Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
File: 3ciCMsB94s3Llur551FVC6pmxYg.mft (raw, json)
Hash identifier: 8CqgStKKWfFpJQn2LSVXaBa4JnY/JLths8hkW45vFfU=
Subject key identifier: BA:75:E2:D5:E2:4B:41:31:D5:B4:D6:8C:9F:2C:34:5C:D9:24:A1:47
Authority key identifier: DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88
Certificate issuer: /CN=ddc88232c07de2cdcb96eaf9e751550baa66c588
Certificate serial: 019F1867AB11AD4FB507B8CFD2B198B8D9BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
Manifest number: 10EA
Signing time: Tue 30 Jun 2026 12:01:14 +0000
Manifest this update: Tue 30 Jun 2026 12:01:14 +0000
Manifest next update: Wed 01 Jul 2026 12:01:14 +0000
Files and hashes: 1: 3ciCMsB94s3Llur551FVC6pmxYg.crl (hash: uJnDxR8mT2MFGNQM2EcaGkVr7B4GZ4Tm2XCKHs3GH8M=)
2: Hfq2hHkukqsFqywTjHsioREmNS4.roa (hash: paBdvdH/DYPPTu1rMzb8b23iJRlSlCeY0XMWLizu13w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:ab:11:ad:4f:b5:07:b8:cf:d2:b1:98:b8:d9:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddc88232c07de2cdcb96eaf9e751550baa66c588
Validity
Not Before: Jun 30 12:01:14 2026 GMT
Not After : Jul 1 12:01:14 2026 GMT
Subject: CN=ba75e2d5e24b4131d5b4d68c9f2c345cd924a147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:eb:92:0b:7a:0d:07:a2:a7:3a:a4:b8:57:d4:
60:72:85:bf:ca:83:0d:0c:fa:4e:c2:4b:ba:a7:2a:
60:84:a4:c3:50:ab:86:1f:b4:61:ff:39:09:96:f7:
d0:93:74:e7:a3:8c:78:5c:85:f9:fe:dd:b3:93:a4:
12:c0:8e:ce:1c:15:76:2e:a4:6d:36:73:90:37:95:
6d:a0:03:d8:60:1c:f7:aa:76:40:9a:a7:33:cb:3b:
90:92:b5:58:d1:cf:ba:cb:a7:7c:5f:11:40:0a:27:
87:07:2a:ba:5e:26:d1:18:bd:27:94:02:4a:4e:a7:
f1:65:76:13:b8:3c:44:39:c5:1f:b8:7e:75:1b:fe:
29:66:7d:5c:d8:be:86:4c:78:3d:92:78:c2:be:e0:
ad:17:af:e9:1a:18:b7:e0:21:b1:6f:f7:80:16:16:
64:78:94:ae:e2:fb:0a:13:81:47:bb:af:14:8e:0e:
9d:35:dd:f7:a3:d3:3d:4e:a2:d8:67:5d:dc:bf:a6:
e9:c7:1b:f6:ac:a5:31:92:80:89:e4:d8:de:fb:01:
0e:e8:91:f5:57:70:8f:26:a5:10:24:dc:58:3d:98:
f0:c9:b2:17:37:f4:a7:99:19:44:d3:87:b9:b7:bd:
13:bf:bb:fc:3e:a9:59:f2:e8:4d:1a:d8:ba:9e:61:
0b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:75:E2:D5:E2:4B:41:31:D5:B4:D6:8C:9F:2C:34:5C:D9:24:A1:47
X509v3 Authority Key Identifier:
keyid:DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:b2:41:a6:0e:29:d2:a6:6e:ba:8c:63:17:1f:c3:b3:30:d6:
3c:cd:03:19:96:6c:99:7a:4f:8b:4f:db:41:56:52:8a:d4:81:
