Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
File: 3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft (raw, json)
Hash identifier: 6e+Biym9O/b3k/fFbGuBLGuplTl6hoEFYvCw85t/ewQ=
Subject key identifier: CF:4D:C0:F8:C9:56:E4:9E:FB:18:21:40:84:E7:9D:AA:62:86:EC:82
Authority key identifier: DC:73:BE:38:7A:F5:52:97:0C:F6:2F:69:51:7E:3F:3C:9C:12:D2:F6
Certificate issuer: /CN=dc73be387af552970cf62f69517e3f3c9c12d2f6
Certificate serial: 019EBF5B1D4A7AA8391FC2B1C37F54985A71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
Manifest number: 125B
Signing time: Sat 13 Jun 2026 05:01:19 +0000
Manifest this update: Sat 13 Jun 2026 05:01:19 +0000
Manifest next update: Sun 14 Jun 2026 05:01:19 +0000
Files and hashes: 1: 3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl (hash: w3n8EIb6IuD24QJ5VeMtYXsvGlfI2htrqupxOzvz+s0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 05:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5b:1d:4a:7a:a8:39:1f:c2:b1:c3:7f:54:98:5a:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc73be387af552970cf62f69517e3f3c9c12d2f6
Validity
Not Before: Jun 13 05:01:19 2026 GMT
Not After : Jun 14 05:01:19 2026 GMT
Subject: CN=cf4dc0f8c956e49efb18214084e79daa6286ec82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:05:1a:25:cd:82:c7:de:0c:d0:a1:77:33:ae:
8c:88:03:71:cc:21:e9:f8:60:ec:4a:4a:67:38:91:
78:44:41:56:69:19:7e:58:2d:25:0b:fe:bd:cc:c3:
95:e4:c1:e9:5d:fc:0f:98:13:09:5f:cd:57:ed:a1:
92:a9:72:4a:d9:4f:87:45:91:03:e6:ae:b9:58:78:
ec:5d:63:93:ce:4f:3a:11:0a:8f:fc:0c:89:d2:b9:
0e:12:43:5b:2f:7f:fe:ec:78:d3:25:01:27:ca:b1:
09:d1:6d:bf:2c:d7:7d:52:ef:08:40:8c:b2:c5:20:
25:7d:cc:2a:10:8c:30:e8:22:7f:a2:c0:33:a5:ef:
38:31:95:67:f6:93:4a:bf:e9:b2:50:9a:90:15:2c:
3f:86:12:85:c0:12:2c:e0:e1:03:cb:6a:16:64:19:
1a:c2:bf:7a:c8:46:20:0e:47:a4:0f:58:fa:a1:15:
9c:cb:0f:ad:22:45:01:6b:b9:5e:37:5c:49:cd:78:
b0:bc:0a:07:7d:f7:e6:21:a8:7a:b6:c0:da:79:9c:
3d:f4:8c:aa:a5:a7:06:33:29:73:1e:6b:a8:4c:08:
5a:6c:ff:1b:c6:71:d1:48:8b:d3:7e:ef:61:ac:e4:
a9:e2:4e:91:3e:84:59:22:46:b7:32:46:58:65:93:
62:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:4D:C0:F8:C9:56:E4:9E:FB:18:21:40:84:E7:9D:AA:62:86:EC:82
X509v3 Authority Key Identifier:
keyid:DC:73:BE:38:7A:F5:52:97:0C:F6:2F:69:51:7E:3F:3C:9C:12:D2:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:b6:61:8d:9b:93:95:91:1c:bf:d7:6f:5d:92:59:f6:da:4c:
06:49:eb:26:29:a6:7a:b9:7a:e7:be:51:48:d6:ec:8a:db:ff:
22:05:a5:37:f9:cc:1e:b6:be:c2:c7:ee:5f:a8:2f:b0:5c:50:
9e:82:46:e2:99:41:1d:b4:ad:56:12:56:0b:df:e8:96:29:f9:
f3:da:b6:7c:38:52:e9:47:19:37:c8:4c:12:29:3d:bb:cd:da:
62:ae:18:f2:cd:ca:8d:51:22:64:fb:e2:84:97:66:10:a7:14:
52:69:18:65:e5:29:af:09:1e:2a:25:5c:19:8b:74:a0:b3:02:
0b:31:b0:ed:37:38:6a:8c:f4:fa:0b:d6:74:e6:f5:77:b4:1f:
81:ac:ea:47:73:b0:52:93:b5:f8:11:55:79:05:48:6c:2c:9a:
10:58:5e:fe:3f:ea:e3:e7:d0:df:cd:d8:76:a3:b8:ac:04:c6:
18:a8:de:78:22:c4:72:b0:63:36:34:4c:cc:b7:83:c0:ff:ea:
3e:ac:79:44:3a:92:06:83:54:1e:08:be:b5:23:d9:9e:f9:cf:
90:f3:42:91:fb:d4:61:b7:47:e4:93:7e:0f:30:38:34:d0:bc:
ee:2e:df:43:52:02:6a:8b:ea:88:99:ad:9e:fd:b0:e6:a4:6b:
11:c1:d3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:25:37 2026 by rpki-client