Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
File: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft (raw, json)
Hash identifier: iXWLWJBzsPGaf4BNYtmM5gAN6fKNYJVG+u4Xlh3Lk8Y=
Subject key identifier: F5:D0:2A:E4:B1:DB:4B:11:0C:6A:0A:63:08:A9:A6:3A:F1:E3:78:9A
Authority key identifier: DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
Certificate issuer: /CN=de23f18c576d6fa609133533c0d0e38d7732c652
Certificate serial: 019EBFC9022B9ED831866804D60DB64507BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
Manifest number: 0602
Signing time: Sat 13 Jun 2026 07:01:22 +0000
Manifest this update: Sat 13 Jun 2026 07:01:22 +0000
Manifest next update: Sun 14 Jun 2026 07:01:22 +0000
Files and hashes: 1: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl (hash: BwpQQxDL2TlUwIWwpiZvCrNc5hbGO56r8H+w6kD5rkE=)
2: GUtmTasoYg9vC_X6TeYo5LqnthI.roa (hash: h4pcOYZGVhmcTnXyyDF08GhSsY9jTxf6Vxsbll0E63Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c9:02:2b:9e:d8:31:86:68:04:d6:0d:b6:45:07:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de23f18c576d6fa609133533c0d0e38d7732c652
Validity
Not Before: Jun 13 07:01:22 2026 GMT
Not After : Jun 14 07:01:22 2026 GMT
Subject: CN=f5d02ae4b1db4b110c6a0a6308a9a63af1e3789a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6e:39:23:5c:b6:57:7e:07:53:50:5f:c1:14:
16:ca:f2:d7:5a:e7:ec:02:ad:0a:75:73:75:9e:36:
56:1d:db:63:46:30:9c:94:7f:4f:ed:f2:f9:cb:56:
c1:26:16:69:36:88:4d:c9:c5:35:9f:07:27:a4:1f:
2e:06:66:36:65:f1:e4:f0:3e:58:05:3e:28:77:63:
34:d1:05:39:9e:e1:03:e1:00:aa:1e:15:c5:2d:76:
a1:88:b9:ab:83:d7:4c:03:7d:38:7a:55:3a:81:7f:
75:2b:02:d0:35:7d:a6:4c:69:8d:d2:19:6c:bb:65:
b6:53:48:df:96:c0:b9:db:37:5b:f5:3f:03:6d:7d:
c5:3d:b6:b8:36:27:c1:5c:96:8d:41:8f:99:3c:c9:
39:81:17:6e:94:a7:44:d5:c8:25:72:8d:69:e7:f6:
93:d7:5f:7b:06:c4:38:56:c9:24:c1:83:ef:82:da:
c7:71:37:fd:0d:34:8d:6b:de:9f:ae:7d:4a:ae:c6:
5e:a7:3a:cf:ca:b5:45:97:a8:b3:5a:70:31:03:04:
4a:1c:e4:10:94:59:54:e7:a5:13:d0:ed:8b:63:a6:
35:b0:6d:3a:eb:80:ee:d4:97:29:6e:f2:96:69:7b:
19:38:74:76:57:d4:c3:16:15:41:52:c0:d0:a7:bf:
03:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D0:2A:E4:B1:DB:4B:11:0C:6A:0A:63:08:A9:A6:3A:F1:E3:78:9A
X509v3 Authority Key Identifier:
keyid:DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:87:42:fc:f9:88:05:fa:72:86:0c:7c:ce:a3:2d:76:4c:e0:
d7:5e:36:9b:a1:cc:d9:2a:5b:f1:b2:11:ae:6e:5b:81:5b:89:
44:e3:1d:2b:a9:a0:a4:10:72:99:01:5c:6f:51:6f:90:f0:ff:
03:78:f3:be:d4:63:d8:5e:01:8c:08:e1:b6:42:30:4d:2a:81:
56:bd:a1:06:fb:d6:1f:51:c7:aa:1a:74:c3:d0:3d:32:6b:09:
e8:b7:75:39:70:20:36:a1:26:ea:64:18:7f:fa:6b:91:9d:e5:
42:65:a1:03:73:8c:fd:a9:ee:bc:83:3d:5f:83:91:ef:a3:e8:
a9:57:15:79:1d:00:4e:38:92:25:94:b2:5d:0e:27:40:23:ec:
00:5b:06:7a:e6:fc:db:55:b4:49:0f:5a:cb:5b:63:6c:2c:d0:
60:4b:09:17:f1:31:88:07:f2:99:dc:2f:29:e5:52:75:a3:48:
a2:06:cf:0a:24:4a:8d:56:10:75:7e:f3:ea:8e:bd:85:98:1b:
ea:42:67:a4:1c:d0:0f:84:0c:dd:e6:29:88:a9:72:36:fb:86:
aa:88:c5:26:94:f1:44:0a:63:57:e3:c8:48:5d:c7:1a:3e:89:
59:22:f6:0f:01:da:3e:b8:2f:67:30:9b:34:e0:2e:6d:94:a8:
4b:f8:c8:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:33:07 2026 by rpki-client