Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: GlV1/v/LArjicF3NkXm9K2I7bPNjxj+47zspXP4s2/U=
Subject key identifier: F8:4F:D1:9A:86:A3:ED:67:BF:01:B1:83:53:EB:E3:22:64:71:B9:42
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 019F189EB0C2966F907486CC44B91740CFC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 0C1C
Signing time: Tue 30 Jun 2026 13:01:20 +0000
Manifest this update: Tue 30 Jun 2026 13:01:20 +0000
Manifest next update: Wed 01 Jul 2026 13:01:20 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: Nq7te1Tu6qEcXg8SdMAMZqWxd3+acs+CL9FWPSDIcMA=)
2: y8l-GZaij3nY_lsT-zDKBTkrGss.roa (hash: edJk2bhQjppncI7NDvSvP36a6hLKHOIsn+JqFnH50EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:b0:c2:96:6f:90:74:86:cc:44:b9:17:40:cf:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: Jun 30 13:01:20 2026 GMT
Not After : Jul 1 13:01:20 2026 GMT
Subject: CN=f84fd19a86a3ed67bf01b18353ebe3226471b942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3a:e7:50:18:87:33:a0:55:47:77:85:85:fc:
69:b1:9e:b5:6b:dd:06:61:05:48:d5:20:00:dd:97:
53:56:91:73:21:ab:0c:25:17:22:0b:2e:0b:2b:ed:
4c:63:2d:90:22:df:6d:99:f0:53:6e:27:64:7c:48:
b1:b2:3d:63:48:9b:a6:cc:67:4b:db:bd:e9:a5:d7:
01:a9:a2:16:d9:ef:a0:c7:a7:a0:f0:3f:c1:12:2a:
40:3c:4d:33:8d:6f:b7:07:8c:3c:73:45:75:3d:f6:
1a:62:79:83:a3:18:fc:82:fc:6c:c5:ef:2a:26:a8:
c4:ca:53:e5:e3:1f:d3:f1:65:f4:c0:d6:1a:b2:a2:
21:61:79:54:13:74:5b:07:b1:90:95:44:3c:81:15:
89:17:ca:ed:7e:d9:7f:64:96:e6:35:1e:c5:53:49:
2a:92:c3:e3:5d:e1:4e:dd:63:83:fe:1d:ce:80:46:
b6:b0:3a:77:37:d9:86:28:1b:42:a7:4d:c8:e7:22:
a1:76:d2:1d:7b:78:b2:80:0a:9a:a4:22:be:47:c7:
3a:9a:d6:8c:85:89:a5:9d:1f:58:b5:b6:f0:88:67:
3f:e4:f6:0b:d6:a5:0d:97:cf:20:85:72:f1:28:21:
34:a5:89:f5:d1:29:3a:d7:89:9a:8d:65:c1:ec:41:
21:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:4F:D1:9A:86:A3:ED:67:BF:01:B1:83:53:EB:E3:22:64:71:B9:42
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:e9:af:33:5d:1d:70:a4:19:8e:14:54:36:ae:c7:e1:44:d3:
d1:15:a9:35:29:c5:5f:5f:38:db:c4:43:51:63:a8:16:cb:28:
e0:a7:ff:23:43:86:53:ad:dd:9b:b1:05:99:5a:f7:da:74:3f:
11:1d:ae:4b:83:52:cb:f6:13:c4:cb:9e:ef:12:c3:f3:2c:54:
33:d7:c5:7a:52:31:fd:48:dc:aa:bc:90:a1:c7:26:ae:66:a8:
dd:39:46:6c:75:92:e5:f6:ca:a2:b6:46:70:57:00:f6:00:70:
02:0d:4b:dc:c1:44:4c:77:c5:e8:64:26:00:d9:14:00:09:c2:
1b:10:08:19:9f:09:c6:b5:b2:04:61:05:bf:ca:fa:2f:a5:2f:
45:fd:f6:07:06:b7:be:27:14:28:41:6e:a8:54:c5:64:c2:6e:
70:b1:4b:91:e9:ef:57:ef:83:16:5f:9a:43:55:d2:57:8c:50:
18:0b:f5:81:49:b2:14:f8:28:39:91:e0:1a:dd:e1:8a:6d:e3:
51:91:f0:2a:bd:3b:39:6f:84:59:d6:92:88:8a:c6:d0:7f:b0:
85:71:8e:c5:9e:f5:26:5f:0d:f0:e5:f4:d5:30:92:f4:39:35:
50:6d:29:e2:b5:db:a4:c3:3e:17:9d:2c:0f:66:8d:9e:d8:52:
4a:4b:76:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YnrDClm+QdIbMRLkXQM/BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlYmU1MTdlNzQ3NWUxN2MwNjk2NDM5MTBmZDZmNzdiMzE3
Yjg1MzgwHhcNMjYwNjMwMTMwMTIwWhcNMjYwNzAxMTMwMTIwWjAzMTEwLwYDVQQD
EyhmODRmZDE5YTg2YTNlZDY3YmYwMWIxODM1M2ViZTMyMjY0NzFiOTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnTrnUBiHM6BVR3eFhfxpsZ61a90G
YQVI1SAA3ZdTVpFzIasMJRciCy4LK+1MYy2QIt9tmfBTbidkfEixsj1jSJumzGdL
273ppdcBqaIW2e+gx6eg8D/BEipAPE0zjW+3B4w8c0V1PfYaYnmDoxj8gvxsxe8q
JqjEylPl4x/T8WX0wNYasqIhYXlUE3RbB7GQlUQ8gRWJF8rtftl/ZJbmNR7FU0kq
ksPjXeFO3WOD/h3OgEa2sDp3N9mGKBtCp03I5yKhdtIde3iygAqapCK+R8c6mtaM
hYmlnR9YtbbwiGc/5PYL1qUNl88ghXLxKCE0pYn10Sk614majWXB7EEhbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPhP0ZqGo+1nvwGxg1Pr4yJkcblCMB8GA1UdIwQY
MBaAFN6+UX50deF8BpZDkQ/W93sxe4U4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAt
ODlmNWM0ZjMyOTcwLzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAtODlmNWM0ZjMyOTcw
LzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwemvM10d
cKQZjhRUNq7H4UTT0RWpNSnFX18428RDUWOoFsso4Kf/I0OGU63dm7EFmVr32nQ/
ER2uS4NSy/YTxMue7xLD8yxUM9fFelIx/UjcqryQoccmrmao3TlGbHWS5fbKorZG
cFcA9gBwAg1L3MFETHfF6GQmANkUAAnCGxAIGZ8JxrWyBGEFv8r6L6UvRf32Bwa3
vicUKEFuqFTFZMJucLFLkenvV++DFl+aQ1XSV4xQGAv1gUmyFPgoOZHgGt3him3j
UZHwKr07OW+EWdaSiIrG0H+whXGOxZ71Jl8N8OX01TCS9Dk1UG0p4rXbpMM+F50s
D2aNnthSSkt29A==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:20:04 2026 by rpki-client