Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
File: 3ciCMsB94s3Llur551FVC6pmxYg.mft (raw, json)
Hash identifier: 4rewkN/GGXDJM2kp+y+fTppQtiZJMxkmpnJ9A8csxew=
Subject key identifier: C2:FF:B2:58:6E:BD:51:0F:A4:8D:3F:A0:E2:9A:4F:27:ED:7C:E0:3C
Authority key identifier: DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88
Certificate issuer: /CN=ddc88232c07de2cdcb96eaf9e751550baa66c588
Certificate serial: 019E30A9B19FE5354E7E0F09F9DB0659606C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
Manifest number: 1072
Signing time: Sat 16 May 2026 12:01:27 +0000
Manifest this update: Sat 16 May 2026 12:01:27 +0000
Manifest next update: Sun 17 May 2026 12:01:27 +0000
Files and hashes: 1: 3ciCMsB94s3Llur551FVC6pmxYg.crl (hash: bz6Wl5jAJy/5Ma9EMBti2XE9nU6J/rMQ9LvMgtngseI=)
2: Hfq2hHkukqsFqywTjHsioREmNS4.roa (hash: paBdvdH/DYPPTu1rMzb8b23iJRlSlCeY0XMWLizu13w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:b1:9f:e5:35:4e:7e:0f:09:f9:db:06:59:60:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddc88232c07de2cdcb96eaf9e751550baa66c588
Validity
Not Before: May 16 12:01:27 2026 GMT
Not After : May 17 12:01:27 2026 GMT
Subject: CN=c2ffb2586ebd510fa48d3fa0e29a4f27ed7ce03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d6:53:39:67:6d:d5:28:1a:d1:81:a9:86:74:
b0:e3:7e:36:c3:97:ed:a9:31:41:ec:82:9a:e4:1e:
dd:fd:f4:25:cd:1d:82:d9:53:94:22:c2:53:89:49:
fc:24:e4:2d:3d:e3:01:c4:fe:6f:a6:76:a5:c6:16:
67:1d:89:92:2c:17:b8:18:48:92:a9:47:e3:1e:e7:
6c:90:e2:c6:ab:2a:25:b1:2c:85:89:2e:a8:96:d4:
9f:ae:30:50:44:3e:22:87:c6:f5:54:4c:22:55:e1:
ec:3d:f7:fc:92:91:e8:ea:e9:9d:f4:e2:a3:d6:f0:
e1:54:d4:40:0f:1e:18:f8:31:d2:8d:47:23:d4:53:
c1:2f:23:3c:a0:12:6d:94:92:28:bd:be:aa:6d:b6:
10:08:4e:74:af:53:b3:a6:0c:2a:5f:ed:5e:c9:eb:
1c:77:af:27:29:33:03:4a:df:d6:98:48:e7:48:64:
ea:63:8b:44:21:a9:15:e3:4c:40:17:0e:c5:20:ca:
62:79:4e:a9:43:b1:09:52:46:a3:c5:37:d2:80:3e:
31:9f:a7:39:39:3b:d0:9b:6e:1c:89:c3:0d:99:e0:
10:41:70:fa:ce:6f:ae:55:e9:f0:52:ee:70:4c:09:
72:81:b0:83:33:76:00:fc:61:72:c4:3f:76:43:c7:
7a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:FF:B2:58:6E:BD:51:0F:A4:8D:3F:A0:E2:9A:4F:27:ED:7C:E0:3C
X509v3 Authority Key Identifier:
keyid:DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:76:b2:23:26:64:41:f3:ef:0d:04:85:e0:2c:a2:9b:34:73:
7a:b0:f2:55:6a:ac:b0:00:03:64:4a:ee:b5:b5:92:b2:b7:c9:
b6:28:98:c2:f6:87:37:3d:57:2c:75:e5:b2:e7:3d:d4:9a:1c:
b3:88:c7:d6:a4:3b:40:e6:51:b3:c0:b0:5f:81:bf:0f:55:56:
88:c7:be:13:4f:f1:9e:50:30:06:81:c9:d9:d9:78:65:05:54:
e1:78:0f:d6:14:a7:cc:1c:4c:0a:d4:ff:da:37:d1:f2:3f:60:
e8:ef:18:1d:50:d4:30:61:f6:04:78:45:20:c7:dd:da:73:db:
d3:64:4b:87:22:de:8e:e7:a5:6c:75:c0:cc:93:c4:fd:dd:e1:
46:c4:2b:cb:71:46:d4:dd:cb:11:72:4b:93:94:84:cb:98:84:
5d:4f:f7:6d:90:72:a2:c0:b7:e3:9c:e0:bd:eb:79:49:04:59:
71:54:6b:2a:d1:83:8a:82:ab:7c:85:4b:4c:40:fc:21:cd:af:
e3:25:17:5b:b7:a9:be:1c:0e:18:c7:48:01:cb:ca:0d:2b:9f:
59:64:f4:cf:db:e4:b5:95:e0:a8:5d:2b:1f:e2:b8:91:63:a5:
58:a2:a3:71:9f:0a:6c:07:e7:00:bf:b3:67:e1:19:f6:4c:62:
91:99:2d:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:37:46 2026 by rpki-client