Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: 7h7en2vuar0E3m215F3mk3UQy6JpLXliEVY9WFpWX0Q=
Subject key identifier: 41:1E:E7:FF:1B:45:47:14:D0:34:28:15:12:55:11:90:1B:52:28:C9
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 019E314E5E95050783198071841A8F2665C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 0D22
Signing time: Sat 16 May 2026 15:01:20 +0000
Manifest this update: Sat 16 May 2026 15:01:20 +0000
Manifest next update: Sun 17 May 2026 15:01:20 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: IbkNL/1yE4Iftfo58O8AEYYGtgyBDgtw5paD9x33vbY=)
2: qVOiKU3-XCJIV1dlmVqm9Z8OCSU.roa (hash: 1b1b4ZznQQVB7nOvdHCZX+1O8620BLLwp7A6OVcEvQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4e:5e:95:05:07:83:19:80:71:84:1a:8f:26:65:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: May 16 15:01:20 2026 GMT
Not After : May 17 15:01:20 2026 GMT
Subject: CN=411ee7ff1b454714d0342815125511901b5228c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7c:fc:e8:ab:c8:a9:44:58:4a:78:5e:8f:df:
26:51:a1:9b:49:f9:74:18:1d:40:3c:26:a1:d2:35:
86:26:7f:50:40:6b:02:dc:41:eb:b8:8a:30:cb:f6:
05:2b:c5:76:fd:b5:99:74:82:5d:d8:cf:18:80:5a:
0b:b6:eb:ba:1a:6a:86:af:e1:1b:8d:2a:19:37:a3:
b7:9a:f6:b5:13:8a:92:b9:65:82:ce:c8:ce:e1:92:
c0:20:f5:8f:cb:15:90:d4:be:d9:40:c6:bb:98:74:
97:c5:53:fd:c7:a3:71:46:bd:23:9e:42:34:10:e7:
4d:4f:67:78:fa:51:3a:74:07:bf:6c:5e:35:04:88:
91:f3:08:a1:c0:6f:5f:a0:b1:9a:b2:04:45:47:53:
97:43:4b:34:65:06:2c:5a:66:a4:f1:7a:65:5b:15:
0a:69:4f:10:5e:8f:55:a0:62:ec:14:05:8d:3e:89:
ce:8b:4d:55:30:ae:94:4b:82:1e:91:0d:06:2c:e6:
bc:7b:69:b5:56:5e:58:76:68:e0:9e:14:3b:f0:2c:
0a:aa:d3:cb:c2:c4:d5:51:b3:5c:f9:d3:05:12:1a:
ad:86:dc:10:5a:4e:81:8d:e1:3b:b7:fe:5f:32:47:
c5:49:74:01:7f:bb:cc:74:3f:0a:bc:78:44:25:3e:
e4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1E:E7:FF:1B:45:47:14:D0:34:28:15:12:55:11:90:1B:52:28:C9
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:b9:1d:dd:d2:37:48:1e:dc:9b:9b:f1:de:6d:ac:72:6d:f3:
36:a4:fc:8c:93:98:b4:54:e0:20:b7:69:56:94:f5:f7:47:44:
cb:8c:ad:26:99:da:b3:00:c0:af:f5:01:ae:31:b4:7f:7d:fc:
ec:a6:93:14:f7:86:11:00:5c:6d:51:b2:28:eb:08:d0:ba:3c:
e2:b8:ea:a0:73:4a:28:c1:b8:0d:9c:8b:5d:63:86:35:ad:60:
73:79:37:85:03:45:2f:46:d1:fd:40:0d:9c:e5:0f:be:31:45:
04:87:fd:fb:7d:86:0a:9f:a2:79:76:a6:3c:8e:a7:a3:e4:4e:
f3:ac:96:85:1b:74:80:a3:0a:33:d8:d2:3c:34:00:67:f9:08:
2c:d4:14:87:c8:fc:09:51:dd:f6:e3:27:38:29:30:ac:32:12:
72:9d:71:58:bc:8a:fd:7b:31:02:70:70:0a:b9:83:df:d9:84:
7e:dd:a8:f1:03:da:86:3b:57:0b:b0:a1:2c:2d:17:71:14:e0:
2f:4f:e7:ba:a0:c0:22:d5:5a:ee:c0:99:90:b8:29:a4:91:e3:
e4:fd:a3:bc:31:d6:96:36:42:b7:21:8f:f5:64:47:90:cf:0b:
d5:c6:58:21:c9:f4:e5:df:84:7e:44:12:eb:56:48:e2:11:7d:
3d:20:7e:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4xTl6VBQeDGYBxhBqPJmXIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNWIyMjRiNjU5M2U1NTgwMzhhOWU0MGU2NjBjNzcxNDI3
NTVjMWIwHhcNMjYwNTE2MTUwMTIwWhcNMjYwNTE3MTUwMTIwWjAzMTEwLwYDVQQD
Eyg0MTFlZTdmZjFiNDU0NzE0ZDAzNDI4MTUxMjU1MTE5MDFiNTIyOGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13z86KvIqURYSnhej98mUaGbSfl0
GB1APCah0jWGJn9QQGsC3EHruIowy/YFK8V2/bWZdIJd2M8YgFoLtuu6GmqGr+Eb
jSoZN6O3mva1E4qSuWWCzsjO4ZLAIPWPyxWQ1L7ZQMa7mHSXxVP9x6NxRr0jnkI0
EOdNT2d4+lE6dAe/bF41BIiR8wihwG9foLGasgRFR1OXQ0s0ZQYsWmak8XplWxUK
aU8QXo9VoGLsFAWNPonOi01VMK6US4IekQ0GLOa8e2m1Vl5YdmjgnhQ78CwKqtPL
wsTVUbNc+dMFEhqthtwQWk6BjeE7t/5fMkfFSXQBf7vMdD8KvHhEJT7kqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEEe5/8bRUcU0DQoFRJVEZAbUijJMB8GA1UdIwQY
MBaAFN1bIktlk+VYA4qeQOZgx3FCdVwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMt
MzBiYmZjMDg1NWU0LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMtMzBiYmZjMDg1NWU0
LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK7kd3dI3
SB7cm5vx3m2scm3zNqT8jJOYtFTgILdpVpT190dEy4ytJpnaswDAr/UBrjG0f338
7KaTFPeGEQBcbVGyKOsI0Lo84rjqoHNKKMG4DZyLXWOGNa1gc3k3hQNFL0bR/UAN
nOUPvjFFBIf9+32GCp+ieXamPI6no+RO86yWhRt0gKMKM9jSPDQAZ/kILNQUh8j8
CVHd9uMnOCkwrDIScp1xWLyK/XsxAnBwCrmD39mEft2o8QPahjtXC7ChLC0XcRTg
L0/nuqDAItVa7sCZkLgppJHj5P2jvDHWljZCtyGP9WRHkM8L1cZYIcn05d+EfkQS
61ZI4hF9PSB+gw==
-----END CERTIFICATE-----
Generated at Sat May 16 17:12:20 2026 by rpki-client