Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
File: 3tRskpaCjJwCVTCqaEFgmt8FaaA.mft (raw, json)
Hash identifier: 7P9o3CdqYoA7l8okq45oAfOcVRcSX+qJi5z34YazinI=
Subject key identifier: E1:0B:0B:B6:BC:A3:E6:F3:59:7F:0A:8B:4B:0D:47:0C:50:DF:2F:BF
Authority key identifier: DE:D4:6C:92:96:82:8C:9C:02:55:30:AA:68:41:60:9A:DF:05:69:A0
Certificate issuer: /CN=ded46c9296828c9c025530aa6841609adf0569a0
Certificate serial: 019E30A914BCF3EC9480C87111C673BCD8F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
Manifest number: 0627
Signing time: Sat 16 May 2026 12:00:47 +0000
Manifest this update: Sat 16 May 2026 12:00:47 +0000
Manifest next update: Sun 17 May 2026 12:00:47 +0000
Files and hashes: 1: 3tRskpaCjJwCVTCqaEFgmt8FaaA.crl (hash: QhGs30Btp+2MVhAdt3aBz06PKTLL8TZM6hvGjRlGP4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:14:bc:f3:ec:94:80:c8:71:11:c6:73:bc:d8:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ded46c9296828c9c025530aa6841609adf0569a0
Validity
Not Before: May 16 12:00:47 2026 GMT
Not After : May 17 12:00:47 2026 GMT
Subject: CN=e10b0bb6bca3e6f3597f0a8b4b0d470c50df2fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e6:72:16:d2:7b:dc:fe:06:d0:39:68:df:7c:
db:81:52:4d:46:e1:30:cc:df:54:8b:aa:cd:24:1f:
2c:64:3d:2d:f1:72:f6:ed:8c:89:bf:56:cf:3d:cc:
78:9b:2e:9e:b8:e0:2d:a1:b2:04:6c:65:c2:f3:7c:
41:89:39:21:cd:65:fe:fd:2a:65:07:24:22:1d:43:
1c:b5:da:9d:d5:1e:ec:51:1f:ea:d9:ce:a7:c3:b7:
96:0f:c4:70:dc:f0:4d:2e:77:21:db:14:03:21:83:
47:45:39:ea:d3:e4:e9:5b:c1:c4:62:e3:48:c0:b6:
fc:5c:24:3c:f0:e6:b9:18:dc:f4:7a:04:78:e0:72:
84:50:93:3c:a5:0e:11:d9:49:aa:0b:b2:c7:db:40:
1c:5d:bc:c2:12:e5:66:b4:29:6d:0f:a2:4b:1a:36:
54:ad:12:62:bd:5d:8f:e5:20:a6:c5:d5:2f:5f:c0:
c8:4f:e0:ac:cd:8c:2a:20:e7:5d:6a:b6:39:d7:87:
4d:8b:0d:5b:73:fc:2c:7d:2e:11:ba:9a:9b:ac:9a:
69:c5:1d:e0:98:58:e2:ec:85:90:6b:67:b0:c1:53:
47:bf:23:d2:d4:cc:df:64:7b:bd:93:75:9a:d1:04:
24:88:2c:0d:62:6b:de:f5:12:b6:fd:10:73:c8:73:
f1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0B:0B:B6:BC:A3:E6:F3:59:7F:0A:8B:4B:0D:47:0C:50:DF:2F:BF
X509v3 Authority Key Identifier:
keyid:DE:D4:6C:92:96:82:8C:9C:02:55:30:AA:68:41:60:9A:DF:05:69:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:b3:3d:83:52:0e:35:e6:a1:8c:3d:b1:4b:b1:da:7d:a6:94:
