Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: cbT4KYXZm9rmAnKhI0kjuAdKvcxZ8+Rcvlw34VxuM8o=
Subject key identifier: B0:E2:2E:0E:4E:34:BB:9C:83:79:22:6F:42:EA:C4:8D:2A:D8:3B:28
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 019E3004704A305FA31305FCDD96B0DDAA25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 184F
Signing time: Sat 16 May 2026 09:00:57 +0000
Manifest this update: Sat 16 May 2026 09:00:57 +0000
Manifest next update: Sun 17 May 2026 09:00:57 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: 3o4TQbwo1P+84Ml7dF968heW+sqHPlABr1D4R03+MQ8=)
2: xU2EDS3A1kqxHB5fmWawALQua5w.roa (hash: gy/kCjpuCiDHyb5854bh+q6WsJ4/S+45FLFM/o6soug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:70:4a:30:5f:a3:13:05:fc:dd:96:b0:dd:aa:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: May 16 09:00:57 2026 GMT
Not After : May 17 09:00:57 2026 GMT
Subject: CN=b0e22e0e4e34bb9c8379226f42eac48d2ad83b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:15:23:51:38:d3:52:83:74:26:15:f1:35:19:
40:44:9d:2c:94:6d:75:d7:ab:a9:98:3a:e5:72:3a:
1e:ee:30:ef:1a:df:ba:17:2b:8b:db:2b:dc:d9:74:
e3:05:89:39:28:d0:47:1a:89:dd:94:55:46:3d:92:
a6:ee:dd:05:8e:f9:75:7e:04:43:b0:1e:b2:c1:82:
b0:ea:19:c4:f6:d2:ef:cd:02:cf:62:4d:57:02:3a:
a8:53:bd:f0:cd:4c:6b:9b:90:75:18:d9:d0:39:1a:
56:3e:b8:3d:8c:4d:67:bf:e2:fc:da:ad:8d:4f:69:
4b:2a:d3:c0:95:72:07:01:51:3b:c1:8e:e3:8c:18:
13:5f:78:71:76:e5:e8:9d:69:2d:b3:49:a9:15:f7:
b0:08:82:a5:c2:00:17:90:fd:ae:05:d0:81:bc:de:
b6:ad:f3:e3:6f:ba:07:f7:92:94:fa:5e:37:0f:1f:
8e:9a:c3:8a:54:d0:83:40:67:6a:8d:7b:c8:4b:53:
af:9c:11:53:84:e0:b3:a7:94:7b:44:48:7a:6e:91:
99:33:7f:95:5c:34:67:c8:a4:1a:70:36:fa:95:72:
bf:45:e9:32:03:43:2f:79:47:c3:43:22:ec:9c:85:
a9:78:09:74:c6:42:83:5f:85:b5:26:81:01:2d:8c:
e4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E2:2E:0E:4E:34:BB:9C:83:79:22:6F:42:EA:C4:8D:2A:D8:3B:28
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:2e:2f:db:9b:94:bb:c7:e0:75:7f:be:a5:f1:1c:bd:15:98:
11:b1:ec:c0:e5:4c:87:cc:a8:70:28:41:35:8f:cc:32:15:7e:
80:d2:9c:e1:f5:e9:3a:3c:30:72:71:71:c7:6e:72:bf:77:ef:
f0:ca:ce:87:04:aa:64:92:5f:86:fd:d4:93:f4:5e:82:6d:5f:
17:24:17:98:09:0b:7f:a7:12:94:e7:b6:d1:5d:88:d1:f3:8f:
96:63:6b:16:e3:79:78:ee:10:17:f6:a5:3b:75:3b:02:0c:ea:
48:05:41:bc:ea:d8:a1:b1:f7:28:0c:b5:84:3b:39:f4:2a:4f:
0d:09:64:b7:e7:b5:91:a2:72:6b:02:d6:35:8c:b3:0c:31:da:
e5:9c:2b:fe:18:13:fd:f6:41:03:89:48:24:23:49:76:8b:f7:
e1:b6:72:16:32:14:7d:07:30:41:d5:45:87:39:f4:9f:b6:cc:
d6:21:93:ce:b3:98:06:cd:57:46:6b:d3:11:55:dc:74:1b:73:
c7:7d:a2:25:9a:99:32:10:8f:97:a3:56:6a:02:c9:69:26:4c:
69:77:4e:17:5f:ca:71:e5:27:d2:18:eb:40:67:f6:ab:2d:90:
78:09:af:de:7e:46:cf:eb:9d:32:22:48:88:eb:84:cd:25:68:
91:f0:a6:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:27 2026 by rpki-client