Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: E9H5p7BrT6GZGKGVJyrh/KZWM1BbfqAqxqnpIjSTEGk=
Subject key identifier: 81:E1:A1:07:30:DC:54:83:27:33:C3:D3:09:0C:D1:82:A9:63:31:28
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 019D3940A6387C9E98859769D9AB8305FC24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0D01
Signing time: Sun 29 Mar 2026 11:00:31 +0000
Manifest this update: Sun 29 Mar 2026 11:00:31 +0000
Manifest next update: Mon 30 Mar 2026 11:00:31 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: Ps6zn7TDzWj0AaC9fOAfpjoHImYjsSacd1BpO9CJXEo=)
2: _ioUT6ot6spKYeitBH6WHig08aI.roa (hash: lPf90VagjG9YZhFPp1sns8p7TmON2JIuqMSkRErr21k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:a6:38:7c:9e:98:85:97:69:d9:ab:83:05:fc:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Mar 29 11:00:31 2026 GMT
Not After : Mar 30 11:00:31 2026 GMT
Subject: CN=81e1a10730dc54832733c3d3090cd182a9633128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2f:1c:7f:f4:5a:82:4b:46:86:07:bf:a1:26:
dd:df:60:84:87:f2:b5:68:a3:2a:ff:da:9f:dc:e2:
b7:bb:93:c4:12:4f:06:cf:5d:e7:b0:a0:5e:a2:a6:
1e:29:12:8d:72:a2:19:65:08:3f:17:db:ee:21:9a:
08:29:d5:01:f4:62:b3:68:e1:4d:d8:53:ad:a0:a4:
82:d0:08:96:c3:2b:b5:fb:47:e1:09:01:cf:5d:23:
c2:93:28:f1:63:fc:31:e0:9d:e4:f0:75:44:67:b9:
c6:57:99:5b:64:01:fa:03:5c:4d:b8:89:f3:60:4d:
bf:18:2c:76:1b:5a:e1:6c:c7:3d:50:62:42:50:56:
39:3f:8e:9e:a7:79:b8:3b:87:51:ab:6f:7d:50:67:
4c:26:96:f2:11:8d:98:44:61:3c:7b:45:85:48:3a:
7a:59:9c:d6:6c:d3:17:b0:08:cd:94:6a:1e:c0:ba:
74:06:dc:3c:f9:07:78:d7:b5:41:33:2c:1e:70:40:
14:be:6b:62:fb:b5:86:97:25:8b:91:8e:a8:a8:c1:
42:b4:47:4a:61:3e:df:13:e3:4d:44:c4:7a:ef:fa:
ce:66:44:37:03:5e:08:fc:5c:ce:46:6b:a3:93:8c:
f7:1a:78:d8:6a:b9:25:e1:c9:1e:7d:e9:f0:42:41:
18:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E1:A1:07:30:DC:54:83:27:33:C3:D3:09:0C:D1:82:A9:63:31:28
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:d3:6a:f4:7a:f9:e7:0f:7b:97:86:24:8c:e3:c5:4a:7c:d1:
90:45:69:52:11:ec:2c:37:91:a8:42:30:d6:dd:1e:f4:cd:6b:
f0:03:04:07:70:92:91:d0:e9:8e:b4:a6:98:27:17:67:b2:e7:
1f:0b:63:9a:77:02:80:45:05:c2:3e:c0:62:7c:a6:66:95:b6:
57:f6:d0:91:f3:01:b5:26:63:88:30:60:d7:1e:6b:62:5e:0e:
70:56:db:63:51:61:bb:d9:a5:74:7c:99:83:f5:2d:3a:55:53:
d9:f6:ec:99:d8:3f:3f:9f:29:37:88:83:08:4d:50:80:73:bf:
f5:e6:a0:fe:43:88:59:4f:be:e5:68:b4:b7:95:27:d7:05:2c:
cb:8c:25:6f:a6:0f:6b:d6:0e:d6:7f:dd:1e:1c:b8:60:63:e5:
e7:13:c6:9c:41:4d:9b:2c:b5:74:92:6e:4e:e7:33:f7:f8:38:
0e:e1:ef:c2:78:40:34:2e:ed:e2:c5:2b:a4:4c:7d:16:d3:10:
ef:81:43:01:70:cf:3d:60:bd:35:c8:8e:d8:8f:d3:f3:2b:de:
b1:70:ff:ef:b4:40:7e:f1:65:d7:d2:fb:9a:1e:a5:cd:0d:78:
e5:14:77:2c:23:d8:eb:de:76:0e:08:b5:30:e1:4a:aa:55:36:
d0:10:1c:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QKY4fJ6YhZdp2auDBfwkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMjkyMTk4OWQ3ZDkwYzY0ZWJiMzU2NTg4MzFmZTZhOGY0
OWM5MzgwHhcNMjYwMzI5MTEwMDMxWhcNMjYwMzMwMTEwMDMxWjAzMTEwLwYDVQQD
Eyg4MWUxYTEwNzMwZGM1NDgzMjczM2MzZDMwOTBjZDE4MmE5NjMzMTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuC8cf/RagktGhge/oSbd32CEh/K1
aKMq/9qf3OK3u5PEEk8Gz13nsKBeoqYeKRKNcqIZZQg/F9vuIZoIKdUB9GKzaOFN
2FOtoKSC0AiWwyu1+0fhCQHPXSPCkyjxY/wx4J3k8HVEZ7nGV5lbZAH6A1xNuInz
YE2/GCx2G1rhbMc9UGJCUFY5P46ep3m4O4dRq299UGdMJpbyEY2YRGE8e0WFSDp6
WZzWbNMXsAjNlGoewLp0Btw8+Qd417VBMywecEAUvmti+7WGlyWLkY6oqMFCtEdK
YT7fE+NNRMR67/rOZkQ3A14I/FzORmujk4z3GnjYarkl4ckefenwQkEYjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIHhoQcw3FSDJzPD0wkM0YKpYzEoMB8GA1UdIwQY
MBaAFN4pIZidfZDGTrs1ZYgx/mqPSck4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTct
MGI1ZWNiNDc0ZjE1LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTctMGI1ZWNiNDc0ZjE1
LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAONNq9Hr5
5w97l4YkjOPFSnzRkEVpUhHsLDeRqEIw1t0e9M1r8AMEB3CSkdDpjrSmmCcXZ7Ln
HwtjmncCgEUFwj7AYnymZpW2V/bQkfMBtSZjiDBg1x5rYl4OcFbbY1Fhu9mldHyZ
g/UtOlVT2fbsmdg/P58pN4iDCE1QgHO/9eag/kOIWU++5Wi0t5Un1wUsy4wlb6YP
a9YO1n/dHhy4YGPl5xPGnEFNmyy1dJJuTucz9/g4DuHvwnhANC7t4sUrpEx9FtMQ
74FDAXDPPWC9NciO2I/T8yvesXD/77RAfvFl19L7mh6lzQ145RR3LCPY6952Dgi1
MOFKqlU20BAccg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 18:36:14 2026 by rpki-client