Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json)
Hash identifier: 40ed+6vvKEk5jwOBd9v1RhfG/GAN1EE3nn5KN2rZUYs=
Subject key identifier: BA:11:D3:2C:CB:F2:F9:02:78:BB:32:6D:6C:FA:C7:23:03:8F:47:5B
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 019F190CCDCC372C72D8973C573EBFA707D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
Manifest number: 17AC
Signing time: Tue 30 Jun 2026 15:01:37 +0000
Manifest this update: Tue 30 Jun 2026 15:01:37 +0000
Manifest next update: Wed 01 Jul 2026 15:01:37 +0000
Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: tCnvDbS19a9avZpzitsM7AgNW7cOQdrWZQhpQFineUk=)
2: dQKWrb4274MA9TnUoPK0iLguRN8.roa (hash: iabYGi8dw6jC4+Zg8izYgwpn552JIuXwr1GRxu62hag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:cd:cc:37:2c:72:d8:97:3c:57:3e:bf:a7:07:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: Jun 30 15:01:37 2026 GMT
Not After : Jul 1 15:01:37 2026 GMT
Subject: CN=ba11d32ccbf2f90278bb326d6cfac723038f475b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:04:36:23:b2:5b:ad:32:f7:bb:72:e5:3c:32:
c3:b1:41:dc:a7:e1:4a:bf:f8:93:e3:0b:39:39:c7:
5c:0a:c8:27:60:8f:18:ae:9e:da:67:be:1d:36:f0:
0f:14:5d:58:c4:e7:8e:f9:85:f4:b5:c1:23:19:c4:
7f:ec:30:26:3b:12:43:69:ce:10:ca:a4:ce:09:c5:
82:96:df:09:21:b0:3a:22:e7:f5:f8:11:f3:8c:c0:
09:e6:24:ea:8e:1b:d4:1d:0d:9b:64:42:77:82:51:
5a:56:8e:ce:56:10:11:73:64:2d:38:38:80:22:04:
2c:13:f3:d9:ca:e3:03:25:b2:44:20:a7:83:90:b4:
f6:72:8f:03:f2:73:6f:35:0f:07:8b:19:a9:7a:64:
ed:c4:f8:97:b6:57:eb:a1:9c:b0:ba:fc:46:0e:1e:
c1:f3:84:5d:ab:b7:e7:9b:69:37:82:76:d0:68:cf:
9d:bb:38:e2:92:fd:73:d2:46:af:0e:e7:a2:78:ee:
35:5e:5b:52:c1:ff:c9:3c:1f:75:11:b0:bd:fd:6f:
d5:33:72:7a:f6:b9:38:87:8c:7d:36:52:93:f1:fc:
4a:c3:03:e1:be:63:86:7b:0f:c3:c9:39:d2:6d:c1:
d6:97:da:40:79:b2:2d:ec:77:a4:c7:96:4b:d9:9d:
69:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:11:D3:2C:CB:F2:F9:02:78:BB:32:6D:6C:FA:C7:23:03:8F:47:5B
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:17:2b:e2:ba:60:1a:39:d9:fe:a0:2a:c1:90:ce:a1:95:49:
77:46:dd:07:11:5f:52:3f:e8:91:f0:dc:55:66:3d:04:2d:dc:
99:e6:43:83:64:4c:c6:e9:cd:6a:e6:3e:68:48:fd:ca:59:2e:
62:60:ca:a3:ef:f1:71:42:07:46:dc:bc:34:45:dd:43:7d:cb:
1c:bb:d1:b9:e7:52:95:91:43:53:c1:16:f7:9a:a9:c3:02:2f:
4d:02:31:2e:7e:5a:f8:89:b5:e2:ba:83:cf:73:ad:e6:3a:20:
af:66:6d:56:6e:19:70:ce:9a:e4:30:b9:93:7c:c7:91:ef:df:
7b:1c:ec:c4:d5:15:7a:72:5b:e9:e6:d4:13:33:04:78:45:c3:
5f:d1:4a:12:1b:d2:d2:8c:7c:3f:64:bb:cb:5e:55:c8:c5:c8:
8b:e5:e9:36:c7:ee:1a:90:10:29:89:cf:e7:6c:7f:84:c9:34:
2f:1e:1f:53:8b:6c:b6:da:e9:80:5c:93:d1:a3:a5:ca:00:5f:
5f:6d:a4:81:9b:d6:86:3d:53:74:c4:da:1b:88:90:dd:b2:e0:
fe:ca:00:b9:a2:38:25:ed:fc:bf:98:6f:6d:5f:a9:98:b1:fd:
5d:ca:21:84:d4:3a:7a:1d:65:77:38:87:bd:47:51:60:6b:13:
c3:49:0c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:17:20 2026 by rpki-client