db:dc:fc:0e:e5:56:8f:7a:49:9e:e0:24:b6:df:4f:5b:48:71:
00:53:5b:0b:c9:e6:34:6a:7e:c5:dd:ba:f6:62:7a:25:17:a9:
a6:59:80:7b:79:02:05:40:45:5f:30:b8:fd:c1:fa:7d:d9:3b:
82:09:98:72:2b:d6:1d:72:1b:9e:d2:13:12:9b:3c:9b:09:80:
08:c1:8c:b8:f1:a8:72:3c:f6:67:4b:f8:f3:a3:7b:4f:2b:5f:
14:96:33:bb:89:ae:c4:61:3b:cd:5d:6f:e4:72:45:d5:b6:06:
b7:65:bf:b0:46:08:9d:75:f7:aa:0e:e8:72:e9:8b:ee:e2:16:
10:f0:bb:8c:45:0b:0c:d5:f7:77:5a:7c:5f:77:b5:df:c8:64:
20:29:ee:2a:d7:80:f4:52:37:0c:38:64:29:ed:3a:8d:dc:80:
5d:aa:ca:a3:cd:d8:c8:a9:07:11:aa:05:ec:50:fa:55:4f:b7:
b1:9e:48:69:56:5e:78:63:d1:48:3f:4a:17:de:e0:c9:89:97:
1e:b0:2a:07:45:8b:56:5d:4b:86:8d:b6:72:12:59:3d:0c:dc:
64:1c:92:4d:47:a8:f8:89:6c:6b:0f:a0:e1:c8:6c:aa:7b:97:
5e:e7:31:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wqRS88+yUgMhxEcZzvNj3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlZDQ2YzkyOTY4MjhjOWMwMjU1MzBhYTY4NDE2MDlhZGYw
NTY5YTAwHhcNMjYwNTE2MTIwMDQ3WhcNMjYwNTE3MTIwMDQ3WjAzMTEwLwYDVQQD
EyhlMTBiMGJiNmJjYTNlNmYzNTk3ZjBhOGI0YjBkNDcwYzUwZGYyZmJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAquZyFtJ73P4G0Dlo33zbgVJNRuEw
zN9Ui6rNJB8sZD0t8XL27YyJv1bPPcx4my6euOAtobIEbGXC83xBiTkhzWX+/Spl
ByQiHUMctdqd1R7sUR/q2c6nw7eWD8Rw3PBNLnch2xQDIYNHRTnq0+TpW8HEYuNI
wLb8XCQ88Oa5GNz0egR44HKEUJM8pQ4R2UmqC7LH20AcXbzCEuVmtCltD6JLGjZU
rRJivV2P5SCmxdUvX8DIT+CszYwqIOddarY514dNiw1bc/wsfS4RupqbrJppxR3g
mFji7IWQa2ewwVNHvyPS1MzfZHu9k3Wa0QQkiCwNYmve9RK2/RBzyHPxDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOELC7a8o+bzWX8Ki0sNRwxQ3y+/MB8GA1UdIwQY
MBaAFN7UbJKWgoycAlUwqmhBYJrfBWmgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC85MzZmOTMtMDkyMi00ZjVkLThlM2Et
YTAwMDdiZDVhY2U3LzEvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC85MzZmOTMtMDkyMi00ZjVkLThlM2EtYTAwMDdiZDVhY2U3
LzEvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd7M9g1IO
NeahjD2xS7HafaaU29z8DuVWj3pJnuAktt9PW0hxAFNbC8nmNGp+xd269mJ6JRep
plmAe3kCBUBFXzC4/cH6fdk7ggmYcivWHXIbntITEps8mwmACMGMuPGocjz2Z0v4
86N7TytfFJYzu4muxGE7zV1v5HJF1bYGt2W/sEYInXX3qg7ocumL7uIWEPC7jEUL
DNX3d1p8X3e138hkICnuKteA9FI3DDhkKe06jdyAXarKo83YyKkHEaoF7FD6VU+3
sZ5IaVZeeGPRSD9KF97gyYmXHrAqB0WLVl1Lho22chJZPQzcZBySTUeo+Ilsaw+g
4chsqnuXXucxbw==
-----END CERTIFICATE-----
Generated at Sat May 16 15:40:11 2026 by rpki-client