Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: pNO1IweF0jWjUjXkZPUUkkZIpPSlYzGotbKP6dGDheI=
Subject key identifier: AB:C0:10:DB:A4:D4:F9:8D:88:74:D6:37:EB:45:F7:36:55:96:52:C1
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019E30E03633C8821E8B2D78ED66027347A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 18A1
Signing time: Sat 16 May 2026 13:01:00 +0000
Manifest this update: Sat 16 May 2026 13:01:00 +0000
Manifest next update: Sun 17 May 2026 13:01:00 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: qNbS4wotJ6BEYUvQ0+E1zTskcVJVz992B74IsXvDiI4=)
2: FFrrJg1f7sBn9CMNkWOHWkncPKA.roa (hash: RRbiIEi7LB7ItO/8kZqYNCorz0xLwEEZeK7jHRHtAV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:36:33:c8:82:1e:8b:2d:78:ed:66:02:73:47:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: May 16 13:01:00 2026 GMT
Not After : May 17 13:01:00 2026 GMT
Subject: CN=abc010dba4d4f98d8874d637eb45f736559652c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0a:31:78:c2:7a:ca:46:f3:ce:8f:6f:5d:33:
65:9d:42:99:c7:ec:45:66:67:67:b2:fb:dc:82:7a:
a2:5f:c2:3c:d4:7e:63:9f:11:49:9a:62:dd:4e:5f:
c3:7c:6d:49:37:37:53:32:f6:92:52:f0:e8:ca:02:
95:e0:58:db:36:f9:c3:98:55:93:73:1a:68:a3:b4:
71:52:8c:49:79:71:db:d5:66:eb:d6:e7:9a:3c:27:
e8:e2:4d:96:0b:f1:6c:c6:94:d4:ed:bd:53:62:80:
2d:fb:3a:c6:91:c6:69:d9:46:f2:95:62:ba:b0:dd:
26:99:44:63:1a:0d:4e:09:a2:64:73:d5:73:9a:45:
b0:ab:50:37:4e:cb:05:31:dd:63:f8:5a:72:8c:d4:
2d:51:8e:4b:68:1a:87:80:04:3f:b6:2c:47:31:06:
2c:68:e4:00:f3:0c:53:37:51:ee:32:e6:3e:94:9c:
72:d3:ab:e1:c4:fe:27:98:55:89:63:96:9d:81:32:
7f:3a:51:14:c0:fe:d6:3f:eb:1d:1b:4c:c9:7b:50:
2c:d0:89:31:25:f8:c6:32:6a:9d:50:64:53:a6:15:
ea:fe:53:6e:b9:96:47:6f:c1:1d:8d:c7:d5:c3:c7:
1a:b7:b1:11:41:42:91:eb:1f:e8:a6:cb:7c:84:10:
d7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C0:10:DB:A4:D4:F9:8D:88:74:D6:37:EB:45:F7:36:55:96:52:C1
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:37:c7:99:56:09:4a:91:d1:e8:3e:d7:a1:1f:b2:b8:1b:49:
68:1f:3e:e8:1c:0d:27:6e:eb:13:b9:50:b0:eb:8a:61:7b:0d:
0b:01:c4:d7:1e:03:86:45:4f:f3:a4:b4:3e:74:f9:40:55:03:
8e:b7:15:0a:e4:3a:ab:93:82:d1:c7:a1:45:e3:af:0f:9e:fd:
79:ac:fb:c4:e9:c2:4c:11:bc:d8:90:11:67:69:cf:f1:32:ac:
29:ae:ee:ab:7b:3c:ef:cb:4a:47:50:c5:bd:c1:fe:d1:91:4f:
98:e4:d3:76:60:a9:6e:c2:e4:d4:eb:ea:5b:8e:d6:d8:3e:f8:
ae:c9:9e:9c:e7:de:b8:60:71:c8:6d:84:ab:8b:07:e6:1e:50:
3a:62:5b:0d:8b:d7:1e:28:9a:f7:c3:4f:a0:ff:47:da:ae:3b:
92:60:74:2b:f2:34:37:1e:c9:4b:af:87:39:6e:0d:8b:08:66:
b4:99:a0:34:8d:94:9c:c8:c7:94:89:74:54:64:61:dd:04:4b:
5d:61:14:1e:24:b5:a3:d4:72:fc:8b:08:4a:f3:17:5f:8f:04:
ad:b3:1a:82:ef:7e:f2:73:26:b2:0b:06:38:68:9f:71:0f:0b:
3f:0f:72:a0:d8:e8:45:c1:43:31:48:5c:fe:13:2f:ab:cf:40:
de:20:f6:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4DYzyIIeiy147WYCc0epMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNjZkOGI5ZDM4ZDViYjE5Y2ZhMGM0NjQ0YjQ1MjkzZDFl
OGI2ZmEwHhcNMjYwNTE2MTMwMTAwWhcNMjYwNTE3MTMwMTAwWjAzMTEwLwYDVQQD
EyhhYmMwMTBkYmE0ZDRmOThkODg3NGQ2MzdlYjQ1ZjczNjU1OTY1MmMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAugoxeMJ6ykbzzo9vXTNlnUKZx+xF
ZmdnsvvcgnqiX8I81H5jnxFJmmLdTl/DfG1JNzdTMvaSUvDoygKV4FjbNvnDmFWT
cxpoo7RxUoxJeXHb1Wbr1ueaPCfo4k2WC/FsxpTU7b1TYoAt+zrGkcZp2UbylWK6
sN0mmURjGg1OCaJkc9VzmkWwq1A3TssFMd1j+FpyjNQtUY5LaBqHgAQ/tixHMQYs
aOQA8wxTN1HuMuY+lJxy06vhxP4nmFWJY5adgTJ/OlEUwP7WP+sdG0zJe1As0Ikx
JfjGMmqdUGRTphXq/lNuuZZHb8EdjcfVw8cat7ERQUKR6x/opst8hBDXlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKvAENuk1PmNiHTWN+tF9zZVllLBMB8GA1UdIwQY
MBaAFNxm2LnTjVuxnPoMRkS0UpPR6Lb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUt
NDc3MWQxYTRkZGYwLzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUtNDc3MWQxYTRkZGYw
LzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATTfHmVYJ
SpHR6D7XoR+yuBtJaB8+6BwNJ27rE7lQsOuKYXsNCwHE1x4DhkVP86S0PnT5QFUD
jrcVCuQ6q5OC0cehReOvD579eaz7xOnCTBG82JARZ2nP8TKsKa7uq3s878tKR1DF
vcH+0ZFPmOTTdmCpbsLk1OvqW47W2D74rsmenOfeuGBxyG2Eq4sH5h5QOmJbDYvX
Hiia98NPoP9H2q47kmB0K/I0Nx7JS6+HOW4NiwhmtJmgNI2UnMjHlIl0VGRh3QRL
XWEUHiS1o9Ry/IsISvMXX48ErbMagu9+8nMmsgsGOGifcQ8LPw9yoNjoRcFDMUhc
/hMvq89A3iD27g==
-----END CERTIFICATE-----
Generated at Sat May 16 17:57:30 2026 by rpki-client