Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: SXtd+708sfeHoTJynPh1iyCVZtiguCZdIXiUu+n6uhw=
Subject key identifier: B2:EE:C2:42:C4:62:84:58:19:2F:D3:47:6B:74:6D:73:6E:0E:FE:2F
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 019E3072B2F16E1A605C9C2E72C2E88CDE2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0D81
Signing time: Sat 16 May 2026 11:01:23 +0000
Manifest this update: Sat 16 May 2026 11:01:23 +0000
Manifest next update: Sun 17 May 2026 11:01:23 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: bXyMCoGjTjrSMqsyDEoOo8hy6O1fPE0dSeU/myGHlNg=)
2: _ioUT6ot6spKYeitBH6WHig08aI.roa (hash: lPf90VagjG9YZhFPp1sns8p7TmON2JIuqMSkRErr21k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:b2:f1:6e:1a:60:5c:9c:2e:72:c2:e8:8c:de:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: May 16 11:01:23 2026 GMT
Not After : May 17 11:01:23 2026 GMT
Subject: CN=b2eec242c4628458192fd3476b746d736e0efe2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2e:6f:9c:5b:0d:99:38:df:92:67:8b:ee:06:
5f:d3:8d:1f:c6:2b:6a:48:0e:ff:d3:a5:29:89:b8:
ee:51:c2:de:60:3a:ba:c1:87:53:af:d6:af:bd:9a:
61:81:e1:a6:b5:21:77:d0:e4:28:33:8d:7a:13:45:
21:1e:5a:49:d4:34:d4:e7:fa:ce:91:ce:0f:eb:ba:
13:eb:d1:d9:c0:e7:5e:92:d2:67:f6:5f:e0:e8:ff:
31:a1:7f:40:ec:a2:8a:8b:94:1b:3f:fb:1b:4c:cc:
4d:bc:98:1a:65:ad:36:10:a5:a3:bb:b9:da:d1:34:
5d:8a:0c:70:07:c8:c8:cf:31:b4:d0:52:89:f0:b1:
1b:c2:83:91:55:db:40:45:58:5c:0b:7a:1d:bd:cf:
f2:50:bf:e7:44:78:7c:2b:f4:16:93:55:1d:90:a0:
e0:ec:73:51:ce:75:b8:0f:26:c9:86:72:ef:37:15:
1f:a1:50:8d:58:6e:da:f5:c3:2a:36:2f:ca:83:84:
f7:0c:76:60:2f:7c:3b:59:ee:1f:56:37:16:ff:32:
30:9a:aa:c5:96:12:57:44:f8:91:7a:aa:3d:b7:04:
81:63:ce:e9:9c:f8:81:a2:9b:ac:06:79:87:7f:d0:
b3:ac:04:5d:17:c3:f8:47:8d:04:b0:b0:51:d8:3d:
eb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:EE:C2:42:C4:62:84:58:19:2F:D3:47:6B:74:6D:73:6E:0E:FE:2F
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:38:e8:f1:8e:b4:19:ac:ee:5b:de:a8:17:2f:f9:86:65:46:
36:4a:95:0c:57:e5:a2:fe:2a:7d:b2:4e:32:c1:9a:5d:2a:63:
a3:bf:29:e0:39:11:5e:72:bd:83:3c:87:07:6f:d5:bc:93:84:
89:bd:ac:ae:b7:b8:14:4c:99:e6:35:75:99:16:4f:b5:00:69:
b0:0d:c3:91:7c:ea:98:4d:56:2b:d3:47:e6:a0:94:3c:93:4c:
a6:46:34:9c:1d:bc:f9:0d:5d:a1:8b:a2:ad:ea:42:8a:65:95:
9f:ca:ce:5f:9a:24:a1:72:72:04:0d:9d:3b:e0:1e:c1:66:e5:
13:e4:74:39:f3:0d:a0:c4:4e:46:87:ba:fd:20:b6:ea:7f:c4:
f1:41:db:83:00:01:91:66:b9:f5:99:a3:17:34:61:54:86:87:
36:ac:9f:36:04:04:8f:58:0d:f3:9b:f8:78:fe:54:5a:6c:5e:
97:1d:9d:b7:e4:35:f4:39:18:9f:ba:cf:40:21:f5:2e:80:24:
bf:ea:7f:21:39:37:ef:fc:d3:8b:e3:3b:79:f8:24:9a:b0:6b:
b3:cf:0c:40:01:1e:29:5c:78:f6:0b:4f:13:95:24:17:51:7b:
5d:83:0f:b9:4f:c3:1a:e4:47:a3:25:3c:39:10:a8:ed:2d:1e:
e8:f7:7a:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wcrLxbhpgXJwucsLojN4uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMjkyMTk4OWQ3ZDkwYzY0ZWJiMzU2NTg4MzFmZTZhOGY0
OWM5MzgwHhcNMjYwNTE2MTEwMTIzWhcNMjYwNTE3MTEwMTIzWjAzMTEwLwYDVQQD
EyhiMmVlYzI0MmM0NjI4NDU4MTkyZmQzNDc2Yjc0NmQ3MzZlMGVmZTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzy5vnFsNmTjfkmeL7gZf040fxitq
SA7/06UpibjuUcLeYDq6wYdTr9avvZphgeGmtSF30OQoM416E0UhHlpJ1DTU5/rO
kc4P67oT69HZwOdektJn9l/g6P8xoX9A7KKKi5QbP/sbTMxNvJgaZa02EKWju7na
0TRdigxwB8jIzzG00FKJ8LEbwoORVdtARVhcC3odvc/yUL/nRHh8K/QWk1UdkKDg
7HNRznW4DybJhnLvNxUfoVCNWG7a9cMqNi/Kg4T3DHZgL3w7We4fVjcW/zIwmqrF
lhJXRPiReqo9twSBY87pnPiBopusBnmHf9CzrARdF8P4R40EsLBR2D3rFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLLuwkLEYoRYGS/TR2t0bXNuDv4vMB8GA1UdIwQY
MBaAFN4pIZidfZDGTrs1ZYgx/mqPSck4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTct
MGI1ZWNiNDc0ZjE1LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTctMGI1ZWNiNDc0ZjE1
LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKjjo8Y60
GazuW96oFy/5hmVGNkqVDFflov4qfbJOMsGaXSpjo78p4DkRXnK9gzyHB2/VvJOE
ib2srre4FEyZ5jV1mRZPtQBpsA3DkXzqmE1WK9NH5qCUPJNMpkY0nB28+Q1doYui
repCimWVn8rOX5okoXJyBA2dO+AewWblE+R0OfMNoMRORoe6/SC26n/E8UHbgwAB
kWa59ZmjFzRhVIaHNqyfNgQEj1gN85v4eP5UWmxelx2dt+Q19DkYn7rPQCH1LoAk
v+p/ITk37/zTi+M7efgkmrBrs88MQAEeKVx49gtPE5UkF1F7XYMPuU/DGuRHoyU8
ORCo7S0e6Pd6zg==
-----END CERTIFICATE-----
Generated at Sat May 16 17:13:59 2026 by rpki-client