Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
File: 3xRM6OjkQV5chqCygEmaOFwU7_I.mft (raw, json)
Hash identifier: sDd3ZaRujrCNBHN/jB9nsWcJQv6Y3mGqy4xSIIH8VpQ=
Subject key identifier: 85:F0:E3:4C:49:E8:46:E5:88:1E:D4:7C:C5:C2:42:C8:F4:F9:DD:7B
Authority key identifier: DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
Certificate issuer: /CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Certificate serial: 019F18D662DD0F5B66EF76C924B8E316C341
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
Manifest number: 1000
Signing time: Tue 30 Jun 2026 14:02:10 +0000
Manifest this update: Tue 30 Jun 2026 14:02:10 +0000
Manifest next update: Wed 01 Jul 2026 14:02:10 +0000
Files and hashes: 1: 3xRM6OjkQV5chqCygEmaOFwU7_I.crl (hash: Wn46M/kkvP3diLk3Gj+3hk/21AovMXMeKt4CDh96RJQ=)
2: IFcPSJLrXOIb360qpvfjslM8AeU.asa (hash: Uoj3vnQ4WI4zOKZ/VBdpJT4g8J+jbJ0SehrMNsQWEOg=)
3: mN6LPum92-oppYTfVnse9pFdGGY.roa (hash: Az1RSnzhomoH0PRWVFUSJEmI0WtwP1548LAxILCV7N4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:62:dd:0f:5b:66:ef:76:c9:24:b8:e3:16:c3:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Validity
Not Before: Jun 30 14:02:10 2026 GMT
Not After : Jul 1 14:02:10 2026 GMT
Subject: CN=85f0e34c49e846e5881ed47cc5c242c8f4f9dd7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:47:33:7d:d6:57:f2:b8:76:d2:27:a0:3c:6b:
bf:95:bd:d8:39:c0:65:1d:96:c0:4e:7d:46:c4:77:
17:ac:c7:5e:dc:13:b0:6f:37:c4:a6:86:9f:5d:e8:
ef:28:6e:42:81:81:c1:ae:56:0a:e1:ad:02:4e:96:
1b:18:3c:28:a9:28:29:85:31:b5:42:d2:50:61:d1:
1d:7c:c8:c8:d2:de:cf:73:9e:fc:af:94:29:60:e4:
73:12:7d:2f:7a:cc:8d:f3:f5:48:a1:7e:ae:f1:ac:
74:dc:62:09:b2:fd:9d:19:88:49:52:76:9b:af:00:
23:0f:a0:89:f6:44:fe:73:b0:21:4b:c6:56:ef:59:
78:6c:84:02:f6:f3:35:f4:fb:b6:f6:ac:43:12:80:
cf:75:3f:9c:b6:61:7b:1a:3f:24:6d:52:fb:1b:e5:
65:dc:1a:1a:a7:89:b8:08:2d:25:df:67:05:1f:ab:
f6:e3:d8:6f:be:cd:25:b6:1c:25:48:ae:9e:4c:31:
31:00:64:c0:91:fa:f8:fe:58:05:31:14:37:f0:8b:
17:47:86:3f:88:09:4c:b5:5a:79:13:be:8e:40:58:
f4:06:b7:66:50:c2:39:74:39:d9:77:31:f4:02:65:
1f:1d:e8:c2:29:a2:2f:ba:e9:b5:7f:39:05:d9:9e:
e0:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F0:E3:4C:49:E8:46:E5:88:1E:D4:7C:C5:C2:42:C8:F4:F9:DD:7B
X509v3 Authority Key Identifier:
keyid:DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:ec:e6:6c:8d:8f:cf:3c:71:90:ab:5a:c6:01:13:43:ff:03:
a2:19:78:66:b9:19:9c:ec:06:74:58:d9:29:89:47:63:30:e9:
80:ae:3c:7a:06:99:b3:c6:b7:f9:9a:98:e4:46:08:f5:70:10:
29:db:cd:72:5e:3b:7a:67:af:39:84:ed:c6:11:b5:32:9e:59:
50:d4:66:56:1b:46:ba:81:b4:63:d8:99:cd:c6:ed:97:ee:ea:
a3:25:c5:6f:88:67:6e:b1:fa:fb:48:70:86:66:1a:1f:69:eb:
fd:15:fd:35:02:d1:52:da:c5:16:85:9e:53:ff:17:d2:09:4e:
fa:fb:56:76:97:4f:57:a4:55:c1:02:d2:94:9d:16:f4:23:11:
6c:11:13:56:65:1a:51:b2:a6:99:d0:0a:a2:0f:4a:d0:7e:6e:
8d:7d:cd:d1:8a:cc:ba:e4:78:75:38:f4:72:0b:f1:8f:1a:23:
8a:f9:bd:25:ec:93:03:d0:62:88:b2:f4:9b:fd:26:62:f7:44:
03:ec:3a:02:ea:21:54:b5:4f:7d:de:ac:7b:50:d4:3c:ae:bb:
79:1c:a6:a7:4e:ff:53:54:91:b9:39:a9:04:cb:d7:14:0a:25:
23:02:bc:71:53:0c:8b:9e:68:54:bd:5c:15:ab:77:a8:20:fb:
81:74:b0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:20 2026 by rpki-client