Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
File: 3dBY7vGdEboOq68EbnKibl5XJkM.mft (raw, json)
Hash identifier: FPG9i5sGi1Lt9NPUVEDxmV/s0426RUe1rfDT0VLuq48=
Subject key identifier: E6:3F:A6:80:A7:5A:97:9B:37:88:BD:FB:E8:D9:AC:DA:1F:59:48:B6
Authority key identifier: DD:D0:58:EE:F1:9D:11:BA:0E:AB:AF:04:6E:72:A2:6E:5E:57:26:43
Certificate issuer: /CN=ddd058eef19d11ba0eabaf046e72a26e5e572643
Certificate serial: 019EC06E595843BD6F0225EA19DE57371746
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dBY7vGdEboOq68EbnKibl5XJkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
Manifest number: 0172
Signing time: Sat 13 Jun 2026 10:01:57 +0000
Manifest this update: Sat 13 Jun 2026 10:01:57 +0000
Manifest next update: Sun 14 Jun 2026 10:01:57 +0000
Files and hashes: 1: 3dBY7vGdEboOq68EbnKibl5XJkM.crl (hash: P9uH8is1B4aef2bdvzFI4pZtfGMlh7XeO/6iuwlcCjQ=)
2: 6w_LmvhXnOF2ik3DDNvsrEWVCI8.roa (hash: 6W4Vav7RSMNSHDF7FWCiUK0cI2saEqhD9eRkDI4fbG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dBY7vGdEboOq68EbnKibl5XJkM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6e:59:58:43:bd:6f:02:25:ea:19:de:57:37:17:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd058eef19d11ba0eabaf046e72a26e5e572643
Validity
Not Before: Jun 13 10:01:57 2026 GMT
Not After : Jun 14 10:01:57 2026 GMT
Subject: CN=e63fa680a75a979b3788bdfbe8d9acda1f5948b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2a:2b:15:ef:b9:46:1c:dd:bf:8d:46:92:e6:
14:1e:26:60:2b:55:3e:32:0a:34:ae:52:78:99:b8:
66:55:c9:05:3e:42:54:32:db:32:9b:b3:05:f8:0f:
79:66:94:dc:22:a6:01:c6:6b:bc:43:11:6d:62:ce:
5e:bc:84:7a:3c:d7:96:cd:bc:dd:11:48:ba:63:2c:
c5:28:50:38:2c:bb:e3:bd:8b:b4:87:3a:e6:ab:c4:
b5:4c:1b:cf:00:77:a1:a0:ec:1e:05:af:df:9d:5b:
41:ae:53:87:bc:1a:e8:44:37:e7:94:a1:4b:02:5c:
81:ba:a6:b5:d6:48:fc:ee:53:9f:53:a1:12:a8:b1:
04:f5:f3:a9:06:f9:e7:ef:ad:d2:5b:8b:e6:80:43:
e8:f3:bd:1a:73:8f:fd:9a:03:44:fe:2b:70:75:9d:
b3:d6:02:83:96:d0:52:a6:17:32:64:ad:c0:f8:b0:
1a:69:a3:96:28:50:b8:df:d8:87:56:fc:1b:89:af:
a2:da:21:4b:64:fa:41:5f:84:bd:6d:1e:c0:ed:66:
10:62:df:9c:67:2c:d4:b5:74:5b:f3:8f:33:46:31:
ee:ca:1f:a0:8b:a5:a1:e8:d9:00:ee:71:7a:69:f8:
b7:ea:19:d2:9c:98:80:5a:a8:5a:77:35:fd:05:b0:
c8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:3F:A6:80:A7:5A:97:9B:37:88:BD:FB:E8:D9:AC:DA:1F:59:48:B6
X509v3 Authority Key Identifier:
keyid:DD:D0:58:EE:F1:9D:11:BA:0E:AB:AF:04:6E:72:A2:6E:5E:57:26:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dBY7vGdEboOq68EbnKibl5XJkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:ee:9f:9c:d8:79:18:c8:b1:2a:11:3f:5d:a8:a5:fa:22:11:
