Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: cIk7VWb7Ru1GZdiq58KB2IEySc9HQPcvYi0JyUDt7j0=
Subject key identifier: F9:78:3B:43:73:78:F6:F6:2A:9C:11:15:D9:F7:0F:01:01:9E:32:1B
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 019F17F9FDDFCA329DA7ED1D64D17727D9B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 0DF3
Signing time: Tue 30 Jun 2026 10:01:27 +0000
Manifest this update: Tue 30 Jun 2026 10:01:27 +0000
Manifest next update: Wed 01 Jul 2026 10:01:27 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: Z0ttq5lwL3ey17zh+DSguGYsE/mjTTQeJU7YGI6Od8M=)
2: c52XhO4YGCrU48r6aoFS0wJifx0.roa (hash: 4+paDSnGo7aoDvCfZSAugeN0kcY8+2h3yijdRS9k2EQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:fd:df:ca:32:9d:a7:ed:1d:64:d1:77:27:d9:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Jun 30 10:01:27 2026 GMT
Not After : Jul 1 10:01:27 2026 GMT
Subject: CN=f9783b437378f6f62a9c1115d9f70f01019e321b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c0:d0:cc:b0:be:db:a7:c6:22:ec:9e:c4:b1:
7b:04:4a:fe:02:f3:fd:5a:ca:45:0d:89:37:bf:87:
6f:43:75:f8:2b:c7:58:18:92:06:89:c1:76:6a:f1:
5d:a5:9a:af:c2:da:95:36:af:a2:ba:06:e5:c3:ed:
ab:27:f9:43:ef:fc:df:b0:d1:d9:fa:60:a1:e7:00:
ad:67:a0:77:42:fc:7d:7d:08:bc:a6:17:06:5a:3d:
ac:c9:f3:77:b1:02:41:94:96:6e:06:8a:a5:c7:18:
06:c9:e8:6c:fa:3a:24:90:65:92:cb:bd:e0:61:a6:
a9:eb:f4:8b:0c:0f:8f:ca:11:94:6e:4c:11:7f:b6:
73:a6:78:eb:42:5a:55:a4:f4:63:6f:2e:31:75:5b:
b1:aa:da:e2:c8:8f:bf:ae:4a:50:0d:b1:64:53:e4:
b8:a8:78:51:6a:17:06:c9:28:a0:14:05:8b:6e:bb:
72:81:e3:62:d8:a7:18:71:a4:3c:96:d5:d2:74:3e:
73:e4:43:ed:92:15:64:31:f5:d1:ad:d8:96:5c:d8:
9e:64:4e:1f:8a:3d:51:18:7e:5a:a6:3a:86:d8:65:
b9:9c:ce:6d:ac:c1:69:a4:d2:fc:91:bb:16:25:a3:
c5:f9:30:f1:95:c9:61:37:5d:88:25:e4:77:6c:ef:
3e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:78:3B:43:73:78:F6:F6:2A:9C:11:15:D9:F7:0F:01:01:9E:32:1B
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ad:de:3d:81:69:1a:77:f7:32:90:63:77:ad:ed:af:a7:56:
83:6f:b5:f8:3a:20:84:10:55:3b:58:d5:9b:aa:b6:6b:b6:90:
31:0b:c5:d1:07:44:f4:4e:66:23:00:72:c3:e9:0b:30:20:60:
f4:0f:e7:6a:e3:32:47:2d:07:bb:8c:a2:05:64:cb:70:03:de:
be:c1:eb:a4:14:be:a4:7f:47:da:e7:a8:3c:6d:df:74:67:36:
20:8d:27:c7:b2:a8:fe:02:ac:f8:2a:a2:8a:b5:dd:ee:87:0a:
52:ea:59:28:49:d4:69:8c:8c:6f:9e:e3:6a:65:fd:e3:9e:b6:
32:2e:13:87:d6:58:76:ec:36:1e:87:9b:47:c1:82:87:37:04:
b2:b0:b3:e2:b4:bb:28:f0:41:b4:32:b6:6e:07:0b:ef:01:f6:
be:44:a1:f8:78:a9:82:e1:3b:aa:60:e0:b6:a6:a9:42:97:af:
35:15:d4:35:ee:27:ad:e3:71:0e:cf:c2:37:c6:26:62:ee:9a:
48:8d:eb:b8:e0:21:51:a0:09:18:30:78:2f:c4:eb:4d:da:ff:
4a:ef:11:bc:4c:5d:83:60:b9:ce:8d:50:96:47:c3:f4:c0:63:
eb:39:48:b2:6d:2e:96:b7:6f:d3:ef:f3:c7:0d:ab:59:53:8d:
36:8c:96:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:18 2026 by rpki-client