Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
File: 3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft (raw, json)
Hash identifier: 58lWCehM2uwAjjGu4c3QZ+mGvPX3RNGWB+/MIvtuv9o=
Subject key identifier: D9:95:DE:21:9C:07:01:30:16:F3:28:0F:84:5B:9D:80:57:19:91:A8
Authority key identifier: DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96
Certificate issuer: /CN=dc6baa601236ab9bea29f807a66920ed5656a196
Certificate serial: 019F17C2F4CE58252EFB82E2DD67C84A41B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
Manifest number: 1986
Signing time: Tue 30 Jun 2026 09:01:20 +0000
Manifest this update: Tue 30 Jun 2026 09:01:20 +0000
Manifest next update: Wed 01 Jul 2026 09:01:20 +0000
Files and hashes: 1: 3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl (hash: 077/UKA4G+1HqLzR9NNpcihY6bbb6Nlmy/r0SmsFFxo=)
2: LmwyPllgT27iDmcYfX7agNvw4rA.roa (hash: kpm3XdXtMEMrfdjcWSVw0huoNKfPlGFqAs8H1ASM9Wk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c2:f4:ce:58:25:2e:fb:82:e2:dd:67:c8:4a:41:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc6baa601236ab9bea29f807a66920ed5656a196
Validity
Not Before: Jun 30 09:01:20 2026 GMT
Not After : Jul 1 09:01:20 2026 GMT
Subject: CN=d995de219c07013016f3280f845b9d80571991a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3b:53:14:51:5d:97:4a:ac:0c:81:80:80:75:
c6:25:d7:ec:57:50:50:c7:7f:76:40:9a:37:e2:e3:
47:46:b4:7e:1e:09:fe:c0:83:9f:33:ff:5c:f6:45:
ab:4d:43:ed:28:b9:18:e1:fe:f7:df:35:fc:a9:08:
c2:09:8c:5f:46:60:cd:c9:c9:ff:65:71:22:28:12:
1a:f4:58:e5:21:de:bf:3f:f6:e2:ea:ba:bb:e1:09:
42:bd:4a:f5:44:7d:38:40:2a:ab:82:2b:3a:53:d1:
58:e8:86:a6:60:cd:4c:7c:ac:93:be:65:72:33:59:
b7:24:c7:b2:ec:8e:af:c4:1b:d6:a9:a6:6e:dd:30:
fd:4e:71:f4:26:b7:42:c2:b7:cd:26:56:e3:51:53:
61:c3:a3:47:52:2e:e7:1e:5c:95:d1:9d:40:55:8e:
62:49:05:d1:e8:21:1b:9f:92:13:6f:23:ac:6a:45:
63:93:06:fb:ef:f5:b9:1c:7e:34:eb:38:1c:9d:4f:
f2:79:36:23:63:9b:c0:06:b7:64:7c:bf:c5:6b:98:
39:89:9f:c4:b7:6c:3c:3a:0b:35:e8:3e:d3:1f:71:
9c:92:5d:0e:11:89:43:ea:4b:ce:96:c6:98:2f:21:
37:a0:2c:b0:8c:36:b9:5e:60:f9:95:16:bc:26:10:
a0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:95:DE:21:9C:07:01:30:16:F3:28:0F:84:5B:9D:80:57:19:91:A8
X509v3 Authority Key Identifier:
keyid:DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:f5:41:1e:9c:0e:df:e7:f6:3f:d4:d1:ae:4c:c2:bf:54:c3:
08:d3:a0:da:f4:31:85:cf:11:ec:11:47:10:e4:32:2b:3f:46:
2b:c2:13:e8:a6:ed:15:d5:f7:a2:b6:22:51:b8:a8:70:50:d7:
b0:0a:a4:53:d8:c3:02:ed:a3:c0:a3:48:39:68:e4:c7:e5:32:
7a:a3:22:87:7f:42:88:0c:c8:60:b5:a6:c5:e0:e6:f8:24:1d:
18:46:46:4b:63:f1:99:f7:0f:59:a8:17:3a:6c:92:ba:be:64:
a2:90:02:b2:74:f8:b2:0d:fc:08:de:ce:7a:c8:81:44:61:c6:
dc:fa:5f:fa:5e:6c:8d:35:89:44:fe:5e:5f:e0:74:a0:3f:3b:
6c:16:00:16:fe:f5:1d:71:46:0f:55:4d:f1:71:93:de:4f:84:
f8:14:3f:12:ba:e4:aa:3f:21:64:27:a8:c3:c5:41:4e:f3:50:
51:c3:b5:33:b4:41:5e:c5:11:ce:58:34:a8:36:5a:78:a7:2a:
07:a4:4c:f4:aa:ff:11:33:97:23:e0:0c:1f:1a:39:45:36:c8:
bc:00:7e:dc:02:da:9e:f6:58:b3:fc:3b:a5:c5:c3:d7:2a:6d:
97:e1:ac:47:d6:29:cf:b5:ba:52:28:f0:4e:21:aa:e9:ae:19:
6b:a1:a9:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:31 2026 by rpki-client