Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
File: CaT39OTp5yw6M5P7XW6nQrwbTCg.mft (raw, json)
Hash identifier: BE77p05I/mfbY9vif65bhaFuWIB2T2Jk9A7pKtVeFlY=
Subject key identifier: B4:B1:75:63:1F:9E:B6:B4:C1:3D:68:AC:28:E2:90:A3:42:C1:51:37
Authority key identifier: 09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
Certificate issuer: /CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Certificate serial: 019E303B32CBF0DA76ADCE2FCDB6E1C7FAE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
Manifest number: 12D3
Signing time: Sat 16 May 2026 10:00:46 +0000
Manifest this update: Sat 16 May 2026 10:00:46 +0000
Manifest next update: Sun 17 May 2026 10:00:46 +0000
Files and hashes: 1: 0tgdN2qxcJplebNaaWT9iaqWv6s.roa (hash: SVEBZu78M2nPUUItloPsYESxd6cYYGpVpIZuduXUUjU=)
2: CaT39OTp5yw6M5P7XW6nQrwbTCg.crl (hash: oyIsypW7Txd8DEYq+JeimHWxl3bxK2wszxxHW0L2Ws4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:32:cb:f0:da:76:ad:ce:2f:cd:b6:e1:c7:fa:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Validity
Not Before: May 16 10:00:46 2026 GMT
Not After : May 17 10:00:46 2026 GMT
Subject: CN=b4b175631f9eb6b4c13d68ac28e290a342c15137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9c:9e:f3:71:21:8b:8b:d6:f5:3b:70:52:fa:
23:c7:fb:0c:5a:93:53:59:61:ae:95:a9:03:c0:45:
50:30:b0:5b:ae:11:7b:30:81:2f:de:d9:dd:52:4b:
37:ae:87:e2:ab:cb:f6:07:99:00:73:b0:ab:cb:8d:
1c:6f:a3:c9:68:98:2f:8d:c9:42:89:8b:f6:67:68:
57:ce:3f:c7:c7:af:83:20:b5:bf:cc:31:06:1d:b6:
f9:06:9d:20:b2:4c:c2:78:e5:63:62:97:27:23:fd:
35:c0:19:73:c8:e9:23:7f:a2:6d:93:6e:f7:5e:08:
f0:14:b0:a4:d7:66:8d:14:66:e3:05:89:9d:a1:62:
2d:ae:4e:cc:e9:b9:2f:7a:63:22:b4:78:5b:b6:85:
c2:35:f3:f5:9f:f3:ab:9e:f0:df:78:bc:cd:a4:b1:
44:f2:b2:17:4f:d8:e0:1c:3e:ea:5f:f6:b9:7d:44:
c9:0d:99:4f:72:7b:a7:62:9d:39:93:c3:6e:f7:22:
fe:e6:40:25:39:66:54:c3:bd:ed:20:7b:4f:d9:b1:
d1:fb:c9:e4:29:e0:48:70:bf:ec:a3:12:8f:68:78:
f7:71:a3:b5:9c:cc:a9:d5:4a:d3:31:70:f6:9c:b4:
10:8b:4c:2c:7a:2d:65:a4:fb:d7:35:23:49:6c:53:
11:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B1:75:63:1F:9E:B6:B4:C1:3D:68:AC:28:E2:90:A3:42:C1:51:37
X509v3 Authority Key Identifier:
keyid:09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:be:3e:61:e6:4c:1d:a4:a9:14:2b:65:0a:ec:0d:56:67:a2:
27:69:5c:54:03:6e:1b:49:1b:86:f4:a5:d4:be:88:82:af:a5:
25:05:1b:54:6f:61:4b:a3:79:43:16:8b:ad:73:ad:4c:c4:f4:
9b:c1:47:56:d6:ed:55:88:de:58:87:87:7d:7d:fa:7c:7c:e7:
a2:bd:bc:ea:27:59:49:17:d0:23:68:39:ec:17:5d:5c:08:36:
eb:38:a1:b7:6e:a1:b8:1a:ee:aa:94:08:6c:ac:d2:b0:b2:60:
1a:10:f9:66:93:3d:95:96:e6:49:b1:9f:90:da:0a:d9:4a:1b:
b7:bb:f5:20:b5:d4:e7:92:33:4f:d8:94:01:53:9c:c4:26:75:
f0:9e:92:97:2c:48:b4:be:bc:a4:fb:52:ea:85:b5:44:36:6c:
db:39:1f:73:0e:86:da:ae:6c:ed:bd:b1:dc:71:24:0c:e3:5d:
ec:5c:5f:92:b8:9c:38:43:e2:12:45:ad:75:97:79:d8:3d:a1:
f2:1d:a7:9b:c8:b4:ca:6e:7f:fe:60:74:94:2e:3e:c4:2b:87:
7a:bd:46:f7:76:52:65:f6:15:40:a6:53:1e:dc:40:ab:e6:e3:
81:73:33:f0:93:10:bd:98:a6:4c:89:5b:a8:b3:cf:f9:a0:16:
7c:5b:4d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:40:10 2026 by rpki-client