Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
File: 3f20crHtWewvNw8g-rSHlDnFMY8.mft (raw, json)
Hash identifier: d2ALm2UOKUmULbgLCMJb+GUVpZj2/bId9l5t3f5cYQw=
Subject key identifier: 72:B3:9E:55:80:6A:BB:D5:7F:AE:0C:38:3C:6F:6D:85:C9:B8:54:99
Authority key identifier: DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F
Certificate issuer: /CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f
Certificate serial: 019EBE7ED7707DD06E7228C27D8559B4BEDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
Manifest number: 0171
Signing time: Sat 13 Jun 2026 01:00:44 +0000
Manifest this update: Sat 13 Jun 2026 01:00:44 +0000
Manifest next update: Sun 14 Jun 2026 01:00:44 +0000
Files and hashes: 1: 3f20crHtWewvNw8g-rSHlDnFMY8.crl (hash: CWRIFeR8VtlRj4lJrloFTB2s2stEMpjWHAHDIIrwDGk=)
2: ZMQkud9K3mvXdpjh-yoqav-Fm2A.roa (hash: rezLl6nocyRRaT4FpZnJ5CHwHhiv5ot72qwHgOZEFQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7e:d7:70:7d:d0:6e:72:28:c2:7d:85:59:b4:be:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f
Validity
Not Before: Jun 13 01:00:44 2026 GMT
Not After : Jun 14 01:00:44 2026 GMT
Subject: CN=72b39e55806abbd57fae0c383c6f6d85c9b85499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:35:ef:94:31:e0:44:01:ba:d6:e3:78:27:4b:
9c:14:d5:22:5b:98:82:f4:03:6d:31:97:84:e0:eb:
b7:2c:3c:61:ed:9e:37:bc:70:90:dd:51:84:d2:4f:
6a:2f:6d:d5:ec:9c:5b:65:b6:d1:c8:c4:1f:99:62:
e1:02:ef:12:25:86:cb:1d:3d:fa:63:9f:f3:f8:6e:
db:66:2a:49:ce:ba:93:d9:a8:88:f3:35:17:2f:6c:
f9:03:07:5a:34:00:84:34:9d:0d:e5:2a:4d:b3:37:
be:c1:c5:c5:d0:d5:96:a0:96:c7:74:bd:99:9c:3a:
ad:5d:c1:cb:45:4a:9a:f6:54:3a:61:e7:48:ac:c0:
ea:8b:7c:5c:7f:6b:07:9b:f6:f2:a3:fa:64:47:f2:
c2:78:df:e8:a3:39:a1:f6:5e:36:a4:54:16:0c:fe:
f4:fc:2d:ab:c5:2e:4d:45:03:f8:d4:e0:1b:21:09:
22:f3:03:af:89:0a:86:96:1f:aa:98:5a:54:d4:68:
ca:9b:c3:28:ce:f7:fd:ef:23:6b:82:89:f5:dc:cb:
9f:2f:b8:16:ea:51:bf:35:df:03:60:b3:e5:98:76:
c5:9a:8b:13:41:1c:49:19:49:ee:e5:ce:16:5a:f6:
d0:4e:92:09:1c:8a:69:64:13:e8:fd:94:08:4b:66:
bc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B3:9E:55:80:6A:BB:D5:7F:AE:0C:38:3C:6F:6D:85:C9:B8:54:99
X509v3 Authority Key Identifier:
keyid:DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:7c:01:23:cf:96:e0:14:8c:b5:b0:e9:2f:ce:6e:60:0c:37:
35:e7:0e:ec:06:c4:44:95:43:88:81:59:da:63:5a:e9:b3:84:
86:3f:94:f0:eb:20:8e:d2:ff:ea:e6:5f:67:c3:f1:ce:89:34:
cf:58:45:26:85:db:55:1e:0c:fe:d8:4e:ce:a4:b0:65:83:83:
e7:3d:6b:88:89:cf:86:2e:05:a5:90:29:23:76:b2:85:df:9b:
00:51:98:08:8b:36:de:5c:75:d4:95:a1:6c:2b:9d:86:e6:53:
37:9e:c0:58:2f:f7:35:f7:f2:22:41:1a:af:ae:74:30:49:57:
a9:b6:ca:7e:24:5d:42:5c:29:9b:45:15:00:6d:c6:3b:dd:ed:
17:0f:77:9b:06:ca:26:9d:b0:0a:fe:15:62:b3:83:39:2d:ce:
cb:0d:f9:60:55:00:6a:5f:34:77:d7:34:cb:0d:a2:a7:d3:16:
72:3a:91:43:3b:46:05:43:86:97:46:47:07:c2:69:22:9b:d4:
e0:11:42:48:04:91:bb:cb:cb:4a:d9:d4:39:fa:ee:1e:70:ad:
3a:19:53:95:d0:ad:8c:f6:15:63:9c:6c:66:19:73:10:c1:60:
52:14:a8:5a:63:e7:68:86:95:f5:35:1f:b1:7d:dd:c7:03:ae:
c1:26:89:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 11:26:02 2026 by rpki-client