Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
File: 3SoSF2c-sRypijUTlSBAfJdo38M.mft (raw, json)
Hash identifier: Def3uJN/MX2Xj58apEq7gW0YW2d5135ImWmgPT9EMNM=
Subject key identifier: 4E:32:CF:C1:0A:50:3D:B8:DC:66:64:14:80:95:36:82:D3:07:CE:80
Authority key identifier: DD:2A:12:17:67:3E:B1:1C:A9:8A:35:13:95:20:40:7C:97:68:DF:C3
Certificate issuer: /CN=dd2a1217673eb11ca98a35139520407c9768dfc3
Certificate serial: 019EC1488CCBE28D1CFF3B77FFD777A9BFA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3SoSF2c-sRypijUTlSBAfJdo38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
Manifest number: 025E
Signing time: Sat 13 Jun 2026 14:00:17 +0000
Manifest this update: Sat 13 Jun 2026 14:00:17 +0000
Manifest next update: Sun 14 Jun 2026 14:00:17 +0000
Files and hashes: 1: 3SoSF2c-sRypijUTlSBAfJdo38M.crl (hash: E43WffH1fAMTKCflK0mn7jMKzsWL3vJc0hpS/JccsvM=)
2: WQR-Dyl5ml38JzgsrWjiLr-jTjE.roa (hash: 8pC1xGdRfwbbzKrCgP0LBKBZ1huDVz6z9MO3fLjaue8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3SoSF2c-sRypijUTlSBAfJdo38M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:8c:cb:e2:8d:1c:ff:3b:77:ff:d7:77:a9:bf:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd2a1217673eb11ca98a35139520407c9768dfc3
Validity
Not Before: Jun 13 14:00:17 2026 GMT
Not After : Jun 14 14:00:17 2026 GMT
Subject: CN=4e32cfc10a503db8dc66641480953682d307ce80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:27:57:3f:c1:e7:c1:01:9b:1c:00:63:e0:d3:
da:2e:03:7d:7e:77:a5:f2:17:0f:6e:fb:be:61:43:
a3:0f:43:ed:8e:cb:51:4e:ff:8f:36:36:36:d9:f8:
dc:d2:39:15:a2:75:45:b4:fe:96:57:96:d0:c8:08:
7c:7c:14:0e:49:73:71:c1:67:06:6b:56:42:29:fb:
03:70:e5:dd:cc:48:f6:32:fd:e0:1a:6b:af:c1:37:
0e:f9:5a:4e:6e:aa:bf:0a:50:60:e6:66:ac:4b:34:
19:fa:84:12:10:99:8a:fc:6c:52:64:ae:6c:c6:f8:
1b:f1:fc:81:11:a2:60:6e:3d:fe:26:a8:ef:65:32:
c8:ab:84:a3:af:ba:bb:09:e2:94:6a:4b:89:b9:a1:
ea:2c:af:de:fb:66:0b:4b:c8:89:f3:ea:6c:ce:53:
22:e1:7f:10:41:39:74:84:73:36:b2:18:c2:4e:74:
32:7c:2d:35:04:c1:44:10:03:bd:25:4a:18:af:03:
71:36:5a:e5:ff:03:15:27:69:c2:48:f7:eb:68:12:
20:d7:51:11:16:cc:e4:14:79:10:a6:dc:53:76:67:
71:0a:fb:ed:a6:74:b5:64:7e:14:54:21:34:ad:7e:
24:7c:b0:91:64:36:c7:54:31:d7:5f:72:43:99:37:
ac:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:32:CF:C1:0A:50:3D:B8:DC:66:64:14:80:95:36:82:D3:07:CE:80
X509v3 Authority Key Identifier:
keyid:DD:2A:12:17:67:3E:B1:1C:A9:8A:35:13:95:20:40:7C:97:68:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3SoSF2c-sRypijUTlSBAfJdo38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:78:c2:3e:d8:bf:07:3d:3f:ff:31:79:b4:0b:a6:e0:d4:50:
47:0c:ac:54:e6:94:fc:55:75:72:c3:1d:5c:97:cf:3a:7f:93:
9a:bc:e8:df:3e:ea:5a:1a:5a:a3:7a:9b:e5:43:e1:a6:19:49:
4c:42:37:e7:46:2f:de:75:96:6c:06:91:90:c7:f4:de:fa:54:
11:ae:a1:6d:9e:55:b7:b0:a1:54:05:5b:59:66:cb:c3:6f:bc:
53:ba:6f:e7:07:df:0a:4e:b8:13:9c:9f:3f:b8:16:92:4b:00:
cf:d3:01:94:93:31:52:c7:63:72:f9:5a:3f:a5:42:63:7e:c9:
3c:33:a4:1f:6b:16:a6:46:19:b1:2f:cd:d0:0a:df:9c:1c:6f:
47:76:e5:a9:5f:bb:db:24:d6:2c:22:f3:01:b5:39:f8:cd:50:
03:e0:c1:43:29:97:6d:46:40:b9:73:2a:2d:f0:70:a2:e3:d4:
c9:b0:06:f4:a2:a2:00:d1:9b:87:f3:73:22:2f:6a:51:6d:29:
39:57:03:c8:24:9d:3b:9e:4d:d1:ce:ce:f2:ea:6e:1d:82:a0:
c0:50:58:42:c6:a8:ed:4a:b4:3f:f4:aa:c9:83:74:db:c6:30:
d4:47:8e:36:d5:f7:75:a7:e9:5b:cd:c3:e2:3f:bd:39:40:04:
40:bf:c8:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:56:23 2026 by rpki-client