Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: JAgEQ0Mk0YYSe3O/DNvlUrAjNjfU9MBkddIJpKuc2QA=
Subject key identifier: FA:FE:28:11:3A:FD:F4:C2:C3:21:D4:BD:23:16:80:49:B3:85:E8:85
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 019E3117AC350B28241D1E2D06196AAD27B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 190F
Signing time: Sat 16 May 2026 14:01:35 +0000
Manifest this update: Sat 16 May 2026 14:01:35 +0000
Manifest next update: Sun 17 May 2026 14:01:35 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: dvy6MkTmHuhIczAIG/EjG8TxpFtZH395l7fSkTwcCv0=)
2: BVmlLvTO3TnwU-WykyLWkZijiEQ.roa (hash: GjheiEWnUhL3hO3K8TeuKDirKE8ozbAnofhtWixZIn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:ac:35:0b:28:24:1d:1e:2d:06:19:6a:ad:27:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: May 16 14:01:35 2026 GMT
Not After : May 17 14:01:35 2026 GMT
Subject: CN=fafe28113afdf4c2c321d4bd23168049b385e885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:64:80:51:2f:15:34:3c:7e:67:82:c7:b4:14:
f6:cb:87:b7:51:f1:38:04:6c:61:11:fb:db:69:71:
1d:8c:78:a5:4e:89:9e:18:d2:36:3f:31:49:76:60:
3c:e4:6e:51:3e:cc:d2:55:51:e6:5c:37:3e:c0:b5:
2d:f8:8f:30:9a:3c:40:b0:ef:cd:e0:0f:10:d3:c6:
b3:bf:bd:8f:9c:1f:2f:14:02:e2:9f:59:72:27:23:
a6:1c:ec:f1:98:e6:e9:84:21:2f:3f:d4:f5:bc:0a:
98:6b:b7:77:eb:8a:e8:31:d7:a4:66:03:2b:55:0d:
c3:9c:97:df:4e:28:dd:c9:fe:5c:62:cf:8d:fd:17:
e5:dc:13:04:00:0e:7b:33:a4:0f:a6:74:bd:be:39:
c7:7f:c4:95:a0:f2:a4:5e:f7:5b:0b:5a:87:55:91:
56:5b:f7:11:9e:5c:b9:aa:ff:c7:53:ab:9d:ac:9e:
22:0a:d8:44:f9:ca:f5:c9:cc:de:68:24:1a:72:3e:
86:6d:2d:91:b5:9c:66:01:78:64:b6:d5:01:56:53:
72:63:5d:c5:05:50:ba:ca:64:2b:67:a4:28:24:a2:
4d:56:7b:ef:32:ac:c0:96:8f:16:19:ca:7b:cc:d7:
e2:ca:0f:4f:c5:3f:06:b3:90:58:a6:d2:fc:7d:fe:
17:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:FE:28:11:3A:FD:F4:C2:C3:21:D4:BD:23:16:80:49:B3:85:E8:85
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:b5:cb:5c:ff:d6:35:12:07:f0:55:50:19:2f:10:f6:56:e9:
ff:22:39:f1:21:da:ce:d3:07:c7:7d:9b:ab:6b:b4:9a:23:12:
4c:97:68:74:de:44:5f:58:5c:4f:c8:c4:6a:63:b0:96:9d:c0:
18:83:4a:ef:27:18:b4:97:58:ee:8e:c1:09:9e:a7:89:3d:51:
bc:36:d9:37:5b:68:e6:b1:b8:56:59:59:70:8d:52:96:ef:02:
6d:ee:f0:26:39:7d:f5:bc:ec:a7:77:ae:ca:26:3e:41:18:e8:
a8:fe:8a:35:e7:04:b1:82:b9:29:80:5f:6b:a9:ca:bc:48:37:
96:e4:37:9a:90:bf:60:c9:f0:99:06:21:77:f0:d6:99:36:64:
b9:47:92:f5:4c:b6:0a:fc:32:56:b8:06:51:0d:bf:fa:33:2e:
30:e1:53:24:b3:60:55:c7:1c:fa:80:8d:59:eb:79:b2:a1:b3:
2a:88:8b:69:1c:7c:7b:b8:d6:e1:b4:63:b8:d6:85:ee:62:ca:
81:b8:c6:da:18:52:0f:2a:27:9e:a7:0a:72:05:43:af:22:3e:
02:de:ea:89:ab:df:e2:3f:89:92:ee:81:97:05:fa:e8:f3:a3:
cf:0f:68:23:7a:22:6c:c3:60:b8:71:d6:9a:cd:02:f4:1f:f7:
3c:ff:e1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:39:25 2026 by rpki-client