b8:0a:be:13:68:cd:6a:15:f2:7c:d3:36:fc:f1:ba:8f:e1:25:
be:2b:af:b1:34:0e:94:7c:ba:23:c3:af:0c:47:6d:eb:85:4b:
b9:c2:be:ad:b6:cc:d7:5b:0f:b3:33:da:f4:33:1b:c0:82:c8:
18:d5:01:1d:80:80:01:58:d3:88:04:1c:b9:93:f6:23:55:2c:
70:91:8e:21:f0:6c:dc:c6:17:5c:5f:c2:90:76:30:f4:74:d9:
07:71:26:a5:6f:95:68:f1:a1:51:ad:dd:8f:bc:30:07:ab:ec:
21:a9:cc:ca:74:ee:a2:1d:e7:9d:3b:8d:54:e6:68:78:e3:ae:
52:ec:ed:a6:cb:8b:10:e7:f9:63:b7:ba:81:e9:78:bc:19:bc:
92:50:df:7f:44:3e:95:6d:d2:01:cf:de:92:07:ca:0c:5f:06:
56:7f:69:dc:4e:3d:1a:ae:32:ee:f8:85:4a:99:d8:62:5d:a4:
88:38:24:bf:cd:3d:d7:4d:6c:b1:d1:8c:eb:b1:79:c8:20:7a:
23:d6:46:d4:63:4a:11:1f:68:c4:1d:d6:ec:0e:8c:fc:de:21:
e3:f3:c7:7c:fc:40:1b:43:2f:5b:c2:a2:ca:5e:17:45:1f:b9:
40:49:c2:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7AbllYQ71vAiXqGd5XNxdGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZDA1OGVlZjE5ZDExYmEwZWFiYWYwNDZlNzJhMjZlNWU1
NzI2NDMwHhcNMjYwNjEzMTAwMTU3WhcNMjYwNjE0MTAwMTU3WjAzMTEwLwYDVQQD
EyhlNjNmYTY4MGE3NWE5NzliMzc4OGJkZmJlOGQ5YWNkYTFmNTk0OGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3yorFe+5Rhzdv41GkuYUHiZgK1U+
Mgo0rlJ4mbhmVckFPkJUMtsym7MF+A95ZpTcIqYBxmu8QxFtYs5evIR6PNeWzbzd
EUi6YyzFKFA4LLvjvYu0hzrmq8S1TBvPAHehoOweBa/fnVtBrlOHvBroRDfnlKFL
AlyBuqa11kj87lOfU6ESqLEE9fOpBvnn763SW4vmgEPo870ac4/9mgNE/itwdZ2z
1gKDltBSphcyZK3A+LAaaaOWKFC439iHVvwbia+i2iFLZPpBX4S9bR7A7WYQYt+c
ZyzUtXRb848zRjHuyh+gi6Wh6NkA7nF6afi36hnSnJiAWqhadzX9BbDI1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOY/poCnWpebN4i9++jZrNofWUi2MB8GA1UdIwQY
MBaAFN3QWO7xnRG6DquvBG5yom5eVyZDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2RCWTd2R2RFYm9PcTY4RWJuS2libDVYSmtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9lNDgzNGYtZTVkMC00YjY0LTkyY2Ut
ZjU0OTkzMzZjMmI0LzEvM2RCWTd2R2RFYm9PcTY4RWJuS2libDVYSmtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9lNDgzNGYtZTVkMC00YjY0LTkyY2UtZjU0OTkzMzZjMmI0
LzEvM2RCWTd2R2RFYm9PcTY4RWJuS2libDVYSmtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASO6fnNh5
GMixKhE/Xail+iIRuAq+E2jNahXyfNM2/PG6j+ElviuvsTQOlHy6I8OvDEdt64VL
ucK+rbbM11sPszPa9DMbwILIGNUBHYCAAVjTiAQcuZP2I1UscJGOIfBs3MYXXF/C
kHYw9HTZB3EmpW+VaPGhUa3dj7wwB6vsIanMynTuoh3nnTuNVOZoeOOuUuztpsuL
EOf5Y7e6gel4vBm8klDff0Q+lW3SAc/ekgfKDF8GVn9p3E49Gq4y7viFSpnYYl2k
iDgkv809101ssdGM67F5yCB6I9ZG1GNKER9oxB3W7A6M/N4h4/PHfPxAG0MvW8Ki
yl4XRR+5QEnC1Q==
-----END CERTIFICATE-----
Generated at Sat Jun 13 16:49:06 2026 by rpki-client