
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: Fpx3HlkoconsS77BkGVUxL7fbAes9tsd/x1V8VDS4Hs=
Subject key identifier: 17:04:AC:71:0E:40:1E:75:56:17:AE:90:7E:EB:59:BD:D9:4D:C3:FA
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 019F577D88F5F4A07AF9B2549873953BFDEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 19AA
Signing time: Sun 12 Jul 2026 18:01:12 +0000
Manifest this update: Sun 12 Jul 2026 18:01:12 +0000
Manifest next update: Mon 13 Jul 2026 18:01:12 +0000
Files and hashes: 1: 36CB5eigCHYIuRmXqrnDW_-F3Xc.roa (hash: KcH/S3GFg0T0gWVpA5XkZVyUjTJRMZNW3hzXP6Ng0zo=)
2: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: Uh5rsdjvT9uFuQ9RrUZm2aK7OnIBr5st93ddd4Gz+1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 Jul 2026 14:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:57:7d:88:f5:f4:a0:7a:f9:b2:54:98:73:95:3b:fd:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: Jul 12 18:01:12 2026 GMT
Not After : Jul 13 18:01:12 2026 GMT
Subject: CN=1704ac710e401e755617ae907eeb59bdd94dc3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:21:3b:47:5e:2a:66:27:69:d7:99:48:a4:5e:
e2:88:39:d0:98:68:65:89:52:71:01:62:de:4f:5d:
55:cc:08:17:95:cb:df:c2:f4:c2:e5:ef:c8:03:95:
e0:ad:4c:fc:83:28:f4:da:13:a6:2f:9f:2b:29:ad:
89:cd:c4:20:91:da:a8:33:21:61:cc:d1:c8:9b:54:
c1:fc:dd:86:f9:f5:db:27:05:8d:e6:ff:fb:42:ef:
6a:bd:67:ff:af:f2:10:f0:be:c5:76:a1:72:db:30:
7e:ca:84:f9:4d:e1:6c:a9:c6:34:69:4c:00:fd:1f:
6b:dd:22:f6:14:06:86:a2:39:ba:65:25:6e:87:d8:
77:47:03:ce:7d:8e:db:ef:82:10:cf:71:64:41:90:
1f:ec:34:30:dd:9d:ed:be:de:8d:cf:65:29:23:dc:
41:2e:b6:2e:29:38:f3:c9:20:e9:32:04:28:3b:55:
4b:e7:0a:c5:d5:7b:24:fa:c6:ea:c7:5b:4f:45:a5:
68:bf:d8:dc:84:0c:f1:90:69:56:56:18:46:ad:d9:
ce:10:e4:ee:11:c9:d6:8d:b1:63:a0:40:f9:58:4e:
20:f2:75:fc:1b:d1:19:d5:b4:34:2e:92:67:ed:67:
4c:f0:5c:14:ce:70:8f:d1:84:32:86:ae:33:ee:52:
db:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:04:AC:71:0E:40:1E:75:56:17:AE:90:7E:EB:59:BD:D9:4D:C3:FA
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:68:c3:2f:cf:98:5c:05:c1:0c:1b:08:6c:1c:d9:34:8c:3c:
0c:8a:8f:55:d8:e4:f3:f1:70:99:bd:36:3e:92:65:78:af:f2:
2b:97:1d:8d:1b:0a:df:d6:48:0c:4f:52:1d:b7:25:c6:d1:05:
09:1f:6f:ec:cd:ba:e4:3b:0d:d1:65:8d:4b:60:7f:3e:77:f3:
0b:d3:34:b9:96:cf:b7:8f:7f:f2:f9:c0:88:88:03:e6:e4:e3:
0d:f0:6f:bf:50:1c:b6:f1:3c:4b:2c:f7:b1:f2:b1:4c:7d:1e:
85:f0:84:05:dc:36:eb:72:98:63:02:10:39:43:ad:ce:81:7e:
78:9f:e3:b4:f7:98:22:22:5b:69:b3:39:3a:42:c2:82:0a:a7:
a8:7c:58:d6:4f:96:fe:fc:f6:fa:9c:ea:86:90:47:3b:50:0c:
79:6a:78:e2:9c:82:42:81:2c:b6:a1:87:07:64:4a:43:44:a9:
80:1b:fd:21:ee:f7:fd:71:ee:75:2d:3f:ed:0f:d4:94:29:6e:
b5:fa:3d:d7:72:75:42:cb:e5:3c:4b:d2:ec:54:78:76:64:f0:
da:d8:3e:82:f4:f3:56:60:e3:60:9b:fd:a5:b6:58:32:61:be:
d6:9a:a1:55:08:7c:80:c6:19:7c:3a:3f:e6:5a:20:d9:bb:b4:
f9:4f:7f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 22:03:44 2026 by rpki-client