Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
File: 3QtmPEXXvCck0WhIUIdYHhREj7Y.mft (raw, json)
Hash identifier: zh4GP5xjgzZRecZFnEjTohdvdgF3FFyUTkTfBYBxRSs=
Subject key identifier: 04:30:33:9F:31:D1:56:26:B0:9A:90:F3:9D:EC:38:09:7F:60:8F:A9
Authority key identifier: DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
Certificate issuer: /CN=dd0b663c45d7bc2724d168485087581e14448fb6
Certificate serial: 019F190CE0CB4F29BDDC674AAB47D4CE7863
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
Manifest number: 1988
Signing time: Tue 30 Jun 2026 15:01:42 +0000
Manifest this update: Tue 30 Jun 2026 15:01:42 +0000
Manifest next update: Wed 01 Jul 2026 15:01:42 +0000
Files and hashes: 1: 0zAvG8q_rQz542VLQHfI3pwn2hU.roa (hash: EpeZpmHs3b50RgbC9T7I86EOA85BMvieUCH/Qo6Mt6U=)
2: 3QtmPEXXvCck0WhIUIdYHhREj7Y.crl (hash: OoCeRx5nH+wXJHq+NgC8VzEPAcqBACTOTDYGVSofCB8=)
3: gozTMRP9KybW0YQlfst5QWvJTAc.roa (hash: 1fB1QbWdo2Si+L9RD7xiEIKgMl1IQRY1BWEJBSr6TVA=)
4: nCAbVn_gsNs4x4asBKyazyvKXR0.roa (hash: Ir2ZDg7CX0Hx7nK6/8SSzS9hwNZYvwP7LhXhdGV2tlA=)
5: s5RTg8fa0nQHIcIumLzUhuAAt24.roa (hash: cqMD2IDYqFBpxsaJVxm5d2TxnTtqRKRBltHR4geFTsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:e0:cb:4f:29:bd:dc:67:4a:ab:47:d4:ce:78:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd0b663c45d7bc2724d168485087581e14448fb6
Validity
Not Before: Jun 30 15:01:42 2026 GMT
Not After : Jul 1 15:01:42 2026 GMT
Subject: CN=0430339f31d15626b09a90f39dec38097f608fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:a6:70:d2:ed:04:ef:fa:79:61:b5:d4:97:3c:
bd:69:d4:42:5a:bc:5d:40:c2:8e:9d:a8:20:e4:93:
29:b5:1f:3e:17:ec:35:f3:62:b6:a0:23:be:c4:71:
a1:99:99:0b:d9:ac:f8:d8:d0:00:3b:dd:3f:66:ce:
84:78:5f:1a:06:3b:16:0b:a1:6b:de:4f:be:c9:63:
4c:22:cb:c0:81:72:16:df:29:b5:2f:cb:7d:43:e4:
09:b8:1f:b8:04:7b:a6:ba:00:96:1b:99:51:d2:35:
f7:be:49:cb:20:26:34:4d:31:96:a2:3b:7e:80:2e:
bf:f9:b4:bf:dc:42:93:90:d8:07:29:97:8a:21:48:
44:cf:c4:17:19:e4:b4:e8:53:d9:b6:7d:91:60:01:
9c:b9:71:3d:06:ca:cd:82:a8:a9:ff:af:87:dd:14:
3f:ed:d4:ca:2e:a8:2e:0e:e6:ea:53:1c:49:25:0e:
42:91:6a:03:9b:35:b4:17:94:81:58:0c:1c:4c:28:
db:91:f3:f3:10:51:da:bb:e3:64:8e:78:93:3c:64:
8a:2c:2a:f9:17:ca:79:7c:cb:dd:8f:7f:10:d5:32:
36:3b:88:9f:3b:57:fa:54:3c:43:1f:f7:c4:c7:3f:
4f:ec:83:67:67:4c:85:6c:3d:25:95:d8:94:8a:8b:
bf:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:30:33:9F:31:D1:56:26:B0:9A:90:F3:9D:EC:38:09:7F:60:8F:A9
X509v3 Authority Key Identifier:
keyid:DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:1d:5e:8b:9d:ec:c2:46:a5:c8:76:d8:f2:f4:2d:cc:47:0c:
53:f9:5c:71:c8:19:ae:f6:43:90:2f:0d:0b:ec:8d:18:7c:03:
a2:54:32:ac:be:ba:52:c5:92:fc:8e:af:81:6d:11:a2:7b:ca:
90:d1:ac:26:89:bf:e9:89:d7:94:56:e4:7b:6c:a4:d7:e9:b7:
d4:e7:9c:b2:7e:aa:e6:1e:49:08:d8:1f:8d:09:e7:ef:c9:97:
9f:ed:59:5b:58:ad:65:94:c8:72:bd:e0:12:d5:0d:39:4e:03:
0b:39:0f:1b:a0:23:e6:81:35:d5:72:71:7b:ee:bc:0b:c6:4b:
50:37:44:36:5f:b9:06:6e:d6:84:3f:73:79:85:37:eb:97:64:
aa:cb:e3:e1:85:74:02:d4:ff:fd:04:6f:74:ec:34:9e:c8:b7:
e5:c8:af:3e:05:69:fd:8d:89:47:b9:95:0f:3d:d5:37:01:2e:
db:6b:d7:c6:38:1c:ee:8b:cc:3e:99:f9:35:68:63:e7:b2:94:
6e:e5:e4:82:c1:ef:ae:6e:30:a0:78:31:72:69:0b:43:a7:99:
c8:18:0f:c6:27:7c:58:86:d8:a7:f5:da:cb:9d:f5:53:38:bc:
fb:da:ac:a0:2c:69:35:8c:17:3c:9e:84:24:78:8e:f4:8d:54:
c4:1a:40:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:26 2026 by rpki-client