Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: pfzM3LRVllrRA5stdMBZFZb9ZarOFJVA+gXrBZ8OPSo=
Subject key identifier: 94:77:E0:CB:F2:43:95:AD:18:35:BE:29:E3:14:3C:82:20:17:B1:F8
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 019EC0DAB915667C3AB71A885A3B08C0C428
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 12:00:20 +0000
Manifest this update: Sat 13 Jun 2026 12:00:20 +0000
Manifest next update: Sun 14 Jun 2026 12:00:20 +0000
Files and hashes: 1: 36CB5eigCHYIuRmXqrnDW_-F3Xc.roa (hash: KcH/S3GFg0T0gWVpA5XkZVyUjTJRMZNW3hzXP6Ng0zo=)
2: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: gpK7zJUJZOYY+aT6dczR/ShNPpaSITHjy7pMNkUJQp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:da:b9:15:66:7c:3a:b7:1a:88:5a:3b:08:c0:c4:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: Jun 13 12:00:20 2026 GMT
Not After : Jun 14 12:00:20 2026 GMT
Subject: CN=9477e0cbf24395ad1835be29e3143c822017b1f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:99:4e:07:c7:a1:64:f5:fd:fc:cb:64:25:08:
27:b2:dd:4a:3b:f7:e7:4a:3b:03:94:5e:41:5b:0a:
62:63:52:82:cc:15:62:ec:d4:c8:0f:9d:9d:23:a0:
59:fe:6f:fb:4b:0b:82:61:7b:c2:9d:28:cf:13:eb:
a9:7b:27:11:89:0e:e6:d1:87:82:ff:e9:ce:8f:63:
a3:7f:12:6d:87:8e:5d:9a:59:eb:9c:0f:19:8c:4f:
b9:53:81:8d:ae:4c:d3:2b:a8:18:80:80:2c:6f:5a:
cc:d7:26:4c:d6:8c:61:6b:80:86:12:82:f5:16:38:
9b:3b:fa:24:bd:dc:13:5c:e4:f6:47:ad:f3:aa:33:
fc:6c:ab:74:67:a6:50:65:19:1f:77:21:85:52:82:
a1:72:c4:2a:56:38:68:9d:65:f9:0e:51:ad:69:31:
94:08:99:10:d7:1b:37:76:a0:78:bb:c6:e6:fe:be:
27:7e:05:fa:79:72:c9:4c:3b:0c:d5:cb:e1:2f:d2:
b0:7a:32:37:7f:93:49:9b:7c:39:4a:0e:d3:3d:66:
55:fa:86:e0:be:bd:45:0a:fe:0f:7c:b1:26:8f:87:
47:54:79:0d:6c:77:4f:c8:90:e5:65:86:5a:da:f0:
2d:92:08:d1:61:36:a4:a3:8d:35:31:a5:d1:50:40:
74:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:77:E0:CB:F2:43:95:AD:18:35:BE:29:E3:14:3C:82:20:17:B1:F8
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:36:10:35:09:86:aa:c8:ff:cc:9e:b1:f1:35:b2:61:15:ae:
1f:44:5a:90:12:50:98:51:1a:fc:57:c6:c7:d6:23:f5:5d:44:
d6:36:98:1f:57:52:db:58:45:8e:a3:8e:9d:b0:92:01:5d:51:
c2:ba:f9:66:b9:59:fe:b6:9b:88:e3:c3:ae:0b:1e:8b:80:66:
7a:d5:ce:14:22:f5:a4:93:93:e3:81:2e:54:32:d4:02:6f:13:
53:64:12:dd:34:e8:94:c5:9b:b3:39:54:7a:b9:f9:ea:37:b3:
bb:83:98:47:64:06:56:77:8d:1a:f2:03:a1:07:da:8b:69:ad:
18:7e:50:72:d8:17:cf:e8:61:f1:c9:79:3b:1e:64:34:ee:c0:
ee:a1:52:95:65:05:86:ba:56:e4:02:27:63:f4:93:1d:8d:94:
7a:57:92:a0:ea:21:d7:bc:f8:d8:fc:d2:65:6e:2d:b0:0a:e6:
0f:55:fa:9e:3a:cc:11:7f:24:e2:cc:cc:53:5b:dd:3a:3f:1b:
9f:0c:41:a1:ed:60:08:ca:7a:a1:d4:fd:81:aa:07:7d:f3:dd:
7e:26:d5:d9:40:43:87:34:0d:dd:e5:1d:25:60:b8:2d:02:ba:
5f:da:dd:58:3f:9c:d0:97:32:60:eb:35:38:dd:7a:bc:76:98:
da:e8:76:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:47:35 2026 by rpki-client