Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: NMzUCeYVLNFTeMCEeSP4Vn9wYRzP4moC9qLLp7kzJZo=
Subject key identifier: 5B:0E:1F:AA:AF:90:A9:64:2E:ED:B5:73:D1:40:8B:65:19:C3:A8:F6
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 019E20FF2E924ADBB63340F2E25108B0E471
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 191A
Signing time: Wed 13 May 2026 11:00:54 +0000
Manifest this update: Wed 13 May 2026 11:00:54 +0000
Manifest next update: Thu 14 May 2026 11:00:54 +0000
Files and hashes: 1: 32lYY6uEr5NQiZ36Yw1PDpEB0LE.roa (hash: nbIrlyDfM/OsIW8q6DxR5+MKnNJS4Cwv/h7ugS3W6kw=)
2: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: 6I/kbgHuiuViYQSnsXRqZ3cCidcfWr5rdXlitMTCcp4=)
3: 4brBRSXd-3J0XI6W1cQMml969rM.roa (hash: HAAIbdurASwhGqOl0EqIaoNlObK5qBtHlNL6sAbPYAw=)
4: CV0Da0hDhTImPAfNEKg1Zmq-t4Y.roa (hash: gRQv5O+XgMBfojo8WrrSJ295oJBia/Hac6oJn0s/JA4=)
5: CcbOPSFowzuVmbQQQVUT4gQZao4.roa (hash: QoVwdK39dtT9IvoLSexiLLdImyTyxwcjHq7QNn6fGOA=)
6: Nmra5MQ90P6ykkpupDiPaVY1kco.roa (hash: iXU9Ga0vhV6ku1r3OaZ+HmJepE5UeaNFpriSH+GfUVo=)
7: YorSmVSKuGvPWA7DA6m1cRcL1FY.roa (hash: qU63ylCGxnEyiZbz76RKuCXngXRAm2RLSoEhfEzs9Wk=)
8: hsVsux8sHzZqQOz9MIXAz_SM6VI.roa (hash: 3Hc4odb8fRJz6qv0eC3Z9gpTtQGDv+DPG+2jWtEDSs8=)
9: vulmYW4p9PU9wnTvn-jVp44qOCM.roa (hash: MXgO5bfy+NsKZlh8zhQJtMRiH5fhuEIemBIGiWuNsdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 11:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:2e:92:4a:db:b6:33:40:f2:e2:51:08:b0:e4:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: May 13 11:00:54 2026 GMT
Not After : May 14 11:00:54 2026 GMT
Subject: CN=5b0e1faaaf90a9642eedb573d1408b6519c3a8f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:82:ca:e0:34:f3:52:89:49:ed:1e:41:a3:1e:
ed:86:a1:bd:b7:7e:5e:4f:fe:7a:78:bd:45:21:9d:
5f:76:14:ef:7f:d8:5c:0c:5f:aa:c7:7c:f0:42:9e:
fb:73:7e:93:ed:d4:db:80:11:1e:e1:ee:e2:d5:fe:
98:f3:e1:01:30:62:94:20:4a:ab:df:ac:57:22:8e:
01:67:3a:dc:7a:87:1e:bf:65:05:1b:48:c5:19:52:
09:23:55:10:97:62:a1:bf:4b:1b:81:5a:03:19:6f:
0a:25:15:be:d9:33:d5:78:d2:fd:3a:af:41:c2:f4:
3d:64:fa:44:36:d4:78:03:49:cd:e9:a7:be:12:d9:
57:be:5f:4a:ae:91:70:cc:80:3e:bc:43:33:a7:22:
b9:37:38:8e:98:38:ee:b9:83:e4:e7:6d:ba:f4:d6:
b2:16:b2:67:5f:21:e3:d7:64:d4:f3:9a:27:28:1e:
84:c2:5e:0d:3b:62:a3:66:03:6a:6f:a2:c7:d7:8c:
7f:e8:49:9d:2d:18:d3:e4:18:2e:0a:de:ca:f9:c9:
0f:d8:48:83:58:bb:b8:65:59:9e:53:dd:44:8e:24:
eb:45:de:06:7d:19:77:57:26:80:da:1d:80:cd:a0:
f8:df:19:ec:b4:3c:2a:c8:d5:42:a9:60:2f:e1:43:
fb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:0E:1F:AA:AF:90:A9:64:2E:ED:B5:73:D1:40:8B:65:19:C3:A8:F6
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:39:86:2d:b4:2b:7a:f9:59:95:9d:12:cc:3a:77:e4:5b:25:
d2:d6:b6:1e:12:e5:dc:c6:48:5c:51:8d:59:69:a2:56:c8:41:
b9:39:4d:c5:33:f9:4f:08:47:e3:7c:72:69:c7:6e:fa:11:80:
eb:ab:d3:02:55:9f:55:8f:1a:c0:34:2a:fa:a8:62:83:e9:f9:
0d:27:71:cf:2f:b6:ec:6b:f6:af:e2:17:92:2e:b7:e2:ac:28:
53:dd:d4:a4:49:be:eb:67:d1:e4:65:c2:c7:ff:eb:c0:e7:a1:
6f:d4:ea:f2:60:4f:6d:d3:0b:60:34:bb:bd:27:44:9e:f6:7d:
9a:0d:f9:db:3e:1d:98:65:b4:4f:2c:2b:23:c6:99:9b:21:25:
b3:3d:c8:2f:3b:50:9c:c4:d6:e7:b7:cc:e7:95:ad:08:95:f8:
45:f0:8a:6a:ec:68:5d:81:26:9d:6c:81:5d:fd:f2:aa:a7:e6:
b7:ee:26:f3:24:6a:68:1c:85:23:20:e6:bf:f9:31:bc:21:34:
99:fc:5a:cf:0b:46:b2:c4:29:da:25:33:67:c7:8b:5f:97:80:
de:09:21:3a:26:31:fd:c7:c0:4f:bd:6f:ec:18:57:8d:7f:13:
26:e8:06:1c:66:63:25:eb:61:39:28:52:38:f6:d0:3f:01:3f:
e1:19:98:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:13:15 2026 by rpki-client