Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json)
Hash identifier: 7VS7BDRjAiuQbGAhVcyiViXRohnyNMvbH9r19XjBnLs=
Subject key identifier: D6:26:C0:05:48:6B:C7:21:77:B6:AC:51:A6:E6:31:AA:D4:47:79:F6
Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Certificate serial: 019F17F9D8A3AE258F35C67BE2366B6E9543
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
Manifest number: 18F7
Signing time: Tue 30 Jun 2026 10:01:17 +0000
Manifest this update: Tue 30 Jun 2026 10:01:17 +0000
Manifest next update: Wed 01 Jul 2026 10:01:17 +0000
Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: 8uLVjsZqWXAI1gTHFbSblUHALYf3yQNZlFNwJv+8Bs8=)
2: TWjQ2gsQUU9MXDJP00l8lOI_i8I.roa (hash: PtqnNrTefbS8Cw3BlkL6LKO9S8DUkKbOBZ0zbUviWfs=)
3: WoaNei28YSaPDdcENSu3LjSXLKg.roa (hash: YXB0+7Vswy/qgNB0Agbnb+glIUAaceZRMWc/efKKqKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:d8:a3:ae:25:8f:35:c6:7b:e2:36:6b:6e:95:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Validity
Not Before: Jun 30 10:01:17 2026 GMT
Not After : Jul 1 10:01:17 2026 GMT
Subject: CN=d626c005486bc72177b6ac51a6e631aad44779f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4f:89:9f:5e:33:ff:1e:5c:19:b3:1c:b8:3c:
d5:da:54:bc:e3:7a:9f:37:b2:eb:1f:92:fa:b8:cb:
6f:ba:ca:4a:4e:ee:bf:c4:04:8c:76:88:72:89:7c:
11:5d:b8:2f:05:9c:c1:30:d6:73:34:ee:9d:be:49:
01:c0:3c:dc:08:ff:46:36:99:36:6e:2c:26:77:0f:
37:53:99:60:ef:99:3c:94:bc:50:f8:64:8a:22:29:
35:bf:61:f4:e7:41:61:19:6f:59:22:17:65:83:10:
34:8d:de:9c:34:b5:c7:4e:4c:9f:a7:5a:f1:78:17:
40:c3:6e:95:6e:d0:07:1d:2f:0b:0d:69:2f:3a:22:
34:9a:93:79:1c:d4:62:ff:69:bc:11:cd:1c:33:77:
1e:fb:ec:b7:9d:1c:d5:cc:0e:e4:db:a6:27:e3:4c:
16:0d:89:11:66:ca:e3:79:85:7b:e8:e6:43:39:62:
e4:08:d3:7a:3c:bf:b3:5a:35:9b:4d:59:48:b0:49:
26:f4:90:36:bc:58:c8:5c:ce:64:7e:05:2e:df:bf:
7a:69:b6:a5:e5:43:48:57:0c:44:9e:22:a3:4c:ad:
a4:07:35:56:21:47:4b:4b:1d:b0:e3:63:7f:62:7b:
20:30:33:e5:45:d1:8d:3f:f2:00:62:15:3c:b2:1f:
5d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:26:C0:05:48:6B:C7:21:77:B6:AC:51:A6:E6:31:AA:D4:47:79:F6
X509v3 Authority Key Identifier:
keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:12:86:fc:c9:8a:92:81:8c:86:d2:83:07:7a:2d:9e:82:64:
ad:0c:05:0a:8f:8a:4b:35:9c:a8:2b:e3:78:fd:25:34:02:84:
ae:b4:15:f4:19:c1:21:83:bf:19:2d:9e:62:2f:33:05:55:76:
d1:a4:c2:f9:68:93:f2:e4:74:52:56:f1:de:e7:ba:0d:e7:7a:
20:46:b4:ce:d6:0c:6f:a4:1f:78:ab:4a:c7:38:57:29:2f:78:
ca:07:1f:82:6b:1f:90:7f:17:29:3a:05:6a:e6:75:43:ba:35:
84:72:45:42:63:d1:61:64:e6:b5:52:6f:11:fc:1c:87:d3:88:
50:d3:83:e2:87:51:56:b8:c7:56:d7:85:0c:aa:08:f7:e5:e2:
12:f4:3c:61:57:d2:74:4b:04:05:0f:b5:db:ea:19:36:a9:16:
46:29:74:b6:20:2e:b0:be:fa:f3:92:e2:35:49:ff:d2:ee:a5:
d8:ad:d4:e0:53:69:5f:54:52:b0:42:5e:91:8d:92:9a:4f:a7:
3f:fb:77:4a:8c:8c:40:9f:88:fe:8b:91:cc:ac:62:84:13:29:
ed:a5:43:a1:85:2d:16:b2:2f:f7:60:84:56:b9:c3:c3:e2:ff:
e7:59:6b:0a:43:58:4a:aa:01:fd:76:30:ae:2b:2b:fc:a4:60:
bb:01:43:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:34 2026 by rpki-client