Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: uSVutceZ3Rh/i6cn5SLy4xTR7041PRpVUHMq/pcUkzk=
Subject key identifier: 40:D2:8C:15:3E:F4:FD:F9:44:7D:5F:4A:B5:56:3E:DF:69:31:C8:B8
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 019E307280949EDB707B4D2777E591762F7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 13AA
Signing time: Sat 16 May 2026 11:01:10 +0000
Manifest this update: Sat 16 May 2026 11:01:10 +0000
Manifest next update: Sun 17 May 2026 11:01:10 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: 4oe2lB7qDltSYUg/Ms4IFWO4M2ZEd8hu/dP97OLM1vI=)
2: BsyNzVaxxAwnI04Dd9aOhMe6ucE.roa (hash: 0aNXoEKl0ws+Toia/ObhW+i07V56stDq9dLrY8oS6mU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:80:94:9e:db:70:7b:4d:27:77:e5:91:76:2f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: May 16 11:01:10 2026 GMT
Not After : May 17 11:01:10 2026 GMT
Subject: CN=40d28c153ef4fdf9447d5f4ab5563edf6931c8b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:dd:d6:02:c4:92:bf:e4:79:0f:bd:83:05:47:
6f:98:2f:3a:1c:4f:54:fe:91:27:c8:39:31:20:77:
cb:b6:85:3c:b9:bf:d5:15:67:12:43:bd:1d:90:c9:
1b:66:ef:cf:4a:2e:99:e0:79:75:8e:6a:18:18:68:
5d:58:c4:fd:68:cf:7e:71:81:b0:8e:b4:36:da:72:
80:d7:19:24:9f:c5:ae:71:b1:7d:38:5d:48:79:18:
4e:35:7f:f7:7a:de:30:86:3d:05:b8:fe:5a:db:18:
09:70:3b:b2:3a:b3:84:d7:b3:bd:18:1e:37:77:e6:
8e:3d:8c:ad:1a:48:f9:1d:01:d9:5f:b0:e4:cd:bc:
58:55:dc:5c:eb:8d:83:ff:e3:80:f9:cd:08:9b:02:
65:d1:d2:1b:36:76:17:5b:3b:59:2e:d2:e8:3c:6a:
38:cf:ff:a6:05:38:f1:16:df:7f:78:93:58:00:d0:
0d:06:0d:12:20:6d:f6:8d:a9:fa:a2:eb:ad:5c:b9:
91:6a:ac:50:4a:cf:e3:e5:60:23:c7:c8:40:ed:97:
50:77:ec:fd:af:55:ae:94:63:8c:83:a7:71:7d:d2:
a2:3e:2a:b6:38:16:7a:70:d5:3b:4c:f2:36:4a:a6:
3a:80:32:fc:a5:88:c6:bc:0c:f2:90:be:6b:be:23:
1b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D2:8C:15:3E:F4:FD:F9:44:7D:5F:4A:B5:56:3E:DF:69:31:C8:B8
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:51:98:d4:0f:7a:c9:06:94:de:3d:d3:94:bb:fd:d0:fd:81:
9f:22:72:b5:cf:78:4d:fc:66:c0:6b:d5:a9:81:fe:1a:da:ec:
11:42:9a:89:aa:e9:49:11:67:48:85:a8:e7:6b:f5:55:5f:2d:
d3:61:f2:30:af:46:5f:dd:07:74:4f:f5:37:ff:6a:28:03:11:
42:f9:30:5d:0e:a8:d7:a4:bf:6e:2c:b1:4e:28:eb:45:1a:b7:
45:69:fe:7f:97:8a:d4:8d:10:82:ce:27:f8:b2:af:16:16:8f:
89:aa:30:d9:07:08:c5:c7:82:c2:e2:f4:d2:a3:72:91:07:f2:
3e:5e:6c:e8:b1:e1:71:79:fa:5a:b4:e8:8e:17:ef:92:36:70:
56:db:63:88:96:43:0b:e6:14:d1:78:16:25:ef:a3:0d:ea:50:
48:88:5d:ed:37:9b:4d:ca:8f:5d:8d:37:78:96:29:53:80:2b:
f1:60:4d:2e:2a:47:22:88:10:2a:b7:f3:77:6d:67:5e:02:73:
7c:06:3b:bc:b3:10:23:4d:01:15:11:ca:c3:35:a0:1e:6f:d7:
17:dd:d8:14:2f:e8:0d:ef:a8:5a:d2:57:7d:54:76:c5:24:6f:
3b:f8:08:97:34:68:89:16:6b:9c:95:69:b4:b5:71:4a:2f:f1:
a6:3b:8a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:23:59 2026 by rpki-client