Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: pv/hcq5NhhBB/EOatR5hsD8e7Kdl/jnuDb39u1EUlRs=
Subject key identifier: 1E:46:6B:53:57:F8:5A:EA:CA:90:FD:CF:E5:0D:08:E8:54:35:A2:B7
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019F189EA83ACBC1A63E600F96E63AAAB66E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 1919
Signing time: Tue 30 Jun 2026 13:01:18 +0000
Manifest this update: Tue 30 Jun 2026 13:01:18 +0000
Manifest next update: Wed 01 Jul 2026 13:01:18 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: IIyugo2z2iyO5on9sAar4/PdYLvm1F6OMI8qNrwdBzk=)
2: FFrrJg1f7sBn9CMNkWOHWkncPKA.roa (hash: RRbiIEi7LB7ItO/8kZqYNCorz0xLwEEZeK7jHRHtAV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:a8:3a:cb:c1:a6:3e:60:0f:96:e6:3a:aa:b6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Jun 30 13:01:18 2026 GMT
Not After : Jul 1 13:01:18 2026 GMT
Subject: CN=1e466b5357f85aeaca90fdcfe50d08e85435a2b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:29:68:b3:fd:0c:97:2b:8d:14:07:d9:79:3d:
04:0a:9b:3c:f4:c6:7b:8e:79:18:fe:f2:71:fa:3d:
c0:00:66:eb:bf:3d:94:8d:4b:e3:85:ec:16:95:b8:
3c:ac:fb:ad:1e:0e:cc:b7:0b:09:93:7b:58:c6:fb:
5d:08:08:b2:aa:43:9d:c8:31:fe:9e:05:78:e8:0f:
00:52:e5:26:f0:e2:7c:8e:f0:16:0e:f3:08:6b:88:
69:70:ba:36:a5:47:64:fb:85:87:24:f5:28:e5:ba:
ef:05:1e:41:33:81:7b:b9:e3:00:29:45:8f:92:1e:
09:d5:14:0e:78:dd:34:37:91:3d:f7:1e:52:60:12:
c5:9b:7a:cf:20:d9:78:e8:db:90:e8:55:e5:b8:0d:
2b:c7:3e:e2:54:85:2d:e3:1e:ed:c1:98:7f:6d:fa:
cb:68:3a:51:ca:df:20:c7:cb:b4:af:d6:f4:f7:e1:
2e:93:cf:66:e8:e7:f3:95:0a:53:4c:0f:31:05:75:
d0:ae:a4:bb:73:b4:91:4d:b1:df:63:b5:bb:29:ce:
db:d1:17:74:04:db:3f:b4:2a:b4:ee:80:55:cb:d8:
55:9b:f0:a8:f7:d8:24:10:ce:b2:ed:be:93:a5:61:
27:84:2f:74:7a:11:f9:ea:73:f7:71:65:0b:d2:93:
94:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:46:6B:53:57:F8:5A:EA:CA:90:FD:CF:E5:0D:08:E8:54:35:A2:B7
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:5f:c9:95:3e:1e:66:68:0f:d1:f1:b1:8d:ae:46:fc:af:8b:
b5:1f:81:75:7e:b4:f3:70:43:39:d6:0b:95:33:8d:2c:8e:ea:
25:13:ce:ca:83:7e:79:ad:b4:47:af:59:4d:68:61:ce:b0:9e:
b0:86:80:45:68:13:fc:6d:03:6e:a5:4f:fb:d6:5f:4e:ff:83:
c1:e1:30:85:48:8b:d2:5f:5f:68:5f:a2:07:d3:fb:7c:f8:e9:
ff:86:80:48:9c:c7:9c:38:f4:d7:87:0f:14:b1:7e:84:7f:2a:
fb:bf:52:1c:70:00:c9:4e:0e:f4:97:e2:05:4c:f1:9f:c5:24:
74:91:a0:42:27:df:68:31:75:21:9f:7c:31:98:55:ee:07:3c:
19:cc:26:93:49:64:65:60:00:5c:99:fb:ad:61:0d:0d:bf:6a:
e3:e7:99:7f:d8:5c:4a:ca:24:d4:29:e3:f2:0b:3b:58:16:74:
02:6b:5c:97:fb:62:35:55:8e:86:9b:28:5b:96:ca:66:34:c8:
ab:e7:d8:f5:fc:b3:21:a0:aa:07:91:54:e3:88:c5:bc:c2:f0:
7e:37:28:e4:44:0d:c9:0d:ac:54:66:c2:b1:94:a8:69:5d:9f:
46:3e:b4:be:e7:0e:c4:08:56:bb:f5:76:a6:f9:f1:5f:89:07:
73:4d:08:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Ynqg6y8GmPmAPluY6qrZuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNjZkOGI5ZDM4ZDViYjE5Y2ZhMGM0NjQ0YjQ1MjkzZDFl
OGI2ZmEwHhcNMjYwNjMwMTMwMTE4WhcNMjYwNzAxMTMwMTE4WjAzMTEwLwYDVQQD
EygxZTQ2NmI1MzU3Zjg1YWVhY2E5MGZkY2ZlNTBkMDhlODU0MzVhMmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqilos/0MlyuNFAfZeT0ECps89MZ7
jnkY/vJx+j3AAGbrvz2UjUvjhewWlbg8rPutHg7MtwsJk3tYxvtdCAiyqkOdyDH+
ngV46A8AUuUm8OJ8jvAWDvMIa4hpcLo2pUdk+4WHJPUo5brvBR5BM4F7ueMAKUWP
kh4J1RQOeN00N5E99x5SYBLFm3rPINl46NuQ6FXluA0rxz7iVIUt4x7twZh/bfrL
aDpRyt8gx8u0r9b09+Euk89m6OfzlQpTTA8xBXXQrqS7c7SRTbHfY7W7Kc7b0Rd0
BNs/tCq07oBVy9hVm/Co99gkEM6y7b6TpWEnhC90ehH56nP3cWUL0pOUWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB5Ga1NX+FrqypD9z+UNCOhUNaK3MB8GA1UdIwQY
MBaAFNxm2LnTjVuxnPoMRkS0UpPR6Lb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUt
NDc3MWQxYTRkZGYwLzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUtNDc3MWQxYTRkZGYw
LzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEV/JlT4e
ZmgP0fGxja5G/K+LtR+BdX6083BDOdYLlTONLI7qJRPOyoN+ea20R69ZTWhhzrCe
sIaARWgT/G0DbqVP+9ZfTv+DweEwhUiL0l9faF+iB9P7fPjp/4aASJzHnDj014cP
FLF+hH8q+79SHHAAyU4O9JfiBUzxn8UkdJGgQiffaDF1IZ98MZhV7gc8Gcwmk0lk
ZWAAXJn7rWENDb9q4+eZf9hcSsok1Cnj8gs7WBZ0Amtcl/tiNVWOhpsoW5bKZjTI
q+fY9fyzIaCqB5FU44jFvMLwfjco5EQNyQ2sVGbCsZSoaV2fRj60vucOxAhWu/V2
pvnxX4kHc00IlA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 22:24:19 2026 by rpki-client