Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
File: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft (raw, json)
Hash identifier: 4iwbt2PXYpooVK1AoALCNWEt1vU/pJQr8qvj51psKk0=
Subject key identifier: BC:7F:F8:ED:E2:CE:4F:46:E1:44:21:00:C0:E8:08:5F:1F:A3:EF:33
Authority key identifier: DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16
Certificate issuer: /CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16
Certificate serial: 019E30722ED779D21D2E7CA125B262AFEF88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
Manifest number: 1453
Signing time: Sat 16 May 2026 11:00:49 +0000
Manifest this update: Sat 16 May 2026 11:00:49 +0000
Manifest next update: Sun 17 May 2026 11:00:49 +0000
Files and hashes: 1: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl (hash: t/j8qGfZkAbjRGKpVbHdAsEtAFKNKplxUFjWESamqrA=)
2: 6TUuFWgBkm98OJlIkhqINWWAoI0.roa (hash: GA9PdoKCJE0Uq5wLiSfj1Mw/gZ339oU3m0s7B3MQNRA=)
3: _qA7-iuYEvTbfVREYl9q7tay4Bk.roa (hash: Z/glgCy5dfzogAACVBlWtKvnqFreHrzxfTJl0PSlZgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:2e:d7:79:d2:1d:2e:7c:a1:25:b2:62:af:ef:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16
Validity
Not Before: May 16 11:00:49 2026 GMT
Not After : May 17 11:00:49 2026 GMT
Subject: CN=bc7ff8ede2ce4f46e1442100c0e8085f1fa3ef33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f2:a8:ee:87:74:a4:aa:12:ac:24:7c:34:c8:
dc:a0:76:ff:90:86:c1:4f:41:d3:e7:fa:24:2d:28:
96:53:60:33:60:89:53:b9:67:14:99:e2:e3:ea:b1:
f0:5f:a9:f3:5d:e2:f7:7d:0a:f8:ad:9a:37:91:66:
7e:a5:9d:aa:5d:bc:a4:34:c9:e2:5b:4d:11:aa:29:
36:1b:9c:96:5d:ad:fe:86:8e:b3:7f:65:e5:0b:26:
d1:99:e1:76:29:ea:0d:79:30:a1:2a:64:b9:cb:a3:
08:bb:30:a2:42:87:82:70:5b:16:b9:4a:1e:1d:6c:
c5:e2:05:64:83:9d:f3:cb:2f:d6:61:77:f5:a1:be:
e0:94:ff:45:63:b7:d0:8f:5c:7e:90:ff:ce:37:94:
5c:74:0a:9e:76:26:ea:05:ed:a9:e2:98:bd:c7:4f:
6a:be:f0:0e:97:4b:13:f0:b3:22:b5:09:a1:1b:9d:
77:b5:0f:0f:1c:34:72:5b:77:c3:91:38:93:c6:58:
d7:98:62:f7:2c:0e:69:6b:4a:e3:e9:42:50:12:0a:
5e:45:24:d5:8f:6e:13:b6:3a:d5:3d:d5:c0:20:26:
c7:85:60:23:13:09:61:62:5e:9c:7d:8c:76:3b:e8:
75:e2:37:cc:6d:4a:51:85:41:18:cd:ad:8a:89:eb:
93:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:7F:F8:ED:E2:CE:4F:46:E1:44:21:00:C0:E8:08:5F:1F:A3:EF:33
X509v3 Authority Key Identifier:
keyid:DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:25:2a:8a:8c:61:92:43:c5:66:31:4b:4d:6b:cc:dd:63:0b:
2d:c0:93:5b:b7:f0:10:fc:0a:13:7b:79:99:b7:f0:c5:05:d0:
0c:a0:16:47:49:ed:5d:99:89:d6:96:20:08:57:1b:a3:9e:e4:
a0:db:00:aa:3d:ec:6d:41:5e:5d:ac:79:4a:d3:9b:b4:47:e8:
46:a4:a1:18:73:03:df:01:2a:a7:0b:96:98:c2:6d:6c:ec:4d:
46:99:99:ec:84:d9:2a:58:bb:2f:6c:93:6e:ea:f7:74:b2:f7:
b1:ff:fe:2e:87:60:4f:5b:95:7d:ee:2d:b3:bc:95:ca:b9:a1:
fe:79:8c:99:88:1e:99:16:1e:05:ea:5e:33:e3:1b:2b:bb:8c:
aa:0b:1a:e6:e9:22:15:9a:86:4e:44:b7:a2:5a:7c:23:be:fc:
72:ca:34:69:66:c1:08:0e:de:35:25:6f:65:7e:55:ad:4d:4d:
db:b1:b6:36:ad:db:da:83:3e:b1:d7:51:c7:1e:5b:ee:17:a3:
b4:99:8b:fb:69:6b:a8:0a:52:e9:c9:37:be:bc:16:05:a0:92:
52:32:b2:62:bb:f7:a6:c6:2e:64:ac:38:68:fd:7a:82:33:e1:
2c:b6:d7:ea:ca:7c:f3:0b:ae:09:9e:17:4b:a8:87:bd:3c:9d:
1d:25:f9:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:23:48 2026 by rpki-client