Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json)
Hash identifier: IGjAtXJOdFsVAUyX1Ii7pSe8RHuIYWoHa6CxJlnEGZ4=
Subject key identifier: 5A:3E:5B:B7:A7:4E:31:41:29:12:F3:1C:B0:DC:E0:F8:B0:9D:61:39
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 019E9B174F34BA47FD90915A41C7DDCF2957
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
Manifest number: 1954
Signing time: Sat 06 Jun 2026 04:00:56 +0000
Manifest this update: Sat 06 Jun 2026 04:00:56 +0000
Manifest next update: Sun 07 Jun 2026 04:00:56 +0000
Files and hashes: 1: 1fQajHTJp0S8KUunDd6YeyFtENM.roa (hash: mmAzmTwR/ELzJWO/mTGxkNnXnKiWntSSUF9kf4/Kzb4=)
2: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: gOv9/BJiEsl5RUtabvXuwFNp6rs61dVYYMys9TJTQm8=)
3: 6I-aggcE89s528aMt_8CuZqJ61A.roa (hash: 1l0d6AnGSzNrEZie8Z3fZ9Fg7c3oqYcQ4vM6hMLN2Xk=)
4: AFp3F2X8yQTaBQfkM_zsF9UYmww.roa (hash: 7p1zPt6PNmGU8W+3TijuQxRqjYyJqKF96JpQUyZBeZY=)
5: EHQpUpEMo4S4SvN6ygFHQVkQJ6A.roa (hash: aL98OrOlu07CFPxf6rwXnJMO4vbO/beSHKJmE+F/5nQ=)
6: XBx3ZjkQBmOob1C1AQifpzrj3Es.roa (hash: toUyH2dFBi0jUqBudUbZQlU2ok2/b2pqbfdKdGPRAog=)
7: l6dcV9zJ9n_Ctd5EzzonA7X-jFo.roa (hash: mwxDuvlYfTCoynYTFAQOpS/BivdbtxW1voj1voq8fsg=)
8: rrxhY0T34NFm8dBURFOGg9BvJjw.roa (hash: CAUMQZvZz6QKlQgRUZEx4oRHdyyDBXGnUQ6HYMNXgDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:17:4f:34:ba:47:fd:90:91:5a:41:c7:dd:cf:29:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: Jun 6 04:00:56 2026 GMT
Not After : Jun 7 04:00:56 2026 GMT
Subject: CN=5a3e5bb7a74e31412912f31cb0dce0f8b09d6139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ff:42:3a:df:14:fb:72:a9:c3:5d:ab:1a:6a:71:
d1:80:86:b2:6c:b9:24:46:bc:5b:98:f5:78:3e:eb:
ff:ab:21:40:05:38:4a:4c:0f:df:e4:a0:64:9f:33:
98:aa:8e:05:be:a3:b5:cb:fd:82:fb:2e:4f:c0:e6:
f2:90:37:f4:a1:3e:01:fa:b2:39:0b:60:d5:18:00:
f7:de:3e:b9:b1:43:96:bb:d9:ac:a0:da:84:46:f5:
9d:1a:3b:ce:6d:3a:27:11:b7:74:a8:87:0d:26:6b:
92:38:9e:91:38:47:ba:e6:b9:86:17:21:da:76:de:
ff:f5:df:67:b1:e0:86:57:0d:a7:9a:03:f1:d4:4f:
71:0a:a3:21:af:53:52:08:26:ec:97:64:26:6e:90:
63:0f:39:a0:5c:cb:01:c3:df:fc:45:6d:c0:49:63:
ab:d1:2a:51:99:c2:36:a0:33:31:32:5b:a9:f5:cd:
2e:69:89:a8:f1:93:23:94:3e:b4:f1:fb:c4:80:92:
0e:7a:9e:48:59:61:92:86:27:7a:74:f2:87:da:5a:
41:05:77:1f:5e:1e:58:85:74:15:23:ef:1b:39:90:
02:5c:21:d4:b1:58:a3:e5:00:15:4b:7e:a7:06:2d:
59:0b:10:5c:18:58:03:a4:77:b3:3c:f1:e5:a1:02:
02:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:3E:5B:B7:A7:4E:31:41:29:12:F3:1C:B0:DC:E0:F8:B0:9D:61:39
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:5c:3e:38:a8:31:a7:01:6e:df:db:eb:d9:fb:d2:7a:1a:f1:
b4:72:40:67:79:d7:1f:25:84:c6:5e:8e:01:23:5e:8f:1d:2f:
9f:30:cc:39:1d:d6:c4:1a:72:9c:c5:a1:75:dc:0c:e0:9b:47:
70:df:05:cb:a5:b2:73:cf:11:cd:c6:c4:5e:bd:69:3f:af:58:
a5:44:90:a8:e6:be:a0:bd:c0:48:d6:8f:95:f5:f6:c6:c1:47:
30:8a:da:fc:c3:d0:fe:be:ea:8b:6c:e0:87:e0:75:d2:30:a6:
24:85:76:7d:6a:85:55:6d:16:64:c2:93:7e:50:bd:3a:83:54:
60:c2:1b:41:f1:e2:88:14:a0:77:cb:e4:80:5d:f3:26:4d:fe:
6e:e8:22:8f:f9:e6:fa:20:c9:89:25:e6:66:52:41:ac:7a:5c:
6d:df:29:ce:fb:95:76:ee:c3:1e:de:88:a4:d2:05:6a:85:14:
21:f1:51:23:6b:bd:80:d8:e2:14:25:6e:b3:7f:54:e1:03:4d:
a8:22:14:80:69:8f:65:83:ba:18:fb:d8:b9:2a:ab:ad:67:1a:
85:23:26:21:19:db:8d:af:99:5d:66:95:e4:79:cd:ef:c2:44:
21:ae:08:40:a1:43:2c:f1:33:6f:cf:91:84:34:7d:46:90:1d:
6b:60:ef:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 10:20:40 2026 by rpki-client