Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: DNoNhqMXTOu0Lbg360XOkJZ2wdFtbW8o5aGwX6rvTNc=
Subject key identifier: 86:2C:DF:37:CE:3B:E9:AA:E3:44:D9:81:D4:4E:B4:F1:7D:E2:1C:2F
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 019D97E1715D67C6F9AB361FC560B49A9B3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 135B
Signing time: Thu 16 Apr 2026 20:00:27 +0000
Manifest this update: Thu 16 Apr 2026 20:00:27 +0000
Manifest next update: Fri 17 Apr 2026 20:00:27 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: webncUg6rvSGVwOjgPddaFSUFpmE+lG8eyGJSoJz5A4=)
2: BsyNzVaxxAwnI04Dd9aOhMe6ucE.roa (hash: 0aNXoEKl0ws+Toia/ObhW+i07V56stDq9dLrY8oS6mU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:71:5d:67:c6:f9:ab:36:1f:c5:60:b4:9a:9b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Apr 16 20:00:27 2026 GMT
Not After : Apr 17 20:00:27 2026 GMT
Subject: CN=862cdf37ce3be9aae344d981d44eb4f17de21c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2d:de:ec:54:84:d7:c5:11:ea:be:6f:08:29:
06:39:bc:b9:f6:cf:f2:fc:1b:1f:66:28:cf:90:13:
01:01:d7:43:1f:6c:47:df:bf:ff:ca:46:c1:ce:71:
b6:0d:09:60:4f:9c:c7:78:7c:26:b7:7c:ba:64:76:
86:75:ab:38:26:c1:3e:3d:f7:89:10:4b:cb:95:ad:
32:ca:b7:0a:cc:07:54:70:30:c1:f7:6c:89:f4:3b:
ae:e9:c6:a3:32:53:5a:46:80:2c:51:c4:e6:56:91:
0e:5d:13:2e:48:39:65:de:ba:21:46:b6:6c:58:c8:
2a:95:42:cd:ab:96:d0:20:34:10:8d:a0:7f:c3:55:
fc:d5:5c:3a:75:ec:e7:0b:43:1a:37:fe:af:e6:51:
c4:65:4f:3b:12:db:c4:b1:7d:6b:f6:13:51:67:17:
c1:68:cc:9a:3c:b8:a3:01:9b:71:fc:8d:bb:93:c8:
9e:13:58:66:c9:70:c7:fc:72:2f:4e:3e:6e:50:61:
fc:15:0a:fd:30:77:39:f0:f8:99:5f:72:04:f8:12:
ec:84:53:58:5f:d9:28:6a:64:da:62:98:dc:5c:a1:
33:11:93:9f:2a:49:8d:7a:de:65:b5:6c:97:63:00:
19:36:56:4b:6e:89:92:99:c8:95:e9:c4:ec:39:39:
77:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:2C:DF:37:CE:3B:E9:AA:E3:44:D9:81:D4:4E:B4:F1:7D:E2:1C:2F
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:76:64:e9:be:25:2c:36:67:49:dc:fe:6b:83:fb:b7:66:bf:
f2:51:fb:c2:23:42:cf:0f:4e:7b:89:52:1b:6f:92:51:b1:81:
b2:01:a2:63:1d:4c:8e:c6:a0:4f:e2:cf:f8:80:57:63:23:3b:
98:c5:26:40:ed:25:79:2b:0d:6f:c4:55:a5:fe:76:6d:b9:ce:
50:01:31:8c:7d:5d:0f:ae:e2:b4:43:fe:f7:27:6b:b2:68:e4:
a7:53:b2:43:11:cd:86:9a:6a:d9:a9:f6:2a:f6:72:67:58:28:
61:5a:91:67:c7:23:79:9f:38:88:e1:12:68:a9:37:a7:45:d9:
c2:5a:5b:4b:3c:ec:e0:3b:ae:b9:85:f5:8e:22:78:bb:b0:23:
18:29:9b:37:19:1c:41:95:10:f8:09:63:d2:8c:34:5d:29:68:
25:a9:cb:6b:ea:6b:47:bd:20:ab:a9:52:ba:5d:eb:49:c2:74:
03:0c:93:65:6e:ce:6b:2b:d6:a2:b5:da:b8:c3:07:e7:9d:6a:
36:32:b8:d1:7b:7d:76:26:47:0e:92:81:6d:9a:f5:47:dc:a2:
3c:02:4e:db:61:e5:c3:d0:2b:4e:3d:e8:3d:36:f6:6e:bd:9a:
ca:6b:0a:38:a3:cd:5a:c5:f4:f4:f5:57:f4:02:2b:57:2d:89:
7d:98:1e:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2X4XFdZ8b5qzYfxWC0mps8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkODVkYzZiNjE0M2ExN2ZlYjQ5ODIwZWE1MjAwNDg5NThm
NDhhZGMwHhcNMjYwNDE2MjAwMDI3WhcNMjYwNDE3MjAwMDI3WjAzMTEwLwYDVQQD
Eyg4NjJjZGYzN2NlM2JlOWFhZTM0NGQ5ODFkNDRlYjRmMTdkZTIxYzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmC3e7FSE18UR6r5vCCkGOby59s/y
/BsfZijPkBMBAddDH2xH37//ykbBznG2DQlgT5zHeHwmt3y6ZHaGdas4JsE+PfeJ
EEvLla0yyrcKzAdUcDDB92yJ9Duu6cajMlNaRoAsUcTmVpEOXRMuSDll3rohRrZs
WMgqlULNq5bQIDQQjaB/w1X81Vw6deznC0MaN/6v5lHEZU87EtvEsX1r9hNRZxfB
aMyaPLijAZtx/I27k8ieE1hmyXDH/HIvTj5uUGH8FQr9MHc58PiZX3IE+BLshFNY
X9koamTaYpjcXKEzEZOfKkmNet5ltWyXYwAZNlZLbomSmciV6cTsOTl32QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIYs3zfOO+mq40TZgdROtPF94hwvMB8GA1UdIwQY
MBaAFN2F3GthQ6F/60mCDqUgBIlY9IrcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQt
NGFjODU2YTgxODJkLzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQtNGFjODU2YTgxODJk
LzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArXZk6b4l
LDZnSdz+a4P7t2a/8lH7wiNCzw9Oe4lSG2+SUbGBsgGiYx1MjsagT+LP+IBXYyM7
mMUmQO0leSsNb8RVpf52bbnOUAExjH1dD67itEP+9ydrsmjkp1OyQxHNhppq2an2
KvZyZ1goYVqRZ8cjeZ84iOESaKk3p0XZwlpbSzzs4DuuuYX1jiJ4u7AjGCmbNxkc
QZUQ+Alj0ow0XSloJanLa+prR70gq6lSul3rScJ0AwyTZW7OayvWorXauMMH551q
NjK40Xt9diZHDpKBbZr1R9yiPAJO22Hlw9ArTj3oPTb2br2aymsKOKPNWsX09PVX
9AIrVy2JfZge2w==
-----END CERTIFICATE-----
Generated at Fri Apr 17 04:19:54 2026 by rpki-client