Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
File: 3erZGbhaEwUdAgi34o3cyzmLFNY.mft (raw, json)
Hash identifier: mFaRjG9Ydhio2qfZgIRIHjnSeqp7LyPuTcI48WQzVlc=
Subject key identifier: 5F:1E:88:06:98:D7:86:C1:C1:5F:E6:0F:16:D4:93:B6:4B:25:4E:63
Authority key identifier: DD:EA:D9:19:B8:5A:13:05:1D:02:08:B7:E2:8D:DC:CB:39:8B:14:D6
Certificate issuer: /CN=ddead919b85a13051d0208b7e28ddccb398b14d6
Certificate serial: 019EBE10CD16541D0889507DB11E764381B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
Manifest number: 195F
Signing time: Fri 12 Jun 2026 23:00:32 +0000
Manifest this update: Fri 12 Jun 2026 23:00:32 +0000
Manifest next update: Sat 13 Jun 2026 23:00:32 +0000
Files and hashes: 1: 3erZGbhaEwUdAgi34o3cyzmLFNY.crl (hash: EN7FCFPVRdbqJwRaSdhvwneU/Oda1nBMgo8RhEz5TIs=)
2: iKwLG1q1sDs9tvR7rIxpNbBHq4g.roa (hash: 5Al8Pm91tYMp0+j7fJGmguSqWX96C92TH8gJMDHEyyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 23:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:10:cd:16:54:1d:08:89:50:7d:b1:1e:76:43:81:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddead919b85a13051d0208b7e28ddccb398b14d6
Validity
Not Before: Jun 12 23:00:32 2026 GMT
Not After : Jun 13 23:00:32 2026 GMT
Subject: CN=5f1e880698d786c1c15fe60f16d493b64b254e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ee:98:f5:e6:a4:e8:83:8f:15:cc:ff:90:3b:
48:98:8d:63:7a:10:75:1d:46:d5:c5:fc:c6:8c:63:
eb:c3:92:5f:49:ac:61:76:20:f8:2b:dc:97:7d:68:
10:9b:6c:96:7a:0e:b0:6f:4d:3b:f2:5a:48:f4:85:
ea:3b:c3:23:ef:16:a1:bd:08:cd:04:aa:17:d6:5b:
80:9f:16:77:fd:9e:a4:2a:fc:1c:96:f1:09:70:76:
f0:1a:7c:65:86:6c:d1:78:5a:a9:0e:03:68:57:aa:
ca:af:37:7e:84:de:e2:77:e8:f8:d3:63:a7:b0:80:
0c:c1:5a:b1:d3:f3:32:5e:8b:eb:a0:53:35:e4:1d:
22:55:bd:90:17:3b:fa:e1:29:36:82:1a:fb:3a:0a:
6d:9a:5c:23:04:44:d5:49:9b:dd:f9:63:58:07:a2:
53:09:b2:63:d3:52:63:4a:b1:c2:41:b8:6d:10:43:
a8:f3:c9:82:3d:7d:6c:6a:f6:e7:48:a4:8a:3f:4d:
aa:68:cf:e2:64:30:70:74:0c:c4:ef:6a:93:66:4a:
ee:eb:79:6b:5c:68:50:e4:4f:43:9d:98:15:03:b4:
f7:10:e0:25:b9:eb:07:59:2c:54:6e:23:09:83:70:
c6:01:09:a4:e5:92:52:85:fb:1e:fa:ed:9f:0a:8f:
2f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1E:88:06:98:D7:86:C1:C1:5F:E6:0F:16:D4:93:B6:4B:25:4E:63
X509v3 Authority Key Identifier:
keyid:DD:EA:D9:19:B8:5A:13:05:1D:02:08:B7:E2:8D:DC:CB:39:8B:14:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:66:5a:63:c7:9f:5d:0a:6b:65:21:b7:ec:11:48:b5:58:e4:
