Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
File: 3AOqmk_p1gxc-FOpJIIiafHMdFI.mft (raw, json)
Hash identifier: WuTQUqe0QLI8HOcfdzrZ2GJ8xNFEMsyoVko994xkKqI=
Subject key identifier: FE:74:AA:41:15:53:89:11:8C:0C:C6:2C:86:B7:A2:B2:2D:C8:0A:30
Authority key identifier: DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
Certificate issuer: /CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Certificate serial: 019F11C0CAE7B9B164B52395A7C5C168C4CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
Manifest number: 0F30
Signing time: Mon 29 Jun 2026 05:01:15 +0000
Manifest this update: Mon 29 Jun 2026 05:01:15 +0000
Manifest next update: Tue 30 Jun 2026 05:01:15 +0000
Files and hashes: 1: 3AOqmk_p1gxc-FOpJIIiafHMdFI.crl (hash: yR9nfKFSzovWDZmbmCDvAiQ/8PK2TCAAGjSmFZkDgZk=)
2: 7TZLT2P2zuuPjzUmClw3kX64yXM.roa (hash: fnAcb1tn2nnIoVX24Iibq3Ab9gwSJ7WX+AekjhFSNg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:ca:e7:b9:b1:64:b5:23:95:a7:c5:c1:68:c4:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Validity
Not Before: Jun 29 05:01:15 2026 GMT
Not After : Jun 30 05:01:15 2026 GMT
Subject: CN=fe74aa41155389118c0cc62c86b7a2b22dc80a30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f8:e5:11:79:32:6e:9b:16:36:5d:d0:d8:26:
3e:b0:03:2b:18:90:24:32:89:ca:d7:9c:9b:41:e0:
d5:86:66:c2:9d:92:92:70:df:29:fd:bb:33:52:33:
7b:7c:af:2e:3b:77:de:d7:34:ee:27:48:f6:d3:fe:
62:5b:b1:12:ec:6e:dd:5e:a3:c3:c3:65:76:5e:45:
a1:13:81:2c:8f:86:09:32:fc:79:9a:93:c1:14:60:
ef:13:1f:58:d4:e8:6d:2d:0f:ac:2b:1b:43:62:df:
58:3b:29:bb:31:2e:5a:da:aa:5f:61:c1:73:3a:61:
32:69:52:58:08:22:7e:2e:31:f9:54:b1:23:6d:2b:
ee:a3:bd:b4:c5:71:2a:2c:7b:77:20:8e:0d:b1:ae:
f3:48:b7:c9:f2:66:ed:76:58:15:a9:22:ad:50:cc:
b1:29:17:0c:6f:18:a8:bf:68:91:9e:70:ec:e7:9d:
e9:27:27:44:3c:8d:47:c8:5f:9a:28:18:e9:60:9c:
0c:18:5d:da:d0:b4:7f:2c:2d:37:e9:f4:b4:b5:31:
3f:12:8a:ef:68:4c:09:05:93:5a:36:e2:6a:7f:0e:
5d:f1:6f:02:82:56:17:df:95:89:b2:b8:a2:a4:40:
ac:0b:ad:34:d8:c4:e5:72:a7:11:8a:16:aa:11:4e:
a4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:74:AA:41:15:53:89:11:8C:0C:C6:2C:86:B7:A2:B2:2D:C8:0A:30
X509v3 Authority Key Identifier:
keyid:DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:01:9a:02:7b:32:c0:d1:ee:67:a5:09:ef:d8:b4:7e:5a:64:
8c:52:21:d4:68:1e:8a:7f:af:e6:ee:90:4f:d5:d3:af:19:54:
