Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
File: 3PhcNsaW1dssu0j9Q-ghc37jQic.mft (raw, json)
Hash identifier: YcF4lPptbBQiaW6LUyLYrjzPE2dAYwLRTM1Hu1zTGsM=
Subject key identifier: 01:06:C2:3A:81:80:1B:52:77:77:4A:89:3B:0F:66:15:5B:CA:A6:6B
Authority key identifier: DC:F8:5C:36:C6:96:D5:DB:2C:BB:48:FD:43:E8:21:73:7E:E3:42:27
Certificate issuer: /CN=dcf85c36c696d5db2cbb48fd43e821737ee34227
Certificate serial: 019E30A9859887207848AA4A807EA080FF11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
Manifest number: 134A
Signing time: Sat 16 May 2026 12:01:16 +0000
Manifest this update: Sat 16 May 2026 12:01:16 +0000
Manifest next update: Sun 17 May 2026 12:01:16 +0000
Files and hashes: 1: 3PhcNsaW1dssu0j9Q-ghc37jQic.crl (hash: kthprlB3HocLqfdisFVjGZFfBe/twcOoUcC5M08d4DQ=)
2: aRFa0aicATO9EZ84Sd0rRZqpUDM.roa (hash: 3/X7mlyrk9jnsPYw8nohsn6KsOPiCxOy8zcW+IBYz8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:85:98:87:20:78:48:aa:4a:80:7e:a0:80:ff:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcf85c36c696d5db2cbb48fd43e821737ee34227
Validity
Not Before: May 16 12:01:16 2026 GMT
Not After : May 17 12:01:16 2026 GMT
Subject: CN=0106c23a81801b5277774a893b0f66155bcaa66b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:39:27:21:b0:8b:3a:79:13:f7:da:d5:f3:3c:
6b:4b:8c:c6:c5:3e:69:00:14:b3:5a:e6:81:45:c5:
75:ea:f8:1f:b2:6d:bd:4a:1d:49:2a:f2:06:6e:b7:
67:d1:2d:29:c3:23:b7:9d:5f:ba:8d:d4:11:15:b9:
91:36:08:ec:db:43:98:c0:fb:47:7c:b6:ba:d8:f2:
e6:a0:