Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: Pe6QkXUV3jwstS2+WizwBJ2OOf/A2Ny8UkjsUeeKKhc=
Subject key identifier: AD:66:8C:8C:ED:92:2F:4D:E0:2A:E2:9B:68:DD:95:5E:BB:2B:C1:E0
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 019F0C9AD188A48DC5732F72C1260A7E3C1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 1994
Signing time: Sun 28 Jun 2026 05:01:40 +0000
Manifest this update: Sun 28 Jun 2026 05:01:40 +0000
Manifest next update: Mon 29 Jun 2026 05:01:40 +0000
Files and hashes: 1: 32lYY6uEr5NQiZ36Yw1PDpEB0LE.roa (hash: nbIrlyDfM/OsIW8q6DxR5+MKnNJS4Cwv/h7ugS3W6kw=)
2: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: SVadTaZjVLoZqRSfTW2X362/62Iw0h5vUkaUm9MvPDc=)
3: 4brBRSXd-3J0XI6W1cQMml969rM.roa (hash: HAAIbdurASwhGqOl0EqIaoNlObK5qBtHlNL6sAbPYAw=)
4: CV0Da0hDhTImPAfNEKg1Zmq-t4Y.roa (hash: gRQv5O+XgMBfojo8WrrSJ295oJBia/Hac6oJn0s/JA4=)
5: CcbOPSFowzuVmbQQQVUT4gQZao4.roa (hash: QoVwdK39dtT9IvoLSexiLLdImyTyxwcjHq7QNn6fGOA=)
6: Nmra5MQ90P6ykkpupDiPaVY1kco.roa (hash: iXU9Ga0vhV6ku1r3OaZ+HmJepE5UeaNFpriSH+GfUVo=)
7: YorSmVSKuGvPWA7DA6m1cRcL1FY.roa (hash: qU63ylCGxnEyiZbz76RKuCXngXRAm2RLSoEhfEzs9Wk=)
8: hsVsux8sHzZqQOz9MIXAz_SM6VI.roa (hash: 3Hc4odb8fRJz6qv0eC3Z9gpTtQGDv+DPG+2jWtEDSs8=)
9: vulmYW4p9PU9wnTvn-jVp44qOCM.roa (hash: MXgO5bfy+NsKZlh8zhQJtMRiH5fhuEIemBIGiWuNsdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0c:9a:d1:88:a4:8d:c5:73:2f:72:c1:26:0a:7e:3c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Jun 28 05:01:40 2026 GMT
Not After : Jun 29 05:01:40 2026 GMT
Subject: CN=ad668c8ced922f4de02ae29b68dd955ebb2bc1e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7a:d8:92:f9:8b:20:b9:57:54:27:34:a7:c6:
65:ff:65:42:ff:35:38:78:49:1f:15:97:2f:e9:f6:
ea:1c:f7:b6:fa:f8:d5:6e:7e:ec:b0:8e:5b:85:4c:
f7:e8:a7:cd:ed:4f:28:3b:88:38:be:4a:69:a2:fc:
69:8a:70:d6:9b:52:29:22:08:62:32:5c:cf:bb:47:
fd:17:76:05:30:9b:73:66:9d:28:8b:0c:db:f3:70:
bc:4a:60:65:17:e9:6e:81:48:88:06:59:93:01:91:
fa:91:22:da:6c:6a:ca:dd:ee:dd:d0:c2:ba:65:1b:
6b:a6:d5:a4:3c:2f:25:39:01:88:3e:e7:db:c6:63:
37:42:23:96:18:2f:e6:75:6b:c8:35:f9:4e:1e:70:
df:ba:c2:06:db:3b:81:ca:6f:ad:67:8d:5e:ad:02:
02:99:47:08:4a:cc:3c:27:43:ad:0b:d9:cc:04:3a:
be:71:1f:a4:dc:46:24:70:42:95:f1:c4:d8:73:fd:
a0:ff:d7:34:04:17:6b:7d:d5:96:93:e1:ce:1a:76:
1c:79:b1:6f:52:9c:02:b4:92:09:12:b6:64:9d:22:
c3:86:38:6d:4c:30:53:99:2b:4b:3c:85:5a:84:c3:
1e:5a:79:da:bb:1c:31:2d:d1:73:66:3d:3b:35:09:
ee:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:66:8C:8C:ED:92:2F:4D:E0:2A:E2:9B:68:DD:95:5E:BB:2B:C1:E0
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:b4:e7:66:2d:00:a3:c6:e8:02:d1:4d:51:a2:b3:f5:3c:6c:
13:1c:9b:29:79:c7:f6:e7:81:95:b6:18:0a:49:75:7c:4b:ca:
19:22:a4:7a:42:e2:be:1d:63:90:d3:fd:a8:00:63:1f:d6:70:
4c:27:f5:f3:60:36:86:7c:79:24:2a:07:90:14:d6:3c:98:1f:
55:50:86:d6:0c:e6:a1:d1:84:04:4c:dc:97:87:15:63:9f:d9:
4c:c9:b2:d8:2e:8e:8e:c0:81:0d:ad:1d:12:1c:48:0d:80:13:
d2:51:f2:f9:fa:5a:a0:29:71:5c:c3:ba:66:77:19:b6:e7:69:
41:8c:d1:08:e7:19:26:55:e1:99:ed:13:66:f6:00:59:bc:ec:
ae:6e:91:48:16:ea:0b:4a:8f:99:ff:64:90:09:f1:a4:18:35:
21:18:8a:73:1c:42:62:10:7a:40:f3:c7:d4:7e:43:6a:f7:48:
24:f3:87:7b:b2:01:69:02:1f:2a:d8:c1:fe:4d:86:47:41:6b:
cd:04:2a:48:bf:36:a5:7f:d3:ba:06:ee:19:c0:95:94:16:98:
8f:b8:1c:20:9c:b5:ab:68:67:cd:09:9d:58:5a:0e:a4:24:9e:
8c:76:ac:96:7b:4f:08:2a:66:b1:4f:b3:7b:9b:57:9f:11:ac:
4b:b5:80:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 28 07:36:05 2026 by rpki-client