:4b:71:12:d8:c0:
bc:00:0c:eb:1e:b5:be:41:6b:30:82:e3:3e:f7:9a:a5:98:b2:
57:12:7c:a6:67:f4:92:5a:ea:12:39:fd:22:21:cd:9d:01:22:
90:77:e8:1d:6f:40:3c:01:29:a6:0b:3e:6d:b3:44:86:d9:46:
c3:3e:22:8a:22:6f:d3:a8:e8:82:17:a7:68:e6:2e:68:15:5b:
e1:e0:3f:a2:86:a0:a7:7e:34:85:f2:31:5f:4c:16:26:a1:7a:
df:0a:8e:76:b5:2d:68:32:ea:f5:18:d9:e1:87:f5:a4:f0:6f:
96:31:e3:82:64:e1:ab:e3:78:fc:aa:c4:19:47:0b:3e:18:ff:
b1:61:b2:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:35:50 2026 by rpki-client