Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json)
Hash identifier: iXLWV2VeEi7JbsihBpXroFsXbINppBOSInUOxB0H7M0=
Subject key identifier: 54:65:33:F2:36:F8:1E:B1:BA:E6:34:EF:D8:A4:69:20:EF:EA:8A:F8
Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b
Certificate serial: 019E28EF7BCC582E672F4B3C03ACABE0B509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
Manifest number: 089F
Signing time: Fri 15 May 2026 00:00:43 +0000
Manifest this update: Fri 15 May 2026 00:00:43 +0000
Manifest next update: Sat 16 May 2026 00:00:43 +0000
Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: Ve2bc3Iy+YUWsSmNi0FdVZo9U1w/hqrJwnv/e5sIy3A=)
2: hBUefaIMV4VxrEK-fm1hTMzaWD8.roa (hash: ULTyVqCoLmJTp6EzOZiZ2uvQqGHDruUXv80DgFEK1ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 00:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:ef:7b:cc:58:2e:67:2f:4b:3c:03:ac:ab:e0:b5:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b
Validity
Not Before: May 15 00:00:43 2026 GMT
Not After : May 16 00:00:43 2026 GMT
Subject: CN=546533f236f81eb1bae634efd8a46920efea8af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6b:19:6b:f4:fb:e0:00:69:01:36:92:26:d0:
71:c2:67:12:32:86:77:aa:8e:cf:3b:46:7d:a9:c6:
9b:1b:0b:5a:0d:2c:5c:4d:af:95:8c:5b:49:c5:d5:
39:98:82:73:62:32:19:b0:36:7f:20:e3:00:f8:59:
da:1d:02:26:cc:fd:f3:94:f5:68:3c:92:ec:dc:ff:
b4:15:d3:56:dc:f3:8b:da:01:ba:3f:6c:08:07:3a:
70:3d:ef:d2:39:fc:ed:32:36:e9:e9:f4:79:b7:df:
0b:18:d7:46:54:c2:5e:96:84:7d:bc:33:94:60:2b:
4d:71:d7:7f:8f:6e:98:1d:52:cb:39:c1:0f:74:8c:
eb:83:65:be:ad:bd:64:d1:4d:34:44:06:bc:30:96:
28:7a:ae:b6:11:17:a4:39:00:e3:28:ca:fd:e7:a3:
1b:a5:4d:76:42:a9:f4:fb:a3:fc:0b:75:9c:b7:f7:
b8:c1:d5:90:26:78:ec:b9:74:8a:3f:6b:5b:f6:b0:
fd:56:7f:f3:9c:03:ff:4e:18:6b:ae:a8:75:72:35:
4c:5f:44:d8:43:1e:b8:de:b1:3f:68:6b:81:2c:c7:
a2:8d:df:91:60:97:37:d0:5f:0c:de:46:f6:46:14:
0c:fb:57:95:b1:6a:f5:fa:d5:55:41:44:f0:c0:f6:
78:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:65:33:F2:36:F8:1E:B1:BA:E6:34:EF:D8:A4:69:20:EF:EA:8A:F8
X509v3 Authority Key Identifier:
keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:28:e8:c3:19:d6:93:ce:b5:7f:c8:37:db:37:02:62:52:13:
26:c2:35:cb:f9:58:71:e3:ed:b8:d6:ca:47:54:42:3f:e6:34:
1f:d0:6a:92:be:cb:93:c0:7a:f8:ae:63:1f:30:d3:69:26:f0:
2e:a7:4a:98:2d:b4:72:c8:85:cd:cf:c5:89:dd:12:09:db:eb:
40:d2:80:88:a4:7a:5c:c0:c4:7c:9a:ab:4a:1d:9c:93:60:67:
ef:21:9c:b9:91:4d:71:78:aa:d9:bc:6e:e5:7a:9a:65:d3:0d:
d8:4d:0f:4e:5f:84:31:92:1e:ae:3e:5d:fb:f3:bf:e1:09:89:
1a:61:2d:42:e7:a4:da:66:16:7f:45:99:05:21:9b:43:70:80:
8c:6c:03:3e:83:b2:f3:06:fd:1d:1b:8c:ca:42:01:3b:7c:3c:
71:69:c1:bd:60:92:37:55:51:d2:a4:ac:7b:a4:06:32:54:0d:
e5:34:df:ee:71:b9:05:08:93:6a:ce:59:70:1c:93:f9:94:3b:
51:a8:69:6d:cf:b6:f1:0e:b5:34:04:1e:00:7b:51:a4:cd:70:
fd:68:65:fe:3e:77:dc:ce:47:89:31:29:5a:8b:ec:c1:55:87:
f2:71:66:97:1b:d8:bf:ed:2f:8c:16:eb:d6:17:95:ac:55:c0:
89:33:fc:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:02:26 2026 by rpki-client