Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
File: 3xRM6OjkQV5chqCygEmaOFwU7_I.mft (raw, json)
Hash identifier: CkfdaD7EpdFDK3z/Gcm1bQK1uuNqnqLWl+zsOKmItWc=
Subject key identifier: D6:7E:5F:43:16:5B:96:70:61:86:CA:63:EB:FB:84:55:99:2E:B5:C6
Authority key identifier: DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
Certificate issuer: /CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Certificate serial: 019E311763B72824F03FFBCCB3F85E8252C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
Manifest number: 0F88
Signing time: Sat 16 May 2026 14:01:16 +0000
Manifest this update: Sat 16 May 2026 14:01:16 +0000
Manifest next update: Sun 17 May 2026 14:01:16 +0000
Files and hashes: 1: 3xRM6OjkQV5chqCygEmaOFwU7_I.crl (hash: uqMr5vc3vcfWlgPJCRjokxnIpU7kvMxlYJKwrCuqlBo=)
2: IFcPSJLrXOIb360qpvfjslM8AeU.asa (hash: Uoj3vnQ4WI4zOKZ/VBdpJT4g8J+jbJ0SehrMNsQWEOg=)
3: mN6LPum92-oppYTfVnse9pFdGGY.roa (hash: Az1RSnzhomoH0PRWVFUSJEmI0WtwP1548LAxILCV7N4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:63:b7:28:24:f0:3f:fb:cc:b3:f8:5e:82:52:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Validity
Not Before: May 16 14:01:16 2026 GMT
Not After : May 17 14:01:16 2026 GMT
Subject: CN=d67e5f43165b96706186ca63ebfb8455992eb5c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a8:20:b5:f1:bd:dd:a1:f0:c7:00:2c:0e:70:
f5:ee:ed:1c:41:6c:21:00:ce:f7:82:2c:13:db:d6:
e7:5a:c0:09:be:f6:78:96:75:a2:15:c4:04:f3:fe:
71:66:fa:af:b9:e9:9e:78:f1:51:33:e8:06:4c:cb:
92:b1:b0:4c:07:3b:5b:38:39:f1:8d:1d:90:34:b4:
8f:36:b3:e4:f6:67:a5:36:47:1d:06:af:af:dc:b7:
54:0c:48:10:8c:30:0c:71:5d:13:0f:37:d7:36:24:
e1:d4:b4:2a:d4:01:0b:8e:2c:27:33:29:74:16:36:
4a:98:4f:31:e4:50:43:32:6a:f0:08:85:83:3a:a9:
59:f7:49:31:3c:65:81:9b:5d:51:8e:7e:f7:53:52:
e2:c2:1a:40:f0:5f:4e:81:80:ed:9c:65:ab:35:94:
4a:14:6a:53:37:a4:c0:31:9d:27:84:7f:bf:67:b1:
a4:1e:02:e4:08:cb:3a:e3:87:6b:df:18:1d:09:15:
89:c6:b2:5f:a5:26:12:ed:5a:f0:35:f7:4e:08:fc:
7b:6a:02:1a:1c:d5:ed:26:d3:f4:f0:54:b4:dd:70:
2b:0a:fa:3b:c0:a5:03:36:91:0a:b2:b4:8c:28:c8:
5f:98:d0:f1:c6:5d:b7:b2:ec:ee:09:d5:0f:7c:05:
e5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7E:5F:43:16:5B:96:70:61:86:CA:63:EB:FB:84:55:99:2E:B5:C6
X509v3 Authority Key Identifier:
keyid:DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:6c:16:ff:47:5a:99:ba:12:c0:6e:66:27:85:ce:64:93:7a:
73:5f:39:e0:10:80:b2:e9:8e:e1:8f:74:82:93:8b:13:60:fb:
73:63:1b:ca:eb:d3:45:54:35:96:32:3b:b6:64:47:db:5e:e7:
46:08:d8:50:85:92:a6:c8:99:a6:a0:03:17:4d:84:b4:d6:43:
d1:c3:26:57:aa:52:7e:29:ca:c0:d1:0e:b6:6c:a9:53:f0:4c:
fa:24:65:ad:1d:88:80:0b:0c:fa:1e:f4:e2:f3:7c:21:58:53:
32:a0:4f:7a:62:71:1c:51:82:c6:b5:f9:ba:b8:1b:4a:2c:09:
d7:4e:38:06:5b:c6:26:3a:f1:ca:12:9c:5e:2f:a8:ee:ac:cd:
d4:1d:1f:84:dd:39:31:fd:f6:56:90:f1:6f:7b:93:02:91:65:
21:6a:b2:62:b5:ca:43:00:c7:1a:c7:15:71:19:be:67:a8:55:
4e:35:82:ec:6d:51:af:84:bb:a5:22:0c:33:c6:f7:24:ea:bc:
f4:cc:b4:1a:ca:b7:6a:69:4b:d5:78:09:e8:0b:9e:93:67:b3:
ed:f9:33:31:aa:69:56:9d:81:13:a0:3d:e7:cf:76:38:15:1f:
41:bc:1b:93:84:d4:21:8a:df:6f:93:2e:c0:20:da:c9:c2:09:
d9:53:8b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:32 2026 by rpki-client