Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
File: 3XF0IQf16FBis-CuZa-kuuZw4Es.mft (raw, json)
Hash identifier: 7W7Rnx7MnUQaEacTGj4+Treza46n1pSEtS4K6h9vIr8=
Subject key identifier: DB:77:DC:C0:DD:D5:DB:26:9F:B5:82:34:3D:9D:35:C4:9B:0E:E2:5F
Authority key identifier: DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
Certificate issuer: /CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Certificate serial: 019F189EAB71904CADD3F60E47E35BD891D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
Manifest number: 0808
Signing time: Tue 30 Jun 2026 13:01:19 +0000
Manifest this update: Tue 30 Jun 2026 13:01:19 +0000
Manifest next update: Wed 01 Jul 2026 13:01:19 +0000
Files and hashes: 1: 3XF0IQf16FBis-CuZa-kuuZw4Es.crl (hash: 7Atj2fWrYbhHy/kIXg4gZnfPL85FgEa5jqCpQDIp4RQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:ab:71:90:4c:ad:d3:f6:0e:47:e3:5b:d8:91:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Validity
Not Before: Jun 30 13:01:19 2026 GMT
Not After : Jul 1 13:01:19 2026 GMT
Subject: CN=db77dcc0ddd5db269fb582343d9d35c49b0ee25f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:76:c8:3b:fb:7d:06:73:7f:88:79:ff:a7:f2:
63:f1:8d:28:44:66:13:91:3d:cc:48:9a:75:3d:8e:
c0:a3:04:97:28:4d:ea:cb:c3:32:57:b7:0b:ad:a4:
50:07:01:33:77:d3:a6:4d:f5:59:62:dc:fd:be:eb:
37:1e:e5:72:ad:d2:58:74:1c:4f:8e:80:c4:ef:d1:
45:b3:8a:79:cc:a7:fe:cb:ec:bb:07:b9:12:a3:9a:
26:89:8a:e5:8a:5f:e3:3b:56:f1:61:7a:dc:d9:47:
ba:1a:d3:5c:cb:07:ef:be:1e:98:f7:69:bd:5d:94:
01:f5:57:63:91:9c:44:dc:e5:ce:a2:cc:30:0b:7b:
a9:86:24:1e:81:ae:c7:93:4b:af:ff:55:5e:99:fc:
e2:58:c0:d9:de:98:42:7f:7b:1e:65:38:c0:fe:99:
bb:0a:94:f1:3b:ce:6b:82:23:81:6f:ac:4b:38:bb:
37:27:e3:47:86:76:0b:eb:d8:a5:d8:3c:d9:b0:3e:
6b:18:01:3e:28:6b:0a:b4:92:27:e4:4b:63:c0:15:
fa:46:5f:08:2f:49:35:1c:4f:73:c3:05:63:99:5e:
fc:d7:08:ac:2b:53:36:da:7b:bc:de:5c:3c:8c:6d:
a1:00:e8:53:ec:6c:59:e9:6e:79:f1:d1:4a:b0:7c:
2d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:77:DC:C0:DD:D5:DB:26:9F:B5:82:34:3D:9D:35:C4:9B:0E:E2:5F
X509v3 Authority Key Identifier:
keyid:DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:49:21:82:d6:05:bf:7d:89:53:f3:68:4e:d8:2f:16:40:bf:
2d:9d:56:36:d6:45:5b:b5:1e:bb:25:69:3e:78:24:2b:b3:d6:
c0:f6:fc:48:55:55:5d:7f:0a:bd:5b:98:d4:b4:96:65:8e:6c:
b3:fe:5c:81:c9:d5:03:c5:d4:fb:8a:2c:87:c1:b6:87:6b:67:
66:02:3a:8d:54:b3:30:56:96:b0:7c:4b:03:81:8f:0d:84:6c:
9f:77:58:a3:df:c2:40:94:63:ad:56:c9:bb:22:e2:ac:34:2f:
21:20:d9:05:c8:12:a1:c4:9a:09:c8:66:ec:87:fa:29:75:87:
97:51:16:2a:7b:f2:89:97:af:b9:bc:36:00:3b:c4:76:85:68:
2c:40:17:cf:79:ab:84:c5:3e:24:6a:63:bf:8f:35:43:91:6d:
fa:fe:7d:55:f3:e7:6f:28:6c:d5:20:6f:24:e2:cc:bd:06:a3:
f7:47:c7:dc:a0:b7:51:a6:09:4b:14:9e:96:1a:08:fa:72:e9:
54:5a:23:a9:0f:f0:dc:6a:c4:ea:ad:71:61:4c:20:60:35:cf:
b3:4f:b8:b0:34:35:39:65:ad:99:9e:fe:54:92:61:aa:a2:67:
82:2b:b0:ad:15:78:e5:8b:e4:24:3a:ce:e1:93:2c:81:e5:a8:
91:b0:07:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YnqtxkEyt0/YOR+Nb2JHSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNzE3NDIxMDdmNWU4NTA2MmIzZTBhZTY1YWZhNGJhZTY3
MGUwNGIwHhcNMjYwNjMwMTMwMTE5WhcNMjYwNzAxMTMwMTE5WjAzMTEwLwYDVQQD
EyhkYjc3ZGNjMGRkZDVkYjI2OWZiNTgyMzQzZDlkMzVjNDliMGVlMjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznbIO/t9BnN/iHn/p/Jj8Y0oRGYT
kT3MSJp1PY7AowSXKE3qy8MyV7cLraRQBwEzd9OmTfVZYtz9vus3HuVyrdJYdBxP
joDE79FFs4p5zKf+y+y7B7kSo5omiYrlil/jO1bxYXrc2Ue6GtNcywfvvh6Y92m9
XZQB9VdjkZxE3OXOoswwC3uphiQega7Hk0uv/1VemfziWMDZ3phCf3seZTjA/pm7
CpTxO85rgiOBb6xLOLs3J+NHhnYL69il2DzZsD5rGAE+KGsKtJIn5EtjwBX6Rl8I
L0k1HE9zwwVjmV781wisK1M22nu83lw8jG2hAOhT7GxZ6W558dFKsHwt1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNt33MDd1dsmn7WCND2dNcSbDuJfMB8GA1UdIwQY
MBaAFN1xdCEH9ehQYrPgrmWvpLrmcOBLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1hGMElRZjE2RkJpcy1DdVphLWt1dVp3NEVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8yZGU0YTktNjU4Yy00MDZiLThlZTct
YTc3MDZiYTMwODg5LzEvM1hGMElRZjE2RkJpcy1DdVphLWt1dVp3NEVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy8yZGU0YTktNjU4Yy00MDZiLThlZTctYTc3MDZiYTMwODg5
LzEvM1hGMElRZjE2RkJpcy1DdVphLWt1dVp3NEVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn0khgtYF
v32JU/NoTtgvFkC/LZ1WNtZFW7UeuyVpPngkK7PWwPb8SFVVXX8KvVuY1LSWZY5s
s/5cgcnVA8XU+4osh8G2h2tnZgI6jVSzMFaWsHxLA4GPDYRsn3dYo9/CQJRjrVbJ
uyLirDQvISDZBcgSocSaCchm7If6KXWHl1EWKnvyiZevubw2ADvEdoVoLEAXz3mr
hMU+JGpjv481Q5Ft+v59VfPnbyhs1SBvJOLMvQaj90fH3KC3UaYJSxSelhoI+nLp
VFojqQ/w3GrE6q1xYUwgYDXPs0+4sDQ1OWWtmZ7+VJJhqqJngiuwrRV45YvkJDrO
4ZMsgeWokbAHMQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:57 2026 by rpki-client