Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: c7PLFwpRnDAJsLmS4PxgtOw584t+xymf6JowI5G2PK0=
Subject key identifier: 5F:2C:26:DA:A0:C7:94:EA:A4:3A:98:9B:68:3D:FB:94:A4:1D:5A:BD
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 019F17C35D47985F087B9CEA9095D1DF707C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 18C7
Signing time: Tue 30 Jun 2026 09:01:47 +0000
Manifest this update: Tue 30 Jun 2026 09:01:47 +0000
Manifest next update: Wed 01 Jul 2026 09:01:47 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: 2gALxpzdzUR2IIM8cM/SxCqCDG2LAiJF4sX17kRcNvY=)
2: xU2EDS3A1kqxHB5fmWawALQua5w.roa (hash: gy/kCjpuCiDHyb5854bh+q6WsJ4/S+45FLFM/o6soug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c3:5d:47:98:5f:08:7b:9c:ea:90:95:d1:df:70:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: Jun 30 09:01:47 2026 GMT
Not After : Jul 1 09:01:47 2026 GMT
Subject: CN=5f2c26daa0c794eaa43a989b683dfb94a41d5abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4b:22:c2:8c:10:fd:1f:11:99:68:9b:1b:5b:
2c:79:2e:9d:c7:b7:d1:e5:a0:6b:5d:c3:94:d1:2f:
e2:f8:9b:17:bd:f7:d6:db:0e:86:0f:45:6f:8d:26:
0a:dc:b6:12:b2:1f:02:c7:0e:f6:1a:81:a0:06:68:
12:fb:5d:2d:8a:c3:b9:aa:ac:6b:e7:0e:18:fe:59:
b6:54:9b:b6:45:84:3c:56:c1:fb:97:89:dc:d3:53:
28:d9:40:fb:25:04:d3:ab:42:a7:9c:ba:65:bc:6b:
b1:de:c4:8a:0a:ef:ae:2b:89:9d:e1:e5:a0:42:e6:
0b:ac:a1:4b:27:f1:83:47:32:01:16:76:02:17:af:
df:42:3e:f6:a1:cb:f6:2f:e0:b5:78:aa:c0:14:05:
41:35:51:7a:e1:75:82:f5:86:0f:54:7f:c7:ec:cb:
3a:8f:57:56:f7:2d:fb:ef:1e:ca:ee:ae:96:ef:1c:
d5:8d:b8:ff:00:d7:61:fc:4e:40:5b:e5:fe:0f:db:
27:8c:61:12:6a:6b:59:be:fa:ba:0f:6c:40:77:25:
c1:b8:43:de:4b:ea:af:f1:ad:77:45:c8:31:73:5f:
f7:11:4b:9e:b8:bf:73:2c:c9:3b:bf:98:b3:58:95:
db:76:9b:4a:9d:8a:e2:79:d5:3b:1f:d2:6b:34:96:
dc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2C:26:DA:A0:C7:94:EA:A4:3A:98:9B:68:3D:FB:94:A4:1D:5A:BD
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:97:69:50:05:84:29:d4:c0:8e:8f:c7:15:6e:51:33:d5:c8:
35:d6:a1:e1:49:c4:34:aa:dc:00:ef:fc:68:71:4d:01:a3:60:
ea:96:1b:64:68:3e:6c:37:a1:36:48:3f:9e:c5:3b:b0:ed:49:
af:19:83:50:9a:8f:94:89:02:ec:cc:c6:e0:cc:74:e6:a6:26:
2c:5d:c8:a9:df:a8:9a:1b:9a:11:7f:24:9e:92:77:2d:79:e6:
26:5b:09:81:af:06:43:3e:01:0c:e8:99:2d:e7:a0:65:3d:9a:
f5:d5:a6:2e:4e:74:e6:4a:6b:3f:12:d3:27:82:fb:49:69:d8:
cc:5b:18:00:43:3c:dc:aa:a6:65:ff:2b:71:60:ed:08:62:0c:
22:0e:c1:ed:fc:34:f6:01:e5:5f:43:fd:19:17:2a:ba:69:ba:
4b:ad:e4:9e:52:33:ff:4a:ec:4a:5e:ec:da:1b:00:70:b9:ae:
69:8a:9a:5d:c7:1e:b9:1f:0f:86:04:30:97:33:a6:c1:1e:b8:
77:74:93:cf:c9:85:f8:15:c4:74:91:71:af:89:7b:85:4b:88:
fa:29:5b:53:fa:1a:96:be:b5:99:3d:cf:6d:18:18:09:b9:e0:
6c:a6:85:04:eb:13:90:9d:82:35:b5:37:17:3d:cc:18:09:9e:
87:ab:fd:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:16 2026 by rpki-client