Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
File: 3OVg8OyFDainwPjW84JRAtTeSs4.mft (raw, json)
Hash identifier: a55cb9rgNb5QQrQkRcyZE3gjo3vmLrzEtajKOzRSUO8=
Subject key identifier: 28:2D:5E:C5:32:1B:8C:80:27:01:1E:EB:0D:06:E7:4D:6B:30:6A:07
Authority key identifier: DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
Certificate issuer: /CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Certificate serial: 019F1830BD84B7C908B66E0F8643617D3344
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
Manifest number: 1989
Signing time: Tue 30 Jun 2026 11:01:15 +0000
Manifest this update: Tue 30 Jun 2026 11:01:15 +0000
Manifest next update: Wed 01 Jul 2026 11:01:15 +0000
Files and hashes: 1: 3OVg8OyFDainwPjW84JRAtTeSs4.crl (hash: xSR0thVafD6i+giEQA/vQRaAAwSWJ3tESoc/ty8mK6s=)
2: 6K26AJnKFSRQ6qeqQiaBSR5tmsk.roa (hash: Uasee9UdIsrJgyTXIlKOU2BJMKL73nIUt5Ls4sJkN9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:bd:84:b7:c9:08:b6:6e:0f:86:43:61:7d:33:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Validity
Not Before: Jun 30 11:01:15 2026 GMT
Not After : Jul 1 11:01:15 2026 GMT
Subject: CN=282d5ec5321b8c8027011eeb0d06e74d6b306a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:44:98:09:5c:cf:2d:40:e5:01:2a:07:1d:c9:
7e:97:4b:06:04:b3:b1:b7:89:8d:7e:0d:06:ef:47:
b1:f0:4a:33:40:9a:cd:51:6c:8a:47:43:87:c1:e3:
11:85:93:92:94:8e:ba:ed:91:2a:a1:a8:04:e2:9e:
a1:91:34:3c:aa:3b:cb:1e:b1:4e:28:0a:2a:d0:e6:
00:43:fa:c9:77:c3:2c:77:64:fd:44:3a:55:7d:d5:
e1:a6:e5:af:85:bb:bf:35:30:93:76:b9:0e:37:0b:
4f:3f:ee:97:67:92:84:56:1c:bc:fc:ac:d1:a8:1a:
39:d6:21:1e:a2:f7:34:c3:3c:19:97:28:7e:44:b9:
cc:a8:f3:61:f4:c8:fd:d8:c1:06:c1:8b:18:86:49:
59:aa:3b:ac:65:d3:87:b8:0c:05:ff:a3:eb:0f:64:
7e:ec:51:fc:5b:a2:68:36:ad:4d:8f:b2:fa:fe:54:
e9:68:81:df:3c:17:5f:f5:e0:b4:6e:f2:69:bf:4b:
ed:e2:43:5f:54:99:63:d8:51:0d:85:95:e1:2f:58:
db:18:6a:4c:54:cb:03:f3:9f:21:31:64:d4:74:91:
52:50:87:cd:45:d6:11:30:1d:3b:a2:97:7a:fa:b2:
22:39:52:5f:f6:5b:ad:50:bc:e7:55:05:1d:3d:65:
5d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2D:5E:C5:32:1B:8C:80:27:01:1E:EB:0D:06:E7:4D:6B:30:6A:07
X509v3 Authority Key Identifier:
keyid:DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:da:3b:5e:17:f3:12:62:5b:69:23:f1:b0:20:3e:6b:58:ca:
1d:4f:4a:67:dc:18:cc:3e:ae:70:21:18:2f:cb:b5:8b:69:b4:
15:80:c3:c0:30:c3:e1:ca:94:ba:27:59:b7:8c:26:41:10:15:
6b:ab:99:f0:2e:93:cd:72:c8:50:a9:d0:3c:54:25:b6:c4:77:
0c:07:87:c1:0d:9d:36:9c:32:ad:04:86:93:3c:9e:06:f5:33:
2d:c2:4d:5b:22:e3:c5:b2:76:24:b0:e4:55:a8:29:fc:c4:95:
62:9d:cc:2b:b6:6c:84:19:cb:8f:26:97:79:e9:9d:ed:6a:27:
91:03:4e:19:58:85:49:6d:46:88:36:41:b1:67:e0:f6:07:81:
9a:d5:f4:24:35:bb:4c:77:26:6d:11:8c:73:5f:c4:c3:0f:9b:
eb:b6:08:2d:ca:26:62:55:b2:fe:2d:1f:12:3c:d8:68:4b:ce:
2d:a5:5e:ab:64:a8:dd:4c:b9:c3:56:b5:24:8a:f1:ef:4c:ef:
a7:09:f3:05:3a:5b:cd:44:1f:f5:9e:8d:1a:13:5b:3e:f0:85:
92:a1:03:a6:69:d8:ee:b5:bb:e5:7a:bc:2e:48:74:64:d5:85:
89:43:51:90:f5:2d:19:2d:bd:5c:ec:8b:0f:62:a6:e8:bb:02:
6e:19:9e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:35:46 2026 by rpki-client