Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: UMJex0SQPsu3Mqft/ZWr0hMoRcfRyok61XmylvTZPAw=
Subject key identifier: E4:E4:BA:A1:0A:40:A3:7A:B6:27:05:50:DC:E9:1A:82:C4:C5:57:32
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 019EBE7F610E44A2A55E7B49FDC33EDA2F5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 1142
Signing time: Sat 13 Jun 2026 01:01:19 +0000
Manifest this update: Sat 13 Jun 2026 01:01:19 +0000
Manifest next update: Sun 14 Jun 2026 01:01:19 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: e18sLacUHrPLQEvYxryYw6VWSTgt0wga0FVbGo+tCek=)
2: 41nL5ZV4qJFS5Q2xxQRuLMPoip0.roa (hash: BJiNQu65WQwhnTLfbv69MpyE5IwMrQPr3mJhDc7s1uM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7f:61:0e:44:a2:a5:5e:7b:49:fd:c3:3e:da:2f:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: Jun 13 01:01:19 2026 GMT
Not After : Jun 14 01:01:19 2026 GMT
Subject: CN=e4e4baa10a40a37ab6270550dce91a82c4c55732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:59:62:cf:ee:9d:e8:49:1e:1b:2f:34:b7:17:
47:2a:8f:0f:55:7e:f4:33:df:6a:67:d3:3a:74:6d:
df:86:07:d1:df:57:a9:c6:39:01:d1:bc:30:f5:4f:
91:13:33:7e:00:a3:0d:29:1f:17:30:40:3e:a6:73:
56:99:ff:69:a8:06:4f:36:89:eb:2d:5a:ef:99:70:
d7:79:cc:b1:aa:89:75:4b:54:f7:45:3f:55:18:41:
bd:b4:e1:b4:81:16:a9:c4:26:71:87:31:1a:4a:a4:
0f:f8:b3:47:45:9c:f8:98:8e:a7:50:4b:00:d7:c9:
a7:49:c6:71:ca:3e:26:52:d8:cc:19:32:c1:ff:1a:
83:8c:e7:aa:2e:93:54:61:1d:be:8f:34:d5:f8:41:
fc:8c:0b:b1:04:3e:c9:17:be:0f:52:44:b6:38:13:
02:b9:dd:65:ea:9b:3b:88:77:33:92:fc:d9:28:fb:
71:db:21:44:d6:5f:4f:61:7a:be:21:e8:e0:97:f0:
5d:14:7a:8d:b2:e8:78:2b:f4:1d:53:e9:7b:01:9e:
28:79:9d:3c:14:f4:6f:e4:c7:c6:96:e6:b5:01:0f:
99:66:38:49:71:a3:a1:15:a0:e4:f6:88:68:dc:66:
ba:c8:d0:55:b9:ec:5a:8d:86:bd:8b:3d:80:23:6f:
a7:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E4:BA:A1:0A:40:A3:7A:B6:27:05:50:DC:E9:1A:82:C4:C5:57:32
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:5c:60:21:62:9a:65:f9:42:ce:0a:20:7c:1b:49:ef:42:43:
40:f5:95:b4:13:7b:41:b1:2a:9d:a2:00:8d:0e:24:5f:13:0c:
14:d6:49:07:59:f1:e7:f4:af:0d:01:7f:9a:19:1e:47:23:fb:
22:a2:bb:ca:e4:87:8d:e1:fd:bf:4e:91:82:d1:e1:e4:43:9c:
33:ce:31:b7:3d:ee:04:6d:f2:d4:d6:d3:e9:50:6f:e4:b8:26:
55:68:80:00:1d:ae:ad:37:00:e1:e9:db:3f:3a:47:b5:58:22:
43:86:f0:5a:05:cf:dd:3e:37:2b:bc:e1:b4:02:42:4a:70:a0:
f3:4e:58:24:30:7f:7b:15:96:81:27:05:d4:23:04:e0:51:cf:
9c:9d:9f:85:b4:47:2a:cc:5e:67:04:54:55:71:e5:9e:94:93:
63:ca:a2:4c:35:32:26:af:9c:49:31:86:63:14:b6:96:b5:3b:
f6:81:fb:6e:b6:13:e4:60:dc:81:3b:d9:f7:b2:9b:ad:64:29:
43:1f:a9:9a:b3:6e:28:e5:0e:1c:46:49:49:b7:7c:08:c2:f2:
5e:7e:e6:ba:7b:2a:76:67:56:89:c2:76:e6:33:3a:d3:bb:1a:
c5:31:b5:91:cb:aa:e8:08:94:0e:48:7e:c4:67:ad:de:dc:e4:
4c:99:87:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:29:38 2026 by rpki-client