Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
File: 3AOqmk_p1gxc-FOpJIIiafHMdFI.mft (raw, json)
Hash identifier: 9eJMqiSz82B452A3BMqhHuWsPPNP6z53BXmVBmQ6M04=
Subject key identifier: DD:0A:39:25:AA:23:F5:35:EF:E3:9F:A0:5B:FF:AF:C2:28:7A:1A:03
Authority key identifier: DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
Certificate issuer: /CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Certificate serial: 019E2A02211F74505297B5826B27C8A78BCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
Manifest number: 0EB8
Signing time: Fri 15 May 2026 05:00:43 +0000
Manifest this update: Fri 15 May 2026 05:00:43 +0000
Manifest next update: Sat 16 May 2026 05:00:43 +0000
Files and hashes: 1: 3AOqmk_p1gxc-FOpJIIiafHMdFI.crl (hash: Wxc79/kp6ZOTmAlwzlPmfDxwWf6ThJh1zVrPGpQvkXA=)
2: 7TZLT2P2zuuPjzUmClw3kX64yXM.roa (hash: fnAcb1tn2nnIoVX24Iibq3Ab9gwSJ7WX+AekjhFSNg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:21:1f:74:50:52:97:b5:82:6b:27:c8:a7:8b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Validity
Not Before: May 15 05:00:43 2026 GMT
Not After : May 16 05:00:43 2026 GMT
Subject: CN=dd0a3925aa23f535efe39fa05bffafc2287a1a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c7:46:36:13:21:78:33:18:1b:d0:1e:bf:07:
06:57:de:5f:fe:34:a6:d9:21:e9:c4:da:61:d6:98:
b5:61:9e:62:e3:b3:6e:ca:fb:f3:8e:cb:d8:b5:e1:
16:ea:f8:dc:27:e2:ae:6c:e8:6a:bf:07:12:12:5b:
12:55:53:2f:49:bd:e3:4d:bc:e9:3f:9f:24:6d:d9:
f7:ec:45:1a:69:8f:2d:45:8b:24:a2:1f:34:14:38:
55:47:82:e5:dd:59:b5:e3:da:e6:62:2c:cd:d8:ca:
dc:71:77:dd:b5:80:8b:d2:e7:6a:36:45:73:ec:81:
34:32:46:13:d3:91:a9:52:0f:27:4d:e3:b2:4e:8c:
10:e4:3d:a9:82:eb:4b:7f:ef:6e:16:e2:6c:fd:5b:
36:61:35:6f:c6:a7:b5:4e:31:e0:41:ae:5b:0b:18:
03:45:31:55:0f:4a:a5:b0:06:62:e4:64:d3:69:99:
3e:af:d7:5c:56:81:4f:6b:0e:10:f9:d1:73:58:82:
5e:58:2d:22:dd:8a:09:94:9b:26:8f:e7:49:b9:3c:
ba:b2:a2:9e:42:fa:51:87:e7:9a:b3:15:59:cf:13:
ad:69:4a:38:8e:41:10:f4:7d:6a:90:8c:5d:3e:9f:
0f:93:53:0d:0e:4f:c5:47:e0:73:82:90:97:19:1f:
6e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0A:39:25:AA:23:F5:35:EF:E3:9F:A0:5B:FF:AF:C2:28:7A:1A:03
X509v3 Authority Key Identifier:
keyid:DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:4a:f1:f5:cb:16:86:4e:df:34:76:25:bb:16:e6:a9:b3:62:
f8:ce:49:09:b0:31:d7:3c:88:dc:5d:b9:a1:42:2d:d3:6e:12:
a4:67:fb:06:cb:31:fa:be:83:2b:57:b9:9d:be:2d:74:92:11:
f1:a1:7c:b9:dd:85:1e:fe:c9:7a:aa:a9:21:67:34:c4:18:66:
f9:72:c6:1f:9a:73:bb:92:83:87:1f:da:79:aa:c4:d0:46:a8:
8b:52:89:82:02:c8:98:13:e2:e5:ee:f8:6f:1d:c5:9b:e0:b0:
02:de:fa:4c:9c:d1:84:00:60:35:73:f0:98:b7:bd:22:8d:d4:
e6:4c:54:aa:d5:65:6c:53:d7:6e:e9:0f:19:1f:1c:6f:66:ca:
53:12:77:6f:bf:e6:06:a3:46:47:6e:e2:bf:e9:4c:9f:cb:91:
50:9c:f4:ae:14:f7:2b:e3:ef:51:46:28:54:22:b3:7b:07:84:
1e:a0:89:d2:5a:46:00:38:90:20:88:0c:ff:a6:50:ee:e7:d0:
2d:85:5e:51:38:e9:cc:ed:56:56:cf:ff:ce:e1:5f:7c:d1:86:
e5:75:99:bf:95:4a:2a:4a:6f:95:e5:d0:72:22:3f:4a:4d:df:
2e:0f:d2:45:6b:8d:53:40:1d:3b:52:a5:90:63:ef:75:f7:87:
31:35:9a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:56:35 2026 by rpki-client