Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
File: 3ohLjkYvPsE6QCTWaamdlK8FzbI.mft (raw, json)
Hash identifier: cyc1J+i14zSr6f/oMhsdnAOORLlyduNgPeGaEeE3eso=
Subject key identifier: 2E:77:2F:E3:03:CF:D3:89:CB:80:5D:5B:66:B3:09:26:7A:B3:BA:F7
Authority key identifier: DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
Certificate issuer: /CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Certificate serial: 019EBF2324A7402912A7C9F56F807F9067C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
Manifest number: 0A09
Signing time: Sat 13 Jun 2026 04:00:11 +0000
Manifest this update: Sat 13 Jun 2026 04:00:11 +0000
Manifest next update: Sun 14 Jun 2026 04:00:11 +0000
Files and hashes: 1: 3ohLjkYvPsE6QCTWaamdlK8FzbI.crl (hash: kOVlsXLV/mJSXmyMYfkdsh0rD/yEim26wvPlRIdH9bI=)
2: KyIGNZFDdjiF9uvViG3nRW9Bmw8.roa (hash: DzYiLKcYFU2Q0VtZNwQkwth/5N+BuGWGx0hMS551gkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:24:a7:40:29:12:a7:c9:f5:6f:80:7f:90:67:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Validity
Not Before: Jun 13 04:00:11 2026 GMT
Not After : Jun 14 04:00:11 2026 GMT
Subject: CN=2e772fe303cfd389cb805d5b66b309267ab3baf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5a:4e:a5:3f:64:2d:8c:b7:74:a2:0a:45:12:
6f:0b:68:54:67:ec:9a:60:63:09:56:26:a7:75:fd:
93:14:28:27:1d:9f:3c:d2:d4:73:b5:5b:cc:98:8f:
79:bc:25:45:51:b2:3b:c1:50:5f:01:89:91:69:e5:
03:0a:73:22:04:39:9a:f5:17:f8:e8:59:64:ea:fa:
03:12:a8:94:6b:34:ad:9f:08:bf:cf:0a:93:3f:9e:
d7:c4:85:cf:e6:6f:1a:a4:5e:73:fc:92:9c:6b:6c:
ee:40:b1:fd:b2:b1:d5:e3:f3:b3:33:fb:27:ec:ad:
ea:8f:06:a2:ea:b0:d5:b5:d1:6b:37:b7:a3:d5:64:
15:32:33:ad:b4:3c:40:fa:11:96:e5:87:51:96:fe:
e0:04:b2:eb:c9:67:13:5c:15:79:83:a8:9d:5f:7b:
37:c6:79:51:01:01:78:cb:1f:5d:1a:18:1f:34:7a:
d3:29:d1:2b:d0:ff:6b:af:ea:68:20:2f:05:2d:1c:
0f:a9:d6:90:5d:0e:83:7d:67:80:ff:f1:d6:e9:b7:
7b:25:07:63:37:1f:17:61:a6:31:5b:1f:19:de:ab:
0f:00:e9:05:74:2d:f2:23:2d:b8:0d:4b:fa:80:d3:
0f:61:da:cd:c5:31:72:d4:c7:fa:90:b6:bd:6e:b5:
41:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:77:2F:E3:03:CF:D3:89:CB:80:5D:5B:66:B3:09:26:7A:B3:BA:F7
X509v3 Authority Key Identifier:
keyid:DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:57:b1:b4:65:dd:2d:a4:7b:02:6c:51:69:f4:45:11:87:18:
69:e4:62:c9:ae:84:26:78:f1:c3:7f:43:ff:ff:38:0b:9f:a4:
