Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json)
Hash identifier: tnOyzBOBvUVFKehhGURZxnqKnlTgr6B/gpryOWH5cyo=
Subject key identifier: A8:64:62:63:72:17:1E:40:6F:73:33:72:D5:C9:49:23:DA:17:51:97
Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Certificate serial: 019E303BD593BD2C2CA0B986A50E01696577
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
Manifest number: 187F
Signing time: Sat 16 May 2026 10:01:28 +0000
Manifest this update: Sat 16 May 2026 10:01:28 +0000
Manifest next update: Sun 17 May 2026 10:01:28 +0000
Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: 4W/T4oAb/HDB3yYAocTpnHbPJ403hakl0VccqSfJTL4=)
2: TWjQ2gsQUU9MXDJP00l8lOI_i8I.roa (hash: PtqnNrTefbS8Cw3BlkL6LKO9S8DUkKbOBZ0zbUviWfs=)
3: WoaNei28YSaPDdcENSu3LjSXLKg.roa (hash: YXB0+7Vswy/qgNB0Agbnb+glIUAaceZRMWc/efKKqKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:d5:93:bd:2c:2c:a0:b9:86:a5:0e:01:69:65:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Validity
Not Before: May 16 10:01:28 2026 GMT
Not After : May 17 10:01:28 2026 GMT
Subject: CN=a864626372171e406f733372d5c94923da175197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b6:8d:77:e8:e2:72:f7:48:2e:2e:ea:3a:0f:
8e:1e:29:5d:dd:02:30:cd:76:13:9d:08:c7:74:bd:
5b:6a:7a:0c:e0:4a:05:b6:da:c7:35:71:2d:a3:bc:
a5:15:37:f0:fe:4c:05:43:58:d1:d0:eb:b7:1d:67:
d4:e1:d3:43:51:c3:b7:0a:09:e4:fe:47:e7:62:61:
f2:73:1f:17:a4:67:de:9e:8f:1c:d6:07:77:90:2c:
a4:56:7d:05:d6:ba:ab:d4:f8:f9:fb:5c:28:71:97:
ad:2f:eb:2f:5e:a6:ea:08:7d:06:7c:b6:14:7d:b3:
0e:cf:f9:e9:2b:ec:d6:7e:2f:78:0c:55:38:b9:8f:
4a:4e:da:41:02:b6:1f:44:31:cb:38:ae:83:8d:d3:
c5:f4:6d:d8:52:6b:bb:bc:37:29:a5:df:6d:91:a2:
02:b5:d9:02:e1:c7:b2:ba:50:ab:7e:e9:df:1f:36:
6f:c4:31:84:65:01:3f:54:3f:8d:d3:78:b5:fb:9f:
d7:15:3b:8c:4c:60:a7:0b:1c:24:93:e6:54:30:1c:
a9:02:74:06:f3:9c:ec:57:bb:96:a2:05:85:02:43:
95:ea:66:59:74:ae:ff:ae:5b:f8:f2:93:be:5e:c3:
7d:6f:34:a6:08:57:fd:33:5b:96:0b:ae:ef:b4:8b:
cf:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:64:62:63:72:17:1E:40:6F:73:33:72:D5:C9:49:23:DA:17:51:97
X509v3 Authority Key Identifier:
keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:15:25:7e:ea:be:94:8a:47:bc:e2:cb:a7:94:e0:66:77:9d:
80:58:75:0e:8e:f5:13:97:e4:f4:bf:9c:15:e2:6a:6e:7d:f9:
7d:7d:3c:84:f3:2a:25:fe:cf:d2:d5:c3:63:42:93:30:94:88:
81:67:15:2b:5a:ed:6d:3d:a9:93:0b:65:7c:83:bd:f0:1a:ce:
f5:71:33:1c:5e:0f:71:70:cf:8d:f8:a7:7d:63:c6:c8:1a:ed:
6d:0f:cf:d1:7c:98:c2:ff:19:14:0e:07:d0:45:64:60:aa:a9:
c9:dd:6c:0b:68:b9:33:64:5d:ed:16:9c:9b:87:d9:84:76:ae:
ea:26:d9:f3:53:11:36:21:40:51:44:4d:18:89:cb:06:90:01:
98:93:42:e6:9e:64:b6:4e:84:81:a7:67:da:ac:f4:33:1f:01:
47:dd:b9:83:fe:24:34:57:d9:d3:0b:08:7c:f0:59:47:df:6c:
d1:61:98:03:e9:8a:0d:ee:9f:34:14:c3:0b:7d:fd:d9:a2:88:
79:13:39:a1:a8:a2:fc:35:19:2d:f1:8b:2f:dc:d7:d9:1a:8a:
fe:bd:02:17:7b:1b:d3:b2:ab:3d:9c:a0:e0:67:17:57:f7:94:
c3:fd:19:bc:4a:83:1c:30:d3:54:a2:e4:ab:a0:2d:9f:e0:74:
f3:b2:40:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:14:02 2026 by rpki-client