Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
File: 3W2WGgYrcca_r9m6jqaf3R-mOAI.mft (raw, json)
Hash identifier: PLE+peac6P+Qi61hbmEhd5L9IcZCOYBqo0VlD7serAA=
Subject key identifier: B3:B1:49:7D:59:82:3F:12:AD:DD:71:96:C0:EE:1C:DB:18:EA:FF:C9
Authority key identifier: DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
Certificate issuer: /CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Certificate serial: 019E3117D0B10ABB76BA755322DDCAB59D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
Manifest number: 04E9
Signing time: Sat 16 May 2026 14:01:44 +0000
Manifest this update: Sat 16 May 2026 14:01:44 +0000
Manifest next update: Sun 17 May 2026 14:01:44 +0000
Files and hashes: 1: 3W2WGgYrcca_r9m6jqaf3R-mOAI.crl (hash: d68jwYZnRCMx5ctsbnzsZf1nHmu/+vGR8dLEdvZ9wbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:d0:b1:0a:bb:76:ba:75:53:22:dd:ca:b5:9d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Validity
Not Before: May 16 14:01:44 2026 GMT
Not After : May 17 14:01:44 2026 GMT
Subject: CN=b3b1497d59823f12addd7196c0ee1cdb18eaffc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:61:13:3a:5f:88:e7:95:23:fc:28:b2:2b:63:
02:b0:de:9d:d2:76:13:12:8c:44:31:75:67:6d:3f:
44:68:2e:a5:50:47:7b:48:44:64:c7:55:93:4b:be:
90:ad:9a:64:6c:9f:89:48:a8:3a:7d:06:66:79:83:
8d:be:10:36:9e:d6:fa:6a:e9:16:ef:9e:30:19:d9:
72:73:f2:48:d5:11:ab:4f:e1:45:95:77:65:86:ad:
1e:29:85:ca:04:4e:58:ac:4d:85:93:5b:34:b6:b3:
ce:c1:c9:3c:3a:d8:42:09:07:a6:1e:10:07:3c:e1:
56:33:18:90:63:67:7e:82:e0:cc:17:94:68:8b:6d:
a1:ab:1f:9b:99:66:b5:38:40:16:5a:2f:2f:a1:54:
3b:05:da:29:b0:39:de:50:c7:eb:f0:91:16:ab:2a:
0b:68:34:b1:f3:8e:c5:9e:a7:fe:a1:26:bb:1e:7c:
19:38:c5:90:50:2f:72:07:63:20:42:64:fa:95:02:
95:17:1c:06:35:78:df:78:98:41:0a:37:97:86:31:
ee:bb:29:8e:73:c4:ac:fd:44:0f:35:2f:fe:0e:3d:
5d:cf:1c:d2:97:ae:09:95:da:87:d0:4f:0f:96:20:
eb:e2:09:a6:23:45:48:e7:50:a3:35:61:f2:3a:8a:
18:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B1:49:7D:59:82:3F:12:AD:DD:71:96:C0:EE:1C:DB:18:EA:FF:C9
X509v3 Authority Key Identifier:
keyid:DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:25:7f:31:5c:3a:12:df:65:c1:c4:9d:78:cd:a6:08:23:7c:
2b:38:0d:f3:46:1a:5f:be:ba:a5:e3:58:c1:43:ee:1f:20:00:
a9:a4:c6:67:fc:41:9b:93:36:06:69:5c:59:06:9f:82:50:f3:
27:d6:73:2c:10:13:d1:66:c9:cb:08:4a:43:c2:4a:c2:5f:90:
1e:40:9e:06:e7:ed:5e:6a:e2:ef:37:88:39:c1:80:3d:61:02:
1c:dd:28:ac:d9:38:14:fc:4d:ed:f5:ea:a7:10:d3:b7:08:0e:
82:36:9d:8f:1d:cf:69:e5:66:bb:b0:93:22:b0:fe:1a:d9:2e:
a7:35:6e:c3:1b:19:ab:a3:4c:2f:77:d9:f7:09:44:05:ed:7a:
8c:72:09:0d:c2:65:53:32:8d:bb:e1:82:ee:3d:b4:5b:75:f6:
f3:1a:78:c5:be:37:da:28:81:fc:cd:68:61:df:0b:f3:10:e0:
f1:bb:dd:f9:b0:8b:19:06:e9:81:02:08:82:eb:44:a2:ab:70:
36:86:f9:f8:ae:5d:4e:b9:4c:e6:94:40:29:21:c0:13:b1:ca:
f6:9f:aa:27:f7:e0:ee:8d:c4:af:87:86:19:e1:a6:46:09:44:
90:16:f3:ed:f0:58:a1:c6:29:57:97:d3:28:46:28:10:9a:2d:
78:95:04:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4xF9CxCrt2unVTIt3KtZ0zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNmQ5NjFhMDYyYjcxYzZiZmFmZDliYThlYTY5ZmRkMWZh
NjM4MDIwHhcNMjYwNTE2MTQwMTQ0WhcNMjYwNTE3MTQwMTQ0WjAzMTEwLwYDVQQD
EyhiM2IxNDk3ZDU5ODIzZjEyYWRkZDcxOTZjMGVlMWNkYjE4ZWFmZmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmETOl+I55Uj/CiyK2MCsN6d0nYT
EoxEMXVnbT9EaC6lUEd7SERkx1WTS76QrZpkbJ+JSKg6fQZmeYONvhA2ntb6aukW
754wGdlyc/JI1RGrT+FFlXdlhq0eKYXKBE5YrE2Fk1s0trPOwck8OthCCQemHhAH
POFWMxiQY2d+guDMF5Roi22hqx+bmWa1OEAWWi8voVQ7BdopsDneUMfr8JEWqyoL
aDSx847Fnqf+oSa7HnwZOMWQUC9yB2MgQmT6lQKVFxwGNXjfeJhBCjeXhjHuuymO
c8Ss/UQPNS/+Dj1dzxzSl64JldqH0E8PliDr4gmmI0VI51CjNWHyOooYYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLOxSX1Zgj8Srd1xlsDuHNsY6v/JMB8GA1UdIwQY
MBaAFN1tlhoGK3HGv6/Zuo6mn90fpjgCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1cyV0dnWXJjY2FfcjltNmpxYWYzUi1tT0FJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS81Y2M0ZDYtNDJmZC00NDA2LTg0YWUt
NDgwZmQ4NGE4NDFmLzEvM1cyV0dnWXJjY2FfcjltNmpxYWYzUi1tT0FJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS81Y2M0ZDYtNDJmZC00NDA2LTg0YWUtNDgwZmQ4NGE4NDFm
LzEvM1cyV0dnWXJjY2FfcjltNmpxYWYzUi1tT0FJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbiV/MVw6
Et9lwcSdeM2mCCN8KzgN80YaX766peNYwUPuHyAAqaTGZ/xBm5M2BmlcWQafglDz
J9ZzLBAT0WbJywhKQ8JKwl+QHkCeBuftXmri7zeIOcGAPWECHN0orNk4FPxN7fXq
pxDTtwgOgjadjx3PaeVmu7CTIrD+GtkupzVuwxsZq6NML3fZ9wlEBe16jHIJDcJl
UzKNu+GC7j20W3X28xp4xb432iiB/M1oYd8L8xDg8bvd+bCLGQbpgQIIgutEoqtw
Nob5+K5dTrlM5pRAKSHAE7HK9p+qJ/fg7o3Er4eGGeGmRglEkBbz7fBYocYpV5fT
KEYoEJoteJUE2w==
-----END CERTIFICATE-----
Generated at Sat May 16 17:55:52 2026 by rpki-client