c9:99:c2:b1:bd:ee:52:c3:5f:52:c7:2d:ea:b8:8e:ed:65:00:
c5:8e:b6:14:c2:c3:45:43:0a:bf:08:c4:6a:1d:8c:04:47:9c:
43:df:c1:a6:69:8b:2b:aa:79:47:cd:2a:07:e9:98:e7:82:d0:
f8:04:2a:8f:2f:ec:11:cb:df:b6:25:2a:a4:0d:f6:29:e5:44:
f6:96:67:42:61:72:9c:28:c0:79:fc:44:f9:75:e1:72:33:bb:
93:5b:82:d8:f3:69:19:91:0f:89:b4:23:7c:ba:b5:bb:78:a3:
85:02:62:d1:99:cc:7f:24:87:6f:fb:10:1c:86:58:77:16:dd:
30:79:f5:8b:c5:8c:ab:a0:0e:fe:b5:7c:29:32:60:25:ad:c5:
90:b3:fb:b2:13:fb:fe:6e:12:7e:0c:4f:ed:a7:4f:d3:71:ba:
13:45:0e:0b:ee:18:f1:61:8b:07:fe:32:e8:62:a4:1e:68:ff:
bd:0a:df:77:eb:5a:b5:e2:e6:c3:e4:15:d7:5f:4a:b8:43:ea:
70:81:56:dc:93:52:b5:af:29:0a:cb:e0:ad:95:d2:7f:bd:da:
e2:0f:d1:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YZ6sRrU+1B7jP0rGYuNm9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkYzg4MjMyYzA3ZGUyY2RjYjk2ZWFmOWU3NTE1NTBiYWE2
NmM1ODgwHhcNMjYwNjMwMTIwMTE0WhcNMjYwNzAxMTIwMTE0WjAzMTEwLwYDVQQD
EyhiYTc1ZTJkNWUyNGI0MTMxZDViNGQ2OGM5ZjJjMzQ1Y2Q5MjRhMTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvOuSC3oNB6KnOqS4V9RgcoW/yoMN
DPpOwku6pypghKTDUKuGH7Rh/zkJlvfQk3Tno4x4XIX5/t2zk6QSwI7OHBV2LqRt
NnOQN5VtoAPYYBz3qnZAmqczyzuQkrVY0c+6y6d8XxFACieHByq6XibRGL0nlAJK
TqfxZXYTuDxEOcUfuH51G/4pZn1c2L6GTHg9knjCvuCtF6/pGhi34CGxb/eAFhZk
eJSu4vsKE4FHu68Ujg6dNd33o9M9TqLYZ13cv6bpxxv2rKUxkoCJ5Nje+wEO6JH1
V3CPJqUQJNxYPZjwybIXN/SnmRlE04e5t70Tv7v8PqlZ8uhNGti6nmELkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLp14tXiS0Ex1bTWjJ8sNFzZJKFHMB8GA1UdIwQY
MBaAFN3IgjLAfeLNy5bq+edRVQuqZsWIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2NpQ01zQjk0czNMbHVyNTUxRlZDNnBteFlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8wYzk2ZDQtYzc2MC00YWE2LTg1ZGIt
NDJjNzliMDNiNGRmLzEvM2NpQ01zQjk0czNMbHVyNTUxRlZDNnBteFlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC8wYzk2ZDQtYzc2MC00YWE2LTg1ZGItNDJjNzliMDNiNGRm
LzEvM2NpQ01zQjk0czNMbHVyNTUxRlZDNnBteFlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkbJBpg4p
0qZuuoxjFx/DszDWPM0DGZZsmXpPi0/bQVZSitSByZnCsb3uUsNfUsct6riO7WUA
xY62FMLDRUMKvwjEah2MBEecQ9/BpmmLK6p5R80qB+mY54LQ+AQqjy/sEcvftiUq
pA32KeVE9pZnQmFynCjAefxE+XXhcjO7k1uC2PNpGZEPibQjfLq1u3ijhQJi0ZnM
fySHb/sQHIZYdxbdMHn1i8WMq6AO/rV8KTJgJa3FkLP7shP7/m4SfgxP7adP03G6
E0UOC+4Y8WGLB/4y6GKkHmj/vQrfd+tateLmw+QV119KuEPqcIFW3JNSta8pCsvg
rZXSf73a4g/RIQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:11:46 2026 by rpki-client