Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
File: 3YqroPRrqhRP2wk46RwU-UxhZQw.mft (raw, json)
Hash identifier: aCArX8knRrpfBjEnOB8d/FPn7yGZlkEs3Xm7PwYr5f4=
Subject key identifier: B5:9E:4F:89:F9:86:48:0A:98:7D:11:8D:1D:FA:D9:11:4B:B9:A4:10
Authority key identifier: DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
Certificate issuer: /CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Certificate serial: 019E30046CD43987490E7BEAF8FE265E3D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
Manifest number: 1070
Signing time: Sat 16 May 2026 09:00:56 +0000
Manifest this update: Sat 16 May 2026 09:00:56 +0000
Manifest next update: Sun 17 May 2026 09:00:56 +0000
Files and hashes: 1: 3YqroPRrqhRP2wk46RwU-UxhZQw.crl (hash: Wiq+U+tKJBToPCG61vJAn5Os83VvXRjPPhnCWBMLcy0=)
2: ipwbth9z_kAmFFiQQC69LkO_nQw.roa (hash: NejJVwemsx7RaWRb+qhN37iXZFwIo50zil0wLKpDlFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:6c:d4:39:87:49:0e:7b:ea:f8:fe:26:5e:3d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Validity
Not Before: May 16 09:00:56 2026 GMT
Not After : May 17 09:00:56 2026 GMT
Subject: CN=b59e4f89f986480a987d118d1dfad9114bb9a410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ce:59:8e:db:80:53:50:27:5a:ee:f2:9b:03:
30:c6:bf:a7:d8:64:0f:25:12:25:24:a6:14:36:f6:
9e:a2:87:76:21:32:c3:fd:7f:4c:a8:35:53:36:d1:
4c:8d:01:02:01:46:87:a8:43:dc:71:02:56:19:b4:
75:5e:6e:fa:84:f6:1c:01:f0:ba:76:af:7d:e4:39:
4c:b1:32:6c:c2:29:83:8a:98:bf:3c:ac:67:e9:aa:
08:a7:06:ee:43:6c:61:ba:6a:d3:ca:3f:48:45:99:
89:86:0d:be:13:a9:a9:b9:79:fd:53:7a:1d:f9:03:
c9:35:5f:99:2a:14:24:a5:c7:79:dc:66:ac:7a:f7:
7a:64:61:ff:44:77:5e:54:6d:91:67:46:ba:17:d4:
8b:83:45:be:e8:22:a7:a2:ab:54:a6:83:07:72:00:
0a:40:c8:31:74:ae:39:81:59:91:61:e5:01:f4:54:
fa:22:08:27:66:67:e0:dc:94:f0:53:95:00:3c:db:
50:5b:fe:d7:27:53:d3:0b:04:16:dc:d3:49:c2:d1:
c5:e0:bf:d1:42:4b:ee:9a:15:d1:8f:d0:f1:ad:4e:
8c:dd:77:e3:42:66:16:dd:39:4f:51:f7:33:87:6f:
b0:69:64:86:71:fc:c0:2f:23:fe:2a:bd:d5:9a:de:
5d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9E:4F:89:F9:86:48:0A:98:7D:11:8D:1D:FA:D9:11:4B:B9:A4:10
X509v3 Authority Key Identifier:
keyid:DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:d8:8a:d2:5f:dc:5c:7e:cb:c7:09:07:d7:f8:02:d3:13:68:
65:df:21:6c:4d:38:40:db:d3:13:7d:bb:19:2e:e6:61:2d:7f:
