Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: eGsmZMABIuQbJPQfObc4WxY5vB/BW9gJqlxUvcqeB9g=
Subject key identifier: 1D:4C:59:B4:8E:EE:F3:45:20:7E:F8:28:84:F7:55:07:65:94:22:B6
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 019EBFFEFCA82CD537B06BC992BB4B9C3540
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0D5F
Signing time: Sat 13 Jun 2026 08:00:19 +0000
Manifest this update: Sat 13 Jun 2026 08:00:19 +0000
Manifest next update: Sun 14 Jun 2026 08:00:19 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: Ir/XtxaimCBYvo7DeQotaGmFAGSjn3uDBvveGkn095U=)
2: EpYfEYO_PBauG2EManfF8FgFl1Q.roa (hash: cXvNIHvNyPlxk30rEJGQL1sdKxLXm0Gvh2LNp2Lvi3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:fe:fc:a8:2c:d5:37:b0:6b:c9:92:bb:4b:9c:35:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Jun 13 08:00:19 2026 GMT
Not After : Jun 14 08:00:19 2026 GMT
Subject: CN=1d4c59b48eeef345207ef82884f75507659422b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:45:24:27:5e:19:90:82:14:f2:a8:90:01:66:
53:10:4c:65:3f:2c:8e:1f:87:4c:05:05:a4:8b:c3:
99:f8:fe:bc:13:ee:b6:9c:fb:a4:ee:c3:a7:e0:3a:
98:5d:5c:6b:e7:ff:37:ad:cd:5f:1a:05:70:ef:42:
28:37:5e:26:39:04:f9:9d:c8:cd:cd:8b:ce:88:92:
8a:bc:1b:2d:e9:61:d4:85:68:78:00:c7:c1:c0:15:
1e:da:f0:4f:79:a4:da:71:2b:43:b6:ee:6f:92:e3:
93:b4:10:f2:ad:2b:c6:56:13:77:29:dd:d0:09:f8:
69:78:e5:ba:27:e5:77:b1:f3:fb:c8:1b:45:60:15:
7e:4e:f1:40:c2:f3:a5:37:06:84:d1:a4:9c:d0:8e:
0c:5c:db:80:54:c4:49:8b:39:9f:da:cd:b0:fe:9c:
72:0c:82:1e:62:6d:c3:4c:45:d5:ff:41:3f:11:b5:
33:09:86:c0:5c:1c:0e:74:9f:39:d1:89:41:64:69:
5c:ac:64:a4:24:6a:62:9c:ea:cf:cb:ac:f2:d8:e4:
4f:d1:18:3d:2b:bd:eb:da:df:dd:f8:3d:66:40:b0:
ad:11:b6:07:63:29:72:4b:8f:6d:fe:7c:9b:9d:4d:
ba:82:cf:ee:99:9a:df:e2:76:55:21:25:a3:a2:4e:
68:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4C:59:B4:8E:EE:F3:45:20:7E:F8:28:84:F7:55:07:65:94:22:B6
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:f6:ef:fb:e7:c6:df:3e:fa:f3:ff:a9:c0:bd:17:ee:be:3e:
72:3d:7b:b6:03:ae:27:a6:2b:d0:8e:cc:97:55:d7:f2:9f:d3:
d3:23:32:e1:9a:9b:8c:ac:c2:1d:83:e2:b4:c8:05:f7:84:44:
f5:e7:4f:fd:39:02:d6:af:3d:50:90:f6:2f:2b:11:ff:24:a3:
f0:97:9f:21:3f:02:88:fd:c8:c0:c5:79:92:61:47:f7:33:db:
a2:a8:62:17:ee:6e:77:89:f4:ce:64:ce:97:f9:51:f1:3c:28:
fa:3f:27:61:f8:bb:29:57:be:ae:3b:a5:eb:9c:f1:a0:76:d6:
a4:6d:82:4c:28:40:c8:ce:41:51:7d:c1:e5:be:36:56:08:a2:
a5:dc:7f:a1:20:8e:60:b7:f0:67:88:24:fd:02:d6:51:fd:22:
b1:5a:38:77:6a:1f:ad:61:cb:ed:ee:00:8f:20:fc:7d:50:a7:
03:56:a1:56:43:f6:02:2d:9f:86:08:2b:9a:42:19:8f:48:40:
1d:d5:5d:86:5b:b5:31:aa:f9:f4:a4:fb:0f:2b:3a:b8:89:cb:
45:ba:1b:15:ff:82:18:3b:d1:9c:2f:e5:66:bd:5c:e4:ea:78:
4f:25:a2:8a:2b:c9:18:fa:b9:11:86:0e:3e:0e:96:15:c4:4d:
b9:62:9a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:15:13 2026 by rpki-client