Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: u1dgDawlPNzHzX6tPlkUYm6XDWlbBpMAIV1nYvyMv10=
Subject key identifier: 60:B8:7A:1B:EF:95:01:FE:97:5F:F2:DE:7E:54:24:DB:05:C3:62:4A
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 019F1830284738EFC43B410C3385BDBB5A22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 1422
Signing time: Tue 30 Jun 2026 11:00:36 +0000
Manifest this update: Tue 30 Jun 2026 11:00:36 +0000
Manifest next update: Wed 01 Jul 2026 11:00:36 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: kq+M7aMERNCkkD2vgH9lKPi7cd5xRcaNghDgHVD9sPk=)
2: BsyNzVaxxAwnI04Dd9aOhMe6ucE.roa (hash: 0aNXoEKl0ws+Toia/ObhW+i07V56stDq9dLrY8oS6mU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:28:47:38:ef:c4:3b:41:0c:33:85:bd:bb:5a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Jun 30 11:00:36 2026 GMT
Not After : Jul 1 11:00:36 2026 GMT
Subject: CN=60b87a1bef9501fe975ff2de7e5424db05c3624a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:64:c1:06:03:be:e5:2c:72:c2:d3:ca:3f:96:
97:2a:da:5d:73:b0:79:41:3a:14:65:ea:e4:84:f4:
8e:e4:36:39:8e:59:25:c5:a1:b7:82:f9:ed:01:ee:
a1:2e:8b:c5:56:1e:52:04:3e:67:f1:82:ea:d2:f7:
d9:a5:91:1f:b8:40:d0:cf:ad:03:f1:0c:02:19:53:
a5:da:a1:cc:56:45:6d:63:29:ca:ee:77:07:91:0d:
96:8a:96:78:f9:ab:e3:0e:dd:68:4f:b6:6b:7c:46:
9c:89:52:21:a6:c5:05:3f:ac:46:08:30:aa:fd:ac:
20:c1:5e:d0:9c:af:a9:8f:0b:68:5f:7a:d9:f9:a1:
c7:b2:0a:b3:b0:9c:c4:6a:9f:f3:c7:ba:2f:0b:80:
ee:a2:ec:0f:6b:1a:f5:ac:31:f0:5c:8e:c9:1a:ed:
f8:ef:da:99:85:58:9c:0e:be:5c:4e:fe:da:df:40:
11:a4:84:21:87:2d:f6:52:59:50:69:48:59:d9:7a:
9b:22:4f:3d:c0:f9:cc:75:40:6e:ae:72:f4:e1:f2:
01:94:46:0c:40:f7:48:66:99:0e:cd:67:91:df:16:
3a:e4:1b:3d:86:79:43:7a:64:dd:ab:46:95:5c:ac:
f7:83:4a:78:c8:a7:04:cd:b4:e6:3f:aa:14:2f:ee:
4e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B8:7A:1B:EF:95:01:FE:97:5F:F2:DE:7E:54:24:DB:05:C3:62:4A
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:be:b7:78:9d:07:8c:aa:a7:51:58:98:6f:5d:7a:22:b1:51:
e1:09:0b:93:3b:78:8e:ea:fa:6b:df:de:ba:84:fd:67:86:de:
ba:3a:ed:6c:77:69:a2:3e:0e:e9:91:c7:f7:87:ff:a3:bb:b2:
d0:71:03:ad:4d:60:2b:d1:5a:83:d3:82:5f:3e:cb:79:e9:b0:
2d:15:ae:c6:c1:44:5a:ab:cf:a2:c7:d0:66:fe:6d:54:9c:fc:
20:59:72:94:bf:99:96:ce:08:43:79:4a:ef:ec:fb:fd:98:b6:
f0:06:8e:1b:f0:b5:32:1c:d9:4f:19:12:61:6d:88:7f:35:17:
89:1f:2b:2b:af:bd:db:2c:2f:5b:de:a4:50:93:7c:13:9c:01:
23:21:81:68:4c:85:0b:07:62:48:36:dd:b6:06:68:14:54:58:
c9:03:3f:53:28:28:32:f8:ed:52:14:43:02:fd:d5:75:09:0d:
75:b7:41:95:8e:41:fe:15:40:c4:e2:fc:3a:45:d9:79:54:52:
af:f7:aa:2a:75:61:2c:6a:81:ec:8b:cd:74:ce:06:69:b4:40:
7c:2e:a4:8b:df:84:e9:92:83:e0:a9:04:02:dc:93:77:81:67:
3f:f8:0d:b9:40:27:67:fd:16:ee:68:a1:f8:ae:75:be:a2:a3:
2e:dc:2a:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YMChHOO/EO0EMM4W9u1oiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkODVkYzZiNjE0M2ExN2ZlYjQ5ODIwZWE1MjAwNDg5NThm
NDhhZGMwHhcNMjYwNjMwMTEwMDM2WhcNMjYwNzAxMTEwMDM2WjAzMTEwLwYDVQQD
Eyg2MGI4N2ExYmVmOTUwMWZlOTc1ZmYyZGU3ZTU0MjRkYjA1YzM2MjRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWTBBgO+5SxywtPKP5aXKtpdc7B5
QToUZerkhPSO5DY5jlklxaG3gvntAe6hLovFVh5SBD5n8YLq0vfZpZEfuEDQz60D
8QwCGVOl2qHMVkVtYynK7ncHkQ2WipZ4+avjDt1oT7ZrfEaciVIhpsUFP6xGCDCq
/awgwV7QnK+pjwtoX3rZ+aHHsgqzsJzEap/zx7ovC4DuouwPaxr1rDHwXI7JGu34
79qZhVicDr5cTv7a30ARpIQhhy32UllQaUhZ2XqbIk89wPnMdUBurnL04fIBlEYM
QPdIZpkOzWeR3xY65Bs9hnlDemTdq0aVXKz3g0p4yKcEzbTmP6oUL+5OQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGC4ehvvlQH+l1/y3n5UJNsFw2JKMB8GA1UdIwQY
MBaAFN2F3GthQ6F/60mCDqUgBIlY9IrcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQt
NGFjODU2YTgxODJkLzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQtNGFjODU2YTgxODJk
LzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArb63eJ0H
jKqnUViYb116IrFR4QkLkzt4jur6a9/euoT9Z4beujrtbHdpoj4O6ZHH94f/o7uy
0HEDrU1gK9Fag9OCXz7LeemwLRWuxsFEWqvPosfQZv5tVJz8IFlylL+Zls4IQ3lK
7+z7/Zi28AaOG/C1MhzZTxkSYW2IfzUXiR8rK6+92ywvW96kUJN8E5wBIyGBaEyF
CwdiSDbdtgZoFFRYyQM/UygoMvjtUhRDAv3VdQkNdbdBlY5B/hVAxOL8OkXZeVRS
r/eqKnVhLGqB7IvNdM4GabRAfC6ki9+E6ZKD4KkEAtyTd4FnP/gNuUAnZ/0W7mih
+K51vqKjLtwqhg==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:22:35 2026 by rpki-client