Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: EMI/Etweq7F4yxvGmBCG/nVTXKs499cEsGqgIY/ytUE=
Subject key identifier: 53:E4:3E:69:96:33:32:57:72:BB:E3:90:62:96:76:EE:22:5E:0E:BA
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 019E303B6C081BB7F3B4C67E064F3BBBE289
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 0D7B
Signing time: Sat 16 May 2026 10:01:00 +0000
Manifest this update: Sat 16 May 2026 10:01:00 +0000
Manifest next update: Sun 17 May 2026 10:01:00 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: z3YoFuEZT4zAEL9+37eqQwRsTHwA0MseB5cMB5ku/v4=)
2: c52XhO4YGCrU48r6aoFS0wJifx0.roa (hash: 4+paDSnGo7aoDvCfZSAugeN0kcY8+2h3yijdRS9k2EQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:6c:08:1b:b7:f3:b4:c6:7e:06:4f:3b:bb:e2:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: May 16 10:01:00 2026 GMT
Not After : May 17 10:01:00 2026 GMT
Subject: CN=53e43e699633325772bbe390629676ee225e0eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:85:d0:81:7a:43:e0:52:f9:1d:90:78:3d:d3:
2b:6c:89:84:11:4b:04:e3:15:07:12:29:4f:73:28:
83:3d:38:f4:38:e1:9d:0e:19:a1:19:57:8d:d1:d7:
dc:1a:95:8f:5a:b1:10:e5:dd:1b:23:d2:5d:37:d4:
66:7f:e5:e2:bb:bc:48:ad:93:d0:a1:48:20:6d:1e:
2b:2b:25:23:dd:01:e4:6f:97:62:cd:3f:bc:b6:d3:
a8:b0:5e:09:64:02:ec:3a:02:2a:de:d5:92:1a:ca:
67:13:7d:ac:22:b3:5b:bd:fe:78:7a:e4:89:2c:9e:
81:0f:d8:e8:a7:96:37:6f:1e:66:a1:2f:0e:8b:60:
fd:dc:1d:55:11:a5:60:65:f9:74:cf:a1:01:31:f3:
5e:74:bf:9d:4d:c7:b3:82:9f:2f:ed:bc:9f:cf:4f:
7a:c2:0b:e4:e7:fc:7d:8a:8c:1a:e9:68:80:61:5b:
72:b5:c6:69:14:4c:1b:92:ac:7f:52:fa:fc:c3:b1:
21:e4:eb:aa:ed:e9:02:df:55:2d:48:60:ae:41:e3:
e7:e4:b0:38:6e:de:96:90:df:5a:03:2a:1a:96:fc:
31:10:bc:c9:98:46:66:10:a2:34:05:aa:09:da:25:
c8:45:47:74:0f:32:ee:d8:48:c6:c2:5b:db:6b:55:
0d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E4:3E:69:96:33:32:57:72:BB:E3:90:62:96:76:EE:22:5E:0E:BA
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:3f:e4:f9:55:8a:c5:97:9e:40:73:b2:dd:8a:06:21:d6:fd:
79:b6:b2:c3:df:a5:b5:b3:b8:5e:2f:4c:a8:44:95:4d:c6:16:
fa:f9:95:0f:c6:80:c0:0c:e3:c5:fb:17:0c:b6:63:57:f9:8d:
b0:fc:2e:3a:d2:9f:e5:9f:42:f5:62:83:9c:c7:89:15:94:1a:
c4:b8:16:6a:df:f3:9a:cd:d0:91:25:bf:e5:41:7f:1f:d4:d6:
0c:c9:09:d8:90:bd:b3:aa:8f:6f:fe:68:47:e0:97:da:42:62:
f1:8a:a5:6d:20:7f:b6:40:98:a4:f0:30:bb:9f:98:97:ba:49:
76:20:38:a5:7b:77:23:52:f8:4e:d5:0b:75:1c:ac:f4:b3:aa:
98:4b:0f:2d:e4:b7:78:72:09:a8:7d:35:74:2e:f2:e2:4e:5c:
09:cb:a9:3d:8d:34:30:24:1e:db:02:35:0b:0e:23:75:c8:ac:
6e:03:79:99:de:db:fe:b2:93:ba:cf:8b:e6:a8:8b:96:d6:1f:
22:6d:36:92:72:ae:f1:ca:b9:8c:c0:d4:b6:05:ea:57:a7:5f:
e7:6a:99:bf:f1:4b:6e:fb:4a:0e:67:14:6c:ea:79:b3:9e:a1:
ef:9f:67:92:75:4b:f5:70:0b:9d:47:0c:ec:e1:43:fb:7e:75:
71:60:cf:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:08 2026 by rpki-client