dc:61:be:9d:11:b6:b3:55:f9:7e:15:dc:1b:36:10:11:9d:19:
08:b2:39:d8:26:b8:30:45:af:fa:24:75:8e:09:30:e9:e2:9e:
cc:31:fd:e3:3d:2c:a6:5f:c8:18:7f:ba:ff:4a:f8:49:4f:70:
e4:39:f2:fe:da:ca:23:ab:7b:f5:49:12:f0:79:ab:21:2e:c3:
62:c1:35:0e:27:c4:c9:91:a8:df:c8:7e:10:b5:b8:0c:0d:a7:
a9:9a:1a:b2:32:8a:88:24:a8:61:4e:ca:a9:1d:55:22:83:31:
9c:44:44:5b:61:ef:49:95:d2:be:4e:2f:30:25:66:5b:41:6e:
8c:65:e4:d8:7c:75:11:57:df:77:67:5a:c6:3f:ef:e5:5a:b0:
75:d3:3d:8b:3b:0f:ae:01:18:fb:19:7d:cf:37:9b:8b:34:65:
7b:6d:c0:14:3d:a9:e7:47:f0:05:bd:9f:8b:8d:7e:fc:a4:f4:
e7:03:7b:00:7e:f2:71:e0:d2:49:b2:b5:8a:de:22:53:c8:d3:
19:07:f1:ee:99:a7:09:02:9f:87:df:79:71:fd:13:91:87:57:
84:ae:3b:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6/IySnQCkSp8n1b4B/kGfFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlODg0YjhlNDYyZjNlYzEzYTQwMjRkNjY5YTk5ZDk0YWYw
NWNkYjIwHhcNMjYwNjEzMDQwMDExWhcNMjYwNjE0MDQwMDExWjAzMTEwLwYDVQQD
EygyZTc3MmZlMzAzY2ZkMzg5Y2I4MDVkNWI2NmIzMDkyNjdhYjNiYWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1pOpT9kLYy3dKIKRRJvC2hUZ+ya
YGMJViandf2TFCgnHZ880tRztVvMmI95vCVFUbI7wVBfAYmRaeUDCnMiBDma9Rf4
6Flk6voDEqiUazStnwi/zwqTP57XxIXP5m8apF5z/JKca2zuQLH9srHV4/OzM/sn
7K3qjwai6rDVtdFrN7ej1WQVMjOttDxA+hGW5YdRlv7gBLLryWcTXBV5g6idX3s3
xnlRAQF4yx9dGhgfNHrTKdEr0P9rr+poIC8FLRwPqdaQXQ6DfWeA//HW6bd7JQdj
Nx8XYaYxWx8Z3qsPAOkFdC3yIy24DUv6gNMPYdrNxTFy1Mf6kLa9brVB3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC53L+MDz9OJy4BdW2azCSZ6s7r3MB8GA1UdIwQY
MBaAFN6IS45GLz7BOkAk1mmpnZSvBc2yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM29oTGprWXZQc0U2UUNUV2FhbWRsSzhGemJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny80NWRmNTYtZGQzMi00MzNjLWI0NGUt
NGFmNzA0MDJiMjcwLzEvM29oTGprWXZQc0U2UUNUV2FhbWRsSzhGemJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny80NWRmNTYtZGQzMi00MzNjLWI0NGUtNGFmNzA0MDJiMjcw
LzEvM29oTGprWXZQc0U2UUNUV2FhbWRsSzhGemJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhFextGXd
LaR7AmxRafRFEYcYaeRiya6EJnjxw39D//84C5+k3GG+nRG2s1X5fhXcGzYQEZ0Z
CLI52Ca4MEWv+iR1jgkw6eKezDH94z0spl/IGH+6/0r4SU9w5Dny/trKI6t79UkS
8HmrIS7DYsE1DifEyZGo38h+ELW4DA2nqZoasjKKiCSoYU7KqR1VIoMxnEREW2Hv
SZXSvk4vMCVmW0FujGXk2Hx1EVffd2daxj/v5VqwddM9izsPrgEY+xl9zzebizRl
e23AFD2p50fwBb2fi41+/KT05wN7AH7yceDSSbK1it4iU8jTGQfx7pmnCQKfh995
cf0TkYdXhK475w==
-----END CERTIFICATE-----
Generated at Sat Jun 13 08:56:36 2026 by rpki-client