Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: DLPXlhYLYtqIJDzkDAEUtRpdoQBn2/6y5QcYo4UFjyM=
Subject key identifier: 58:6D:EF:DA:81:64:08:BF:A1:BB:7A:8F:82:29:6F:B3:5E:56:27:CA
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 019E30E07DB0C3BA7350239B1F65E7569875
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 0BA4
Signing time: Sat 16 May 2026 13:01:19 +0000
Manifest this update: Sat 16 May 2026 13:01:19 +0000
Manifest next update: Sun 17 May 2026 13:01:19 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: aD+GplfzBs47fUrd5yAT6FM+28EFpM5m2THCc6URH/E=)
2: y8l-GZaij3nY_lsT-zDKBTkrGss.roa (hash: edJk2bhQjppncI7NDvSvP36a6hLKHOIsn+JqFnH50EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:7d:b0:c3:ba:73:50:23:9b:1f:65:e7:56:98:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: May 16 13:01:19 2026 GMT
Not After : May 17 13:01:19 2026 GMT
Subject: CN=586defda816408bfa1bb7a8f82296fb35e5627ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f0:37:23:a5:ba:98:92:70:4b:d5:4d:03:4a:
f7:90:f0:ec:06:9f:7e:4e:e8:ea:18:b6:92:23:c9:
8a:48:94:fd:d2:8d:28:e1:0a:bd:08:61:d4:7a:14:
b6:be:0c:b9:52:cc:5d:42:bc:7f:55:b3:77:33:5c:
0e:3b:3e:97:58:48:a4:8e:ed:4b:d8:20:9d:d0:37:
bc:c4:2c:c3:53:7c:cc:b6:dc:de:30:e9:b3:d9:d4:
b5:ad:8a:36:89:77:61:e5:58:08:50:0f:1b:0f:42:
5d:64:32:9c:65:e9:7e:83:d6:14:c3:6d:6c:e3:80:
1e:74:6f:62:4e:dc:45:c2:1d:7e:0c:c3:1e:f3:7a:
71:3d:94:61:b0:e5:0d:ef:84:1a:3a:1d:3e:07:c0:
e8:1f:27:5f:e8:b0:25:44:86:6c:4f:6b:6b:62:57:
c5:76:e4:ee:e9:51:6f:cc:27:72:24:fb:3d:1f:01:
0b:4d:24:be:7e:84:af:3a:9e:cf:eb:2b:1d:0b:82:
35:f8:2f:cf:7e:e9:fb:20:7f:81:7a:72:e6:bd:3d:
da:2f:c0:6f:8b:98:a4:dc:40:8c:c9:db:c4:10:fa:
fc:a2:f3:2c:c0:9a:22:4d:6f:32:23:ae:95:15:c7:
8e:5f:18:47:46:1a:03:98:9f:43:64:2f:c5:5f:77:
34:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:6D:EF:DA:81:64:08:BF:A1:BB:7A:8F:82:29:6F:B3:5E:56:27:CA
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:aa:6a:9c:0f:8c:87:e9:73:9d:43:7a:57:d7:be:be:48:76:
2a:f1:df:30:a6:8e:02:54:26:b5:cd:03:51:d5:42:ba:49:e9:
32:ac:7b:18:b6:d2:1d:61:df:fe:48:6b:73:5b:e8:e1:a1:b6:
03:69:95:c0:32:dc:c7:d7:ea:ef:30:be:84:6d:47:10:04:6d:
f8:ca:e0:42:54:7b:52:4a:d5:36:ee:a2:37:04:f6:75:62:f8:
db:73:58:39:7e:7b:e3:8b:77:6a:32:5e:42:aa:9d:21:53:89:
0e:17:4a:93:cd:47:2e:62:3f:59:53:5e:09:04:c1:8d:1e:b5:
43:0b:3d:6e:c3:14:00:6f:64:d8:02:08:61:07:88:38:32:06:
75:3a:3a:8a:28:e6:75:f8:85:b0:c6:2f:a1:09:cb:e2:6e:db:
84:8c:f7:62:d0:fe:13:a2:38:9d:3e:09:3c:93:0f:a5:af:07:
8f:fa:d9:40:9c:66:f1:3a:2d:04:a0:ae:cf:c9:e4:ac:f5:66:
fe:a4:13:67:a7:61:8b:13:1c:b6:ab:8e:de:df:c8:26:52:80:
cd:39:f4:e0:f6:20:95:b1:d5:fb:c6:97:26:93:45:0f:7e:fe:
e3:96:cc:aa:1c:30:89:d1:02:1b:a0:b6:98:e3:0a:4a:2f:56:
79:ba:ae:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4H2ww7pzUCObH2XnVph1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlYmU1MTdlNzQ3NWUxN2MwNjk2NDM5MTBmZDZmNzdiMzE3
Yjg1MzgwHhcNMjYwNTE2MTMwMTE5WhcNMjYwNTE3MTMwMTE5WjAzMTEwLwYDVQQD
Eyg1ODZkZWZkYTgxNjQwOGJmYTFiYjdhOGY4MjI5NmZiMzVlNTYyN2NhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfA3I6W6mJJwS9VNA0r3kPDsBp9+
TujqGLaSI8mKSJT90o0o4Qq9CGHUehS2vgy5UsxdQrx/VbN3M1wOOz6XWEikju1L
2CCd0De8xCzDU3zMttzeMOmz2dS1rYo2iXdh5VgIUA8bD0JdZDKcZel+g9YUw21s
44AedG9iTtxFwh1+DMMe83pxPZRhsOUN74QaOh0+B8DoHydf6LAlRIZsT2trYlfF
duTu6VFvzCdyJPs9HwELTSS+foSvOp7P6ysdC4I1+C/Pfun7IH+BenLmvT3aL8Bv
i5ik3ECMydvEEPr8ovMswJoiTW8yI66VFceOXxhHRhoDmJ9DZC/FX3c0gwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFht79qBZAi/obt6j4Ipb7NeVifKMB8GA1UdIwQY
MBaAFN6+UX50deF8BpZDkQ/W93sxe4U4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAt
ODlmNWM0ZjMyOTcwLzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAtODlmNWM0ZjMyOTcw
LzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaapqnA+M
h+lznUN6V9e+vkh2KvHfMKaOAlQmtc0DUdVCuknpMqx7GLbSHWHf/khrc1vo4aG2
A2mVwDLcx9fq7zC+hG1HEARt+MrgQlR7UkrVNu6iNwT2dWL423NYOX5744t3ajJe
QqqdIVOJDhdKk81HLmI/WVNeCQTBjR61Qws9bsMUAG9k2AIIYQeIODIGdTo6iijm
dfiFsMYvoQnL4m7bhIz3YtD+E6I4nT4JPJMPpa8Hj/rZQJxm8TotBKCuz8nkrPVm
/qQTZ6dhixMctquO3t/IJlKAzTn04PYglbHV+8aXJpNFD37+45bMqhwwidECG6C2
mOMKSi9Webqucw==
-----END CERTIFICATE-----
Generated at Sat May 16 17:13:51 2026 by rpki-client