d9:b2:33:16:4b:83:1a:bb:d6:0d:19:bc:cf:10:0d:7f:9d:85:
61:2d:59:fe:85:63:e8:6b:58:2f:3f:55:96:01:cc:83:a4:3d:
a2:ec:d3:dd:ee:19:d9:71:d7:a8:7a:2c:b1:ea:32:23:52:18:
81:73:ca:c4:1c:9c:44:26:e1:70:61:13:a0:40:5f:f6:71:1b:
dc:00:96:70:80:b9:0e:81:38:c9:bd:a0:aa:57:3b:fe:a1:80:
6a:65:ad:e3:b6:a3:ad:1f:60:ad:a5:b8:cc:9c:75:2a:43:1e:
15:b4:53:62:82:08:c1:a5:ff:06:52:6f:77:8c:24:06:0e:9d:
1a:c3:37:7d:bf:33:a3:93:51:4d:89:1c:04:f6:6f:8b:a2:95:
72:6e:e0:a1:10:5b:76:43:92:12:9e:30:15:3b:52:f6:98:9e:
f4:cd:73:27:8c:6e:ac:91:33:df:73:a9:24:1b:38:cc:d8:fb:
56:db:5b:84:d6:e8:fb:93:7a:90:86:c1:b0:28:4f:02:a9:78:
78:77:85:c0:21:3a:00:23:fd:34:12:66:16:84:4f:86:52:11:
d3:f7:82:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8RwMrnubFktSOVp8XBaMTOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMDNhYTlhNGZlOWQ2MGM1Y2Y4NTNhOTI0ODIyMjY5ZjFj
Yzc0NTIwHhcNMjYwNjI5MDUwMTE1WhcNMjYwNjMwMDUwMTE1WjAzMTEwLwYDVQQD
EyhmZTc0YWE0MTE1NTM4OTExOGMwY2M2MmM4NmI3YTJiMjJkYzgwYTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvjlEXkybpsWNl3Q2CY+sAMrGJAk
MonK15ybQeDVhmbCnZKScN8p/bszUjN7fK8uO3fe1zTuJ0j20/5iW7ES7G7dXqPD
w2V2XkWhE4Esj4YJMvx5mpPBFGDvEx9Y1OhtLQ+sKxtDYt9YOym7MS5a2qpfYcFz
OmEyaVJYCCJ+LjH5VLEjbSvuo720xXEqLHt3II4Nsa7zSLfJ8mbtdlgVqSKtUMyx
KRcMbxiov2iRnnDs553pJydEPI1HyF+aKBjpYJwMGF3a0LR/LC036fS0tTE/Eorv
aEwJBZNaNuJqfw5d8W8CglYX35WJsriipECsC6002MTlcqcRihaqEU6k8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP50qkEVU4kRjAzGLIa3orItyAowMB8GA1UdIwQY
MBaAFNwDqppP6dYMXPhTqSSCImnxzHRSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0FPcW1rX3AxZ3hjLUZPcEpJSWlhZkhNZEZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kODRlMWUtY2M1My00Y2MyLWFhYjkt
MWNhNzY2ZmJlZWJhLzEvM0FPcW1rX3AxZ3hjLUZPcEpJSWlhZkhNZEZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi9kODRlMWUtY2M1My00Y2MyLWFhYjktMWNhNzY2ZmJlZWJh
LzEvM0FPcW1rX3AxZ3hjLUZPcEpJSWlhZkhNZEZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATAGaAnsy
wNHuZ6UJ79i0flpkjFIh1Ggein+v5u6QT9XTrxlU2bIzFkuDGrvWDRm8zxANf52F
YS1Z/oVj6GtYLz9VlgHMg6Q9ouzT3e4Z2XHXqHosseoyI1IYgXPKxBycRCbhcGET
oEBf9nEb3ACWcIC5DoE4yb2gqlc7/qGAamWt47ajrR9graW4zJx1KkMeFbRTYoII
waX/BlJvd4wkBg6dGsM3fb8zo5NRTYkcBPZvi6KVcm7goRBbdkOSEp4wFTtS9pie
9M1zJ4xurJEz33OpJBs4zNj7VttbhNbo+5N6kIbBsChPAql4eHeFwCE6ACP9NBJm
FoRPhlIR0/eCNg==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:35:16 2026 by rpki-client