b8:22:a4:d0:ea:d0:44:ac:a0:e4:46:ac:5a:f9:d6:7d:66:24:
5f:53:35:d6:35:8d:d5:3e:17:97:fa:fd:15:5c:6e:2e:1a:4a:
a3:58:fc:1b:aa:c0:da:ed:e5:db:ab:f3:da:b7:77:7b:53:d6:
49:c6:c5:3e:c8:47:79:6e:d1:cf:13:98:2c:0d:b4:64:14:38:
80:21:5f:59:9f:48:8f:54:fe:71:84:66:1a:67:39:cc:87:58:
cc:4a:cb:e1:4a:f4:47:8a:55:a1:69:b5:4a:da:c2:81:aa:ad:
bf:61:d4:ff:11:c5:09:05:8a:61:8e:cf:9f:ca:82:60:9f:85:
3d:42:6f:5b:6e:02:a8:19:fa:35:a5:2c:93:de:f9:51:fa:46:
ee:03:77:5f:7d:e7:f4:a4:2a:ca:38:77:ba:00:ed:b7:a0:6f:
56:91:54:f1:8c:2d:0b:dc:91:6e:66:34:d9:f1:7f:ba:d3:3c:
2e:02:ac:f6:e4:1c:01:04:eb:4c:46:a1:89:bf:bd:b1:bb:3f:
2e:83:bb:a4:f7:65:93:4f:82:a1:d5:7c:04:17:83:99:5f:8e:
4d:56:30:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBGzUOYdJDnvq+P4mXj0zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkOGFhYmEwZjQ2YmFhMTQ0ZmRiMDkzOGU5MWMxNGY5NGM2
MTY1MGMwHhcNMjYwNTE2MDkwMDU2WhcNMjYwNTE3MDkwMDU2WjAzMTEwLwYDVQQD
EyhiNTllNGY4OWY5ODY0ODBhOTg3ZDExOGQxZGZhZDkxMTRiYjlhNDEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoc5ZjtuAU1AnWu7ymwMwxr+n2GQP
JRIlJKYUNvaeood2ITLD/X9MqDVTNtFMjQECAUaHqEPccQJWGbR1Xm76hPYcAfC6
dq995DlMsTJswimDipi/PKxn6aoIpwbuQ2xhumrTyj9IRZmJhg2+E6mpuXn9U3od
+QPJNV+ZKhQkpcd53Gasevd6ZGH/RHdeVG2RZ0a6F9SLg0W+6CKnoqtUpoMHcgAK
QMgxdK45gVmRYeUB9FT6IggnZmfg3JTwU5UAPNtQW/7XJ1PTCwQW3NNJwtHF4L/R
QkvumhXRj9DxrU6M3XfjQmYW3TlPUfczh2+waWSGcfzALyP+Kr3Vmt5dqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLWeT4n5hkgKmH0RjR362RFLuaQQMB8GA1UdIwQY
MBaAFN2Kq6D0a6oUT9sJOOkcFPlMYWUMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lxcm9QUnJxaFJQMndrNDZSd1UtVXhoWlF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xZmEyN2UtYWFmMC00YmUyLWE1MjIt
YTgwYzk0NzYxZDIzLzEvM1lxcm9QUnJxaFJQMndrNDZSd1UtVXhoWlF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi8xZmEyN2UtYWFmMC00YmUyLWE1MjItYTgwYzk0NzYxZDIz
LzEvM1lxcm9QUnJxaFJQMndrNDZSd1UtVXhoWlF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArtiK0l/c
XH7LxwkH1/gC0xNoZd8hbE04QNvTE327GS7mYS1/uCKk0OrQRKyg5EasWvnWfWYk
X1M11jWN1T4Xl/r9FVxuLhpKo1j8G6rA2u3l26vz2rd3e1PWScbFPshHeW7RzxOY
LA20ZBQ4gCFfWZ9Ij1T+cYRmGmc5zIdYzErL4Ur0R4pVoWm1StrCgaqtv2HU/xHF
CQWKYY7Pn8qCYJ+FPUJvW24CqBn6NaUsk975UfpG7gN3X33n9KQqyjh3ugDtt6Bv
VpFU8YwtC9yRbmY02fF/utM8LgKs9uQcAQTrTEahib+9sbs/LoO7pPdlk0+CodV8
BBeDmV+OTVYw5Q==
-----END CERTIFICATE-----
Generated at Sat May 16 17:14:19 2026 by rpki-client