Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
File: 3DC4_dBG72WGgJfwNrinyFVyqtA.mft (raw, json)
Hash identifier: 1ZAqi1DY9RgAl/r4A4vEk2Xa1Tg3lpisEmK6ivP7WXE=
Subject key identifier: 29:D1:37:23:BB:BD:88:5E:CC:12:29:08:97:96:BC:F7:46:27:52:32
Authority key identifier: DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
Certificate issuer: /CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Certificate serial: 019E3004797615F713C4C7203ECC6BE41D53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
Manifest number: 190C
Signing time: Sat 16 May 2026 09:01:00 +0000
Manifest this update: Sat 16 May 2026 09:01:00 +0000
Manifest next update: Sun 17 May 2026 09:01:00 +0000
Files and hashes: 1: 3DC4_dBG72WGgJfwNrinyFVyqtA.crl (hash: /zJ2dIo1SbgyOj5+53hZZWgxkfEtp5uGsEFOcY7hic4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:79:76:15:f7:13:c4:c7:20:3e:cc:6b:e4:1d:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Validity
Not Before: May 16 09:01:00 2026 GMT
Not After : May 17 09:01:00 2026 GMT
Subject: CN=29d13723bbbd885ecc1229089796bcf746275232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8e:ff:f4:ba:94:f1:97:72:85:8c:4b:29:17:
4a:e8:b5:22:20:64:58:26:93:e5:03:7b:9c:c7:0a:
75:ea:3e:af:3e:c8:3c:c5:f5:bd:f3:89:47:26:0d:
49:c9:73:95:d1:56:ef:28:35:36:30:bc:42:68:2a:
a1:7a:c5:38:23:67:6e:08:f7:b2:b5:8c:8e:71:a1:
ee:ea:1e:7f:2f:03:b4:54:44:b4:19:f1:c1:0a:73:
5e:a1:15:a2:6c:71:69:96:35:fb:de:5d:b7:df:ed:
f0:26:d3:e8:f7:4f:67:3b:89:be:be:e0:04:39:c7:
cb:31:66:c4:05:30:25:77:5e:56:b2:ee:9b:7c:91:
51:38:fc:2b:e5:ff:cb:a5:2b:aa:cd:24:28:ac:84:
e0:7f:d1:a3:24:9e:85:77:65:b1:76:e1:21:e6:58:
8a:01:93:69:5b:ab:30:97:19:34:ac:5b:02:63:7b:
0e:35:fa:5a:87:b1:29:56:c9:1a:ae:f2:96:44:c3:
01:ea:a8:fe:62:18:b1:6a:e3:b2:74:79:a5:c0:b9:
5a:51:d8:25:72:99:bd:7e:ff:76:47:7c:d5:d8:c5:
8a:5d:c5:3f:2a:19:5f:55:ce:57:38:d8:48:f8:ac:
c6:29:e9:08:4f:a4:fc:a7:8e:d1:6e:fd:00:5a:96:
37:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D1:37:23:BB:BD:88:5E:CC:12:29:08:97:96:BC:F7:46:27:52:32
X509v3 Authority Key Identifier:
keyid:DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:23:d9:77:88:19:74:e6:06:ff:40:8c:8f:ce:f5:ea:23:73:
04:96:85:3c:24:25:1b:fd:99:a7:b3:59:b4:85:0e:c8:0d:fb:
89:4f:68:02:45:0d:67:ea:0a:f4:be:a2:5b:2c:3b:e0:af:1a:
62:00:a3:18:ac:2d:10:68:61:78:ed:eb:dc:b6:59:9f:24:72:
62:08:6b:ad:72:3f:e6:b4:ec:31:6b:08:b3:ac:53:75:ee:f1:
54:ed:18:68:a5:93:67:67:33:da:7c:76:5b:18:68:10:f6:0a:
22:2b:94:e4:a2:4a:4b:d8:6f:22:fb:e1:09:e1:34:99:57:f4:
b9:bd:1f:a4:07:13:3f:d9:bd:65:eb:cf:64:0f:02:6a:7b:5e:
29:19:e9:9f:f3:43:c1:50:b9:34:43:4d:6a:e6:eb:ae:2f:be:
9f:47:db:0d:d2:33:91:27:ae:b1:11:7a:25:b6:16:99:f6:41:
a0:54:33:88:e3:3e:a0:45:71:7f:17:d4:d7:a3:7b:a0:e0:a1:
90:c0:f2:7a:a0:48:06:5b:7f:88:45:7a:f0:9a:96:98:e2:fc:
df:8d:a8:35:b5:3a:f4:02:3e:ce:07:f5:ec:1c:3c:a2:bd:ba:
32:2b:f7:cb:f4:ae:e3:bf:85:ee:1e:31:45:24:a9:8b:f3:93:
7c:72:9a:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBHl2FfcTxMcgPsxr5B1TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMzBiOGZkZDA0NmVmNjU4NjgwOTdmMDM2YjhhN2M4NTU3
MmFhZDAwHhcNMjYwNTE2MDkwMTAwWhcNMjYwNTE3MDkwMTAwWjAzMTEwLwYDVQQD
EygyOWQxMzcyM2JiYmQ4ODVlY2MxMjI5MDg5Nzk2YmNmNzQ2Mjc1MjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAro7/9LqU8ZdyhYxLKRdK6LUiIGRY
JpPlA3ucxwp16j6vPsg8xfW984lHJg1JyXOV0VbvKDU2MLxCaCqhesU4I2duCPey
tYyOcaHu6h5/LwO0VES0GfHBCnNeoRWibHFpljX73l233+3wJtPo909nO4m+vuAE
OcfLMWbEBTAld15Wsu6bfJFROPwr5f/LpSuqzSQorITgf9GjJJ6Fd2WxduEh5liK
AZNpW6swlxk0rFsCY3sONfpah7EpVskarvKWRMMB6qj+YhixauOydHmlwLlaUdgl
cpm9fv92R3zV2MWKXcU/KhlfVc5XONhI+KzGKekIT6T8p47Rbv0AWpY3sQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCnRNyO7vYhezBIpCJeWvPdGJ1IyMB8GA1UdIwQY
MBaAFNwwuP3QRu9lhoCX8Da4p8hVcqrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYt
MjlhMGFhNmM0YWQxLzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYtMjlhMGFhNmM0YWQx
LzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWiPZd4gZ
dOYG/0CMj8716iNzBJaFPCQlG/2Zp7NZtIUOyA37iU9oAkUNZ+oK9L6iWyw74K8a
YgCjGKwtEGhheO3r3LZZnyRyYghrrXI/5rTsMWsIs6xTde7xVO0YaKWTZ2cz2nx2
WxhoEPYKIiuU5KJKS9hvIvvhCeE0mVf0ub0fpAcTP9m9ZevPZA8CanteKRnpn/ND
wVC5NENNaubrri++n0fbDdIzkSeusRF6JbYWmfZBoFQziOM+oEVxfxfU16N7oOCh
kMDyeqBIBlt/iEV68JqWmOL8342oNbU69AI+zgf17Bw8or26Miv3y/Su47+F7h4x
RSSpi/OTfHKabQ==
-----END CERTIFICATE-----
Generated at Sat May 16 18:40:20 2026 by rpki-client