Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: pSXigb+k3JzLIrP2u+P5vA3B0uSZSvk+UBesZFTcgng=
Subject key identifier: 51:05:C8:35:EF:DB:36:B8:AC:84:42:9D:98:A9:B4:92:AF:00:80:7A
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 019EBD6C2F04C0A045A2B0B2E950BBD22927
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 13F3
Signing time: Fri 12 Jun 2026 20:00:44 +0000
Manifest this update: Fri 12 Jun 2026 20:00:44 +0000
Manifest next update: Sat 13 Jun 2026 20:00:44 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: +9ElfArqiaZOVOJ2fnSyCBc5EFtn3ztQSlAuAWR2zV0=)
2: BsyNzVaxxAwnI04Dd9aOhMe6ucE.roa (hash: 0aNXoEKl0ws+Toia/ObhW+i07V56stDq9dLrY8oS6mU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 20:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:6c:2f:04:c0:a0:45:a2:b0:b2:e9:50:bb:d2:29:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Jun 12 20:00:44 2026 GMT
Not After : Jun 13 20:00:44 2026 GMT
Subject: CN=5105c835efdb36b8ac84429d98a9b492af00807a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:da:fc:5e:16:25:2c:48:2d:82:bd:c1:85:86:
94:da:f5:47:79:8b:fb:0d:7e:d4:89:f6:4a:9d:0a:
22:95:4c:c0:ed:10:1e:00:73:f6:31:84:45:f2:de:
a6:1c:7f:08:23:90:47:57:46:55:58:86:09:86:bf:
42:db:2f:bf:b5:d7:17:5a:54:1c:a0:d3:1f:22:ea:
ef:fb:6f:09:34:a4:21:6a:3d:5a:85:52:3e:7f:be:
b0:f0:69:f7:36:b7:5a:6a:38:28:d1:f2:53:69:c7:
8a:bc:05:3e:82:0f:d4:5c:49:8a:20:b7:81:ae:bf:
4a:d8:a6:09:7e:2f:f1:9a:5f:07:30:20:73:a6:2e:
89:c5:e7:f9:0f:56:be:71:e0:0c:bd:99:ea:41:90:
7d:32:ba:93:b4:10:31:8b:bd:51:31:aa:b7:3d:32:
cc:47:2d:18:1a:2f:bf:4d:fc:9d:99:9d:37:43:23:
92:f4:88:a5:dc:1d:fd:7a:23:cd:ff:53:44:e4:fd:
e6:10:be:41:5c:f4:0b:9b:74:ac:4e:c6:27:dd:c8:
0e:13:47:8c:e5:25:38:df:9f:f7:d9:78:bd:50:52:
d8:69:62:a3:2f:4e:28:67:fb:41:dc:8a:b2:66:f4:
c5:99:9f:77:b3:eb:8b:16:61:82:7a:e9:65:14:1c:
07:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:05:C8:35:EF:DB:36:B8:AC:84:42:9D:98:A9:B4:92:AF:00:80:7A
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:4b:ee:90:1c:7e:86:01:43:44:8a:74:df:38:4e:0b:a7:1c:
76:cc:5c:52:e1:ea:9d:05:c9:8d:4e:35:7f:64:5f:ee:f5:a8:
8e:ba:e0:a1:99:0f:15:3c:52:4a:58:fe:2c:50:7f:63:fc:f5:
a3:b3:01:f8:1e:2d:2c:d5:81:87:39:28:25:01:a6:56:6c:eb:
8e:fe:ab:3b:1a:3a:3f:79:a4:cc:40:c0:6a:35:d3:de:73:a3:
ba:34:7f:bf:8b:9d:ed:b2:80:45:e7:f7:44:1d:2f:78:80:8c:
a0:73:48:55:ac:70:2e:53:07:71:33:4d:86:14:9b:44:5e:55:
99:52:2b:64:15:9f:e8:12:5b:33:8c:8e:8a:6c:5a:3c:1b:95:
f8:37:80:c2:1c:74:79:73:e7:a2:66:f4:65:0e:40:a7:d6:c3:
64:57:3f:89:b3:7b:f3:e0:e1:7a:3b:c3:91:54:dc:0f:c1:49:
97:d4:72:03:6a:3e:90:2c:a4:66:18:72:a6:ff:00:3f:7e:f1:
84:d0:0f:72:ba:e1:f4:ad:61:6c:3c:3f:51:e4:ca:60:2d:51:
0f:41:d6:e7:f4:81:bb:69:31:3f:ff:18:e8:54:16:f2:b9:58:
71:68:cf:e5:4e:22:dd:dd:ba:c3:64:37:cc:36:50:b8:ac:61:
d4:45:25:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:49:31 2026 by rpki-client