Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
File: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft (raw, json)
Hash identifier: 04GSCJWr6KdBreSpZc0Wa03wExDgtLKq4So7VnYZBMg=
Subject key identifier: 6A:A5:DD:0F:2A:BA:35:3C:6B:74:48:31:C4:79:1F:8B:35:72:A2:2B
Authority key identifier: DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
Certificate issuer: /CN=de23f18c576d6fa609133533c0d0e38d7732c652
Certificate serial: 019D9A3EF5FEC856DB9D8D79BFEF77754AAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
Manifest number: 056A
Signing time: Fri 17 Apr 2026 07:01:50 +0000
Manifest this update: Fri 17 Apr 2026 07:01:50 +0000
Manifest next update: Sat 18 Apr 2026 07:01:50 +0000
Files and hashes: 1: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl (hash: 4oGQY8+y5MrAaHa9g5YwCPp0Ao85Zdcp2SVatlNw7jE=)
2: GUtmTasoYg9vC_X6TeYo5LqnthI.roa (hash: h4pcOYZGVhmcTnXyyDF08GhSsY9jTxf6Vxsbll0E63Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:f5:fe:c8:56:db:9d:8d:79:bf:ef:77:75:4a:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de23f18c576d6fa609133533c0d0e38d7732c652
Validity
Not Before: Apr 17 07:01:50 2026 GMT
Not After : Apr 18 07:01:50 2026 GMT
Subject: CN=6aa5dd0f2aba353c6b744831c4791f8b3572a22b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:91:d5:86:49:90:f7:23:f4:95:ed:f2:9b:0a:
27:86:b0:95:78:0c:a2:9c:25:a5:1d:a3:b8:5e:de:
92:09:28:c7:d3:f1:2c:ce:5d:6f:41:4e:0b:48:b7:
9b:34:72:95:10:37:f6:c1:d4:e2:f5:af:2b:1b:47:
dd:4e:dc:fb:62:cd:42:1e:25:8d:ec:86:55:e5:4b:
5f:7a:a4:4e:45:30:28:af:14:68:dc:67:38:ef:b6:
29:61:1f:da:b9:09:e8:1c:96:ff:59:95:96:96:36:
27:6f:42:e0:db:5a:07:4a:aa:32:b1:81:87:ae:59:
2c:71:0a:45:4c:47:f4:10:f2:2a:8d:73:d9:73:aa:
65:04:d7:a1:c6:45:73:8b:3c:a4:99:24:63:af:b4:
69:57:40:2f:e8:ef:19:8a:d9:46:5e:23:0f:0f:6a:
40:e3:4d:7f:a8:a4:84:c4:43:48:63:96:cd:43:12:
ff:1d:ad:ed:3b:e2:f1:0a:90:52:28:e5:94:19:15:
2e:61:42:7d:39:6d:dd:91:51:98:5d:5e:ea:fa:7e:
fb:dc:04:19:64:4a:fe:0d:ea:9d:d8:58:1b:96:6e:
66:3c:5e:8e:06:cd:4c:88:b8:1e:f9:a3:34:92:56:
b8:c3:08:b0:3b:16:97:e9:b9:f1:aa:3e:ef:60:ab:
b7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A5:DD:0F:2A:BA:35:3C:6B:74:48:31:C4:79:1F:8B:35:72:A2:2B
X509v3 Authority Key Identifier:
keyid:DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:e3:80:42:70:01:ad:c4:0c:97:6e:58:ad:1a:cf:47:80:69:
7d:56:3e:3c:fa:01:c0:2b:38:e5:2d:dd:7a:1f:f0:77:ac:f7:
d6:b9:7e:2b:31:73:32:70:0b:11:f9:22:0f:2c:fd:f0:9b:db:
04:25:c3:2b:c9:8f:ed:76:33:10:16:9d:d3:fe:e2:c0:ee:d0:
fc:12:b4:8e:e4:07:0c:db:44:41:1f:c6:eb:b5:8d:82:e4:fa:
98:28:fd:ba:21:f3:10:3e:bc:c4:58:ae:e8:af:4d:6b:7d:a6:
c1:0b:98:01:b8:28:6c:97:60:68:ea:a7:ec:55:d8:0a:b1:c7:
6b:4d:6a:35:ef:a5:66:79:49:77:7b:15:07:12:a3:01:a9:28:
55:6c:db:0a:d3:eb:8d:67:88:62:64:c1:57:4f:1e:d1:ba:a8:
e7:54:ae:ed:89:d0:b1:d2:9d:bb:bb:72:9c:6a:f1:c8:52:d8:
7f:ba:3a:dd:f1:00:71:14:66:2c:13:8f:2b:6a:b0:6f:14:87:
fd:67:e2:22:45:97:74:f0:33:8a:92:2c:0a:d0:21:e1:a1:84:
ee:8f:3c:04:a7:a0:cd:3b:c4:c7:1f:22:dd:58:1c:12:4c:b3:
9d:b2:52:11:70:ce:9d:51:13:8b:24:1e:52:b7:7b:47:34:07:
7c:2a:83:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPvX+yFbbnY15v+93dUqtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMjNmMThjNTc2ZDZmYTYwOTEzMzUzM2MwZDBlMzhkNzcz
MmM2NTIwHhcNMjYwNDE3MDcwMTUwWhcNMjYwNDE4MDcwMTUwWjAzMTEwLwYDVQQD
Eyg2YWE1ZGQwZjJhYmEzNTNjNmI3NDQ4MzFjNDc5MWY4YjM1NzJhMjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5HVhkmQ9yP0le3ymwonhrCVeAyi
nCWlHaO4Xt6SCSjH0/Eszl1vQU4LSLebNHKVEDf2wdTi9a8rG0fdTtz7Ys1CHiWN
7IZV5UtfeqRORTAorxRo3Gc477YpYR/auQnoHJb/WZWWljYnb0Lg21oHSqoysYGH
rlkscQpFTEf0EPIqjXPZc6plBNehxkVzizykmSRjr7RpV0Av6O8ZitlGXiMPD2pA
401/qKSExENIY5bNQxL/Ha3tO+LxCpBSKOWUGRUuYUJ9OW3dkVGYXV7q+n773AQZ
ZEr+Deqd2Fgblm5mPF6OBs1MiLge+aM0kla4wwiwOxaX6bnxqj7vYKu3DwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGql3Q8qujU8a3RIMcR5H4s1cqIrMB8GA1UdIwQY
MBaAFN4j8YxXbW+mCRM1M8DQ4413MsZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi85OGM1ZDktZTJiZS00OTNiLTg2NTct
NWU4NjAwNmUyMGFlLzEvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi85OGM1ZDktZTJiZS00OTNiLTg2NTctNWU4NjAwNmUyMGFl
LzEvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR+OAQnAB
rcQMl25YrRrPR4BpfVY+PPoBwCs45S3deh/wd6z31rl+KzFzMnALEfkiDyz98Jvb
BCXDK8mP7XYzEBad0/7iwO7Q/BK0juQHDNtEQR/G67WNguT6mCj9uiHzED68xFiu
6K9Na32mwQuYAbgobJdgaOqn7FXYCrHHa01qNe+lZnlJd3sVBxKjAakoVWzbCtPr
jWeIYmTBV08e0bqo51Su7YnQsdKdu7tynGrxyFLYf7o63fEAcRRmLBOPK2qwbxSH
/WfiIkWXdPAzipIsCtAh4aGE7o88BKegzTvExx8i3VgcEkyznbJSEXDOnVETiyQe
Urd7RzQHfCqDmA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:22:07 2026 by rpki-client