6e:86:71:b4:5d:54:fb:e9:22:79:f0:33:b3:35:72:fa:61:f3:
1f:df:71:c1:3d:62:57:9e:ac:b3:0b:f8:3b:9b:77:cc:1b:f7:
ed:3a:af:99:c0:3e:32:a6:66:90:36:16:7e:8f:d3:6b:49:09:
90:fc:a0:6e:9d:f0:2e:66:44:26:00:bd:ee:f0:02:7b:e8:ec:
57:78:b5:f7:f8:d4:48:be:16:6b:c2:b8:29:2c:c7:51:93:65:
d9:a9:64:65:94:59:b6:cc:71:86:5d:a2:37:77:fe:7c:5f:96:
e9:48:22:fd:0b:7b:f6:88:3a:db:51:71:7d:9e:c2:f9:da:42:
be:e4:89:eb:8e:4a:e4:ae:f6:66:ca:02:bf:fe:83:20:ea:44:
c1:9f:6e:66:10:ec:9e:16:18:52:ef:6c:14:07:a7:be:fa:e5:
f4:e3:47:23:2e:94:a0:7a:92:08:6d:62:73:2b:e9:d9:cd:f0:
ec:c0:b7:4c:ea:22:a6:50:50:eb:e0:28:10:59:39:85:29:e6:
ed:f2:fd:3d:ea:77:d4:8a:bf:61:a2:3b:57:d7:c6:ae:c3:69:
1e:a0:2b:bc:70:ea:19:5b:54:92:9e:24:2f:c4:f9:2b:39:fd:
cc:7c:71:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6+EM0WVB0IiVB9sR52Q4GyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZWFkOTE5Yjg1YTEzMDUxZDAyMDhiN2UyOGRkY2NiMzk4
YjE0ZDYwHhcNMjYwNjEyMjMwMDMyWhcNMjYwNjEzMjMwMDMyWjAzMTEwLwYDVQQD
Eyg1ZjFlODgwNjk4ZDc4NmMxYzE1ZmU2MGYxNmQ0OTNiNjRiMjU0ZTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvu6Y9eak6IOPFcz/kDtImI1jehB1
HUbVxfzGjGPrw5JfSaxhdiD4K9yXfWgQm2yWeg6wb0078lpI9IXqO8Mj7xahvQjN
BKoX1luAnxZ3/Z6kKvwclvEJcHbwGnxlhmzReFqpDgNoV6rKrzd+hN7id+j402On
sIAMwVqx0/MyXovroFM15B0iVb2QFzv64Sk2ghr7OgptmlwjBETVSZvd+WNYB6JT
CbJj01JjSrHCQbhtEEOo88mCPX1savbnSKSKP02qaM/iZDBwdAzE72qTZkru63lr
XGhQ5E9DnZgVA7T3EOAluesHWSxUbiMJg3DGAQmk5ZJShfse+u2fCo8vIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF8eiAaY14bBwV/mDxbUk7ZLJU5jMB8GA1UdIwQY
MBaAFN3q2Rm4WhMFHQIIt+KN3Ms5ixTWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2VyWkdiaGFFd1VkQWdpMzRvM2N5em1MRk5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS84ZWZmZTQtZWRiYi00ZGQ0LTg1ZDQt
NDhiOGI1YTliNDExLzEvM2VyWkdiaGFFd1VkQWdpMzRvM2N5em1MRk5ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS84ZWZmZTQtZWRiYi00ZGQ0LTg1ZDQtNDhiOGI1YTliNDEx
LzEvM2VyWkdiaGFFd1VkQWdpMzRvM2N5em1MRk5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACmZaY8ef
XQprZSG37BFItVjkboZxtF1U++kiefAzszVy+mHzH99xwT1iV56sswv4O5t3zBv3
7TqvmcA+MqZmkDYWfo/Ta0kJkPygbp3wLmZEJgC97vACe+jsV3i19/jUSL4Wa8K4
KSzHUZNl2alkZZRZtsxxhl2iN3f+fF+W6Ugi/Qt79og621FxfZ7C+dpCvuSJ645K
5K72ZsoCv/6DIOpEwZ9uZhDsnhYYUu9sFAenvvrl9ONHIy6UoHqSCG1icyvp2c3w
7MC3TOoiplBQ6+AoEFk5hSnm7fL9Pep31Iq/YaI7V9fGrsNpHqArvHDqGVtUkp4k
L8T5Kzn9zHxx1A==
-----END CERTIFICATE-----
Generated at Sat Jun 13 06:55:21 2026 by rpki-client