Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
File: 3YpOHe5bseZXmxFhypEsqcA7Ru0.mft (raw, json)
Hash identifier: 85WCzBwXXIDmHbhYHCTdAg4X1u1gg5dBp90bRp5LoXA=
Subject key identifier: CA:B5:B1:E4:B5:9F:75:C2:A1:99:32:03:1E:87:5A:9F:A6:D9:81:65
Authority key identifier: DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
Certificate issuer: /CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Certificate serial: 019F189ED645EB8203ADFAF8C3945C12E6FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
Manifest number: 12DB
Signing time: Tue 30 Jun 2026 13:01:30 +0000
Manifest this update: Tue 30 Jun 2026 13:01:30 +0000
Manifest next update: Wed 01 Jul 2026 13:01:30 +0000
Files and hashes: 1: 3YpOHe5bseZXmxFhypEsqcA7Ru0.crl (hash: Is/8uxx4fFJEO9F8KGzY13o4jdp0O3CzeJ2lf2wZAo4=)
2: h3ZDg5youB0K7vntlWcD6_hznfg.roa (hash: 9Ot/r2EVZQa+csMn0s0+LAGhdTl5GbdXVa69dBPCmRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:d6:45:eb:82:03:ad:fa:f8:c3:94:5c:12:e6:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Validity
Not Before: Jun 30 13:01:30 2026 GMT
Not After : Jul 1 13:01:30 2026 GMT
Subject: CN=cab5b1e4b59f75c2a19932031e875a9fa6d98165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:48:ab:f5:1a:74:7c:98:a3:c2:db:ca:73:72:
7c:e2:d6:17:95:c8:26:3b:8e:19:e0:bd:5d:e6:b1:
d8:c2:81:c2:d7:cf:1c:0c:d0:a7:6f:5d:6b:4b:50:
38:10:e3:f1:74:37:e6:dd:73:48:c1:09:bb:65:da:
e8:a2:96:c8:19:00:38:5b:7c:d4:ce:f4:6e:e1:5c:
5a:45:42:87:36:a2:ac:bf:f8:98:21:15:54:e4:7c:
5d:62:a7:f1:73:f6:c8:76:4d:71:13:5b:9b:6c:04:
4a:31:13:87:11:e9:a9:c7:86:bf:1b:3d:65:0a:80:
65:cc:4b:78:94:2f:30:e0:79:7e:eb:f4:d3:7b:76:
89:db:03:3a:55:6a:20:49:8d:e8:40:31:38:90:ef:
e8:54:79:05:ba:19:48:b2:87:16:c9:64:12:44:b8:
5f:63:61:74:74:5c:23:ab:c3:c4:85:1f:2b:27:65:
5b:69:ca:bd:c4:df:9b:76:71:82:d8:9b:0d:e1:90:
8b:8d:0b:54:f1:77:0b:aa:83:58:ad:90:b2:c4:33:
46:dc:db:20:35:95:d5:81:00:bc:e2:d1:13:8a:f7:
98:9a:f5:1f:15:25:e9:48:4c:42:51:30:80:d4:50:
77:56:7a:4a:86:82:99:ab:bd:ae:60:27:c1:b2:63:
45:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B5:B1:E4:B5:9F:75:C2:A1:99:32:03:1E:87:5A:9F:A6:D9:81:65
X509v3 Authority Key Identifier:
keyid:DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:94:89:d1:d5:b0:bc:3f:e3:5b:f6:f7:30:11:85:39:b9:0f:
06:62:4f:27:8f:d0:74:70:1e:f1:bb:f7:2b:59:63:dc:b9:c5:
84:60:d0:fb:e6:f2:14:5a:79:a9:6c:b9:d2:f4:62:aa:9e:19:
48:b5:7e:de:fb:f4:49:f6:a3:a7:56:ed:ae:2b:16:28:f7:70:
5c:48:ba:f8:45:c5:3a:7d:cb:1b:4a:6b:97:2a:8b:d1:8b:ba:
c8:ac:4c:01:ed:7f:3a:87:67:02:7f:cf:bb:cc:04:2d:4b:01:
de:83:8e:dd:cd:64:dc:c8:ad:90:ae:c3:28:c5:f5:01:5d:ad:
bd:9c:72:b4:7c:37:09:24:c2:77:e4:27:7e:a2:c6:44:4f:7a:
30:31:30:cc:40:79:9d:c3:02:c4:cb:2b:91:e3:53:50:46:e3:
81:ae:a4:27:2a:fc:b8:b5:26:d3:10:d9:a5:ae:a0:09:2f:b7:
ac:19:08:e7:78:e7:45:22:65:17:12:ad:f2:14:60:77:9e:58:
69:5e:17:ee:45:17:6f:01:a9:cd:51:32:f7:87:b1:d7:0e:b9:
dc:e3:39:46:13:71:78:17:64:15:ab:d0:b0:6c:3a:45:8c:9e:
20:88:e9:f0:82:a6:f7:47:68:fa:11:1f:9a:72:77:e5:bd:5c:
9e:cb:48:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:17:46 2026 by rpki-client