Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: ZoFb8HjjOmWIHyABI+q38l5wCRD1NsHE7LBIYr4bf8I=
Subject key identifier: ED:88:2A:71:6A:F0:73:6C:99:91:95:A7:F8:9C:3A:51:C8:5E:CA:EF
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 019F190CC3C10FC137A913CDDEC91AE3957C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 0D9A
Signing time: Tue 30 Jun 2026 15:01:34 +0000
Manifest this update: Tue 30 Jun 2026 15:01:34 +0000
Manifest next update: Wed 01 Jul 2026 15:01:34 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: peNooXZ+o4wfCXGpUVPB7wxwFJnS7bIdfe18V1pXIkI=)
2: qVOiKU3-XCJIV1dlmVqm9Z8OCSU.roa (hash: 1b1b4ZznQQVB7nOvdHCZX+1O8620BLLwp7A6OVcEvQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:c3:c1:0f:c1:37:a9:13:cd:de:c9:1a:e3:95:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: Jun 30 15:01:34 2026 GMT
Not After : Jul 1 15:01:34 2026 GMT
Subject: CN=ed882a716af0736c999195a7f89c3a51c85ecaef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d0:3d:39:cd:97:3a:f4:04:78:5a:ec:88:31:
fd:d3:02:fb:e8:43:7a:73:95:65:36:3c:59:8d:2a:
f5:33:4c:c0:b0:ac:c0:c6:d9:86:1f:f8:9b:09:c1:
fd:cd:fc:bf:6c:ab:f0:40:12:b1:2b:45:67:b4:6c:
a1:29:5e:cf:0c:a0:84:f6:e8:27:be:da:1c:b5:0e:
e2:26:12:7e:6c:6b:b6:5f:e9:ba:9d:a3:c8:1b:b2:
92:a5:0a:51:bb:7d:9d:18:e1:e5:f5:2e:2c:82:e6:
e1:1a:07:be:09:de:ae:6c:0f:cc:a8:fb:aa:d4:0c:
c3:e8:85:ab:4c:e4:66:33:28:32:50:c8:da:6c:82:
ba:21:af:79:a1:36:68:11:af:fc:91:8c:d7:c4:8e:
49:ca:cf:34:9b:5d:5c:ac:18:dd:40:f9:40:e8:02:
27:19:c3:57:8d:c7:bd:bd:f5:ce:79:d5:04:1b:10:
ac:ac:73:71:5b:90:8c:d1:2c:39:19:dc:5b:7f:8e:
2b:ed:e2:58:32:c9:b1:a4:29:cf:76:0d:7e:e7:b3:
b8:60:f5:20:4c:1d:47:ee:7f:7f:e2:ca:9d:ea:c5:
1d:08:0c:73:eb:97:b4:c0:c2:d5:f7:ff:86:7a:73:
c0:88:29:a6:c0:ab:a4:c2:29:b8:58:8c:02:cd:7d:
6b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:88:2A:71:6A:F0:73:6C:99:91:95:A7:F8:9C:3A:51:C8:5E:CA:EF
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:a5:24:b8:5b:6e:39:4f:4a:5f:e6:97:54:cd:25:33:c4:f5:
c6:a3:0c:52:43:13:54:fe:46:b4:8d:f1:94:66:03:a7:1d:fb:
38:55:18:c6:7b:be:bb:6b:ba:d0:26:6d:cf:1b:fc:7c:a7:92:
13:4c:4e:b5:f4:e8:d9:dc:fa:03:7b:ac:ea:f8:61:40:56:3c:
4b:51:af:26:01:c1:31:72:c4:d2:ee:3c:cc:23:64:68:f4:8b:
52:e4:ff:81:34:85:46:c6:23:d6:f1:01:09:30:76:46:99:7f:
2b:7e:2a:ac:85:b9:59:e3:b2:9a:e0:76:ec:ab:a0:63:d4:fe:
6b:20:f9:6d:79:48:5c:59:e3:d6:66:51:55:69:1a:60:db:68:
5f:9b:91:0b:49:6b:50:94:f1:f6:f7:ab:cc:69:4e:09:4f:75:
94:e4:96:87:50:f4:8a:2b:75:7d:a0:2f:ca:05:67:87:9e:01:
2a:96:e1:b5:20:6f:98:6a:5d:f5:b4:46:4a:ac:10:70:a7:07:
98:6f:22:0f:cc:0a:08:91:0f:29:10:15:fc:f9:69:fe:ee:73:
53:4b:e1:0e:73:21:10:31:aa:71:69:34:a1:4d:63:7b:fd:20:
8e:67:ec:77:9b:2c:05:cf:fd:69:5d:3b:5e:e9:55:f3:0e:01:
45:5a:07:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZDMPBD8E3qRPN3ska45V8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNWIyMjRiNjU5M2U1NTgwMzhhOWU0MGU2NjBjNzcxNDI3
NTVjMWIwHhcNMjYwNjMwMTUwMTM0WhcNMjYwNzAxMTUwMTM0WjAzMTEwLwYDVQQD
EyhlZDg4MmE3MTZhZjA3MzZjOTk5MTk1YTdmODljM2E1MWM4NWVjYWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29A9Oc2XOvQEeFrsiDH90wL76EN6
c5VlNjxZjSr1M0zAsKzAxtmGH/ibCcH9zfy/bKvwQBKxK0VntGyhKV7PDKCE9ugn
vtoctQ7iJhJ+bGu2X+m6naPIG7KSpQpRu32dGOHl9S4sgubhGge+Cd6ubA/MqPuq
1AzD6IWrTORmMygyUMjabIK6Ia95oTZoEa/8kYzXxI5Jys80m11crBjdQPlA6AIn
GcNXjce9vfXOedUEGxCsrHNxW5CM0Sw5Gdxbf44r7eJYMsmxpCnPdg1+57O4YPUg
TB1H7n9/4sqd6sUdCAxz65e0wMLV9/+GenPAiCmmwKukwim4WIwCzX1rCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO2IKnFq8HNsmZGVp/icOlHIXsrvMB8GA1UdIwQY
MBaAFN1bIktlk+VYA4qeQOZgx3FCdVwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMt
MzBiYmZjMDg1NWU0LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMtMzBiYmZjMDg1NWU0
LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaaUkuFtu
OU9KX+aXVM0lM8T1xqMMUkMTVP5GtI3xlGYDpx37OFUYxnu+u2u60CZtzxv8fKeS
E0xOtfTo2dz6A3us6vhhQFY8S1GvJgHBMXLE0u48zCNkaPSLUuT/gTSFRsYj1vEB
CTB2Rpl/K34qrIW5WeOymuB27KugY9T+ayD5bXlIXFnj1mZRVWkaYNtoX5uRC0lr
UJTx9verzGlOCU91lOSWh1D0iit1faAvygVnh54BKpbhtSBvmGpd9bRGSqwQcKcH
mG8iD8wKCJEPKRAV/Plp/u5zU0vhDnMhEDGqcWk0oU1je/0gjmfsd5ssBc/9aV07
XulV8w4BRVoHYg==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:15 2026 by rpki-client