Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
File: a3sSBFsa8JrPlmLuNbos1-HIW60.mft (raw, json)
Hash identifier: 8H2v7s9n2mrb33zNW43dRD9ePq8uKMAeaeNgcoU5nUQ=
Subject key identifier: 3E:94:F8:1C:CA:9F:B7:94:19:A5:3A:13:65:98:FF:24:8C:2E:B3:7B
Authority key identifier: 6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
Certificate issuer: /CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Certificate serial: 019EE39F40BD2BBC7D67D856EB075A8DB7C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
Manifest number: 0918
Signing time: Sat 20 Jun 2026 06:02:05 +0000
Manifest this update: Sat 20 Jun 2026 06:02:05 +0000
Manifest next update: Sun 21 Jun 2026 06:02:05 +0000
Files and hashes: 1: 6ay0wHDiAgZDJPmL-UcgJsFPARM.roa (hash: pRBfANPJG+/QAyrSHAeenbhDDnLtn2aB52e6eqKhKNI=)
2: a3sSBFsa8JrPlmLuNbos1-HIW60.crl (hash: RsPvxCYi1f2AP/E0kCiDIk3Y10fwceXdDpGi7i3wJ5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e3:9f:40:bd:2b:bc:7d:67:d8:56:eb:07:5a:8d:b7:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Validity
Not Before: Jun 20 06:02:05 2026 GMT
Not After : Jun 21 06:02:05 2026 GMT
Subject: CN=3e94f81cca9fb79419a53a136598ff248c2eb37b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:54:eb:e6:96:f2:31:de:8e:f6:02:54:fd:a8:
e4:58:b2:33:79:36:33:a8:2b:f5:ef:7b:5d:26:f6:
c1:00:58:c0:ab:04:28:5d:24:26:ed:e9:45:9b:d8:
59:8d:dc:77:a6:bd:ac:97:ed:f2:d6:0f:1a:6e:2a:
2b:9b:62:44:c2:ba:30:6b:47:5c:25:e4:ed:3b:c1:
0d:bd:94:c1:f8:2f:b0:00:05:60:46:c7:33:59:da:
19:12:86:74:26:c0:a5:86:2b:93:67:48:23:4a:e7:
c3:e5:97:0e:69:1b:d7:cd:1f:44:e6:27:27:90:fc:
70:d9:2f:60:86:8e:bb:f2:66:79:19:3f:b3:ce:09:
9e:03:72:3c:8c:fd:e1:7b:af:ee:5c:6f:d1:66:24:
10:66:72:83:39:fa:c3:85:9e:d9:f5:5f:15:bd:05:
85:93:e1:61:94:b3:00:a0:c9:81:1f:22:9e:f2:9a:
87:5b:d4:a8:50:a3:0f:ee:44:1d:b8:eb:4e:9a:de:
ea:b7:af:ed:60:24:22:7c:93:99:c4:6e:45:18:43:
a6:e8:45:87:e5:4e:5f:a4:ed:d1:83:de:35:0b:0e:
5f:02:50:e8:d8:fc:32:0e:35:99:d6:55:14:d8:68:
c1:96:5b:bc:78:b0:f0:56:54:5e:3c:72:a2:ae:1c:
10:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:94:F8:1C:CA:9F:B7:94:19:A5:3A:13:65:98:FF:24:8C:2E:B3:7B
X509v3 Authority Key Identifier:
keyid:6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:ae:9b:3b:6d:96:c2:8e:21:c2:7e:29:6d:3b:a6:7b:dc:82:
7f:d6:c8:19:cc:de:59:e7:df:fe:9a:5a:60:2f:8f:6e:4e:bc:
6c:a2:6b:20:64:4b:25:01:e8:7e:11:a2:15:0a:63:14:0b:78:
69:1d:56:ed:9f:d9:07:38:49:bf:31:66:77:eb:04:dd:70:cf:
d4:63:1d:d0:26:4e:05:f9:d6:af:32:22:ff:47:02:23:9a:44:
33:bd:20:49:73:7e:e1:49:2a:aa:3b:86:f9:8e:de:8a:85:4f:
87:3c:9d:89:8c:f1:9f:6a:78:5b:1e:c9:98:d9:69:29:3e:a0:
b5:84:6c:dd:f1:61:99:db:4c:f3:dc:04:a0:2e:ab:03:68:0b:
b9:e3:5b:21:3e:9e:6d:3b:40:84:07:d6:9c:af:d9:9b:fb:d1:
6e:f9:35:e6:e7:6d:30:93:96:73:18:f6:ee:c3:0c:aa:58:25:
c6:8a:0d:6e:0a:b4:7f:ab:5d:46:cd:70:f5:8c:0a:a4:01:0f:
48:af:06:3d:d0:3c:30:9c:95:b3:ba:a1:82:62:cd:2c:e0:8a:
f8:cb:0e:08:40:c8:e0:d4:24:1c:37:73:db:45:d8:f7:8f:b2:
81:c0:4f:11:49:0e:56:11:ac:c1:d2:42:81:b1:ee:7d:28:75:
50:07:60:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 20 12:33:39 2026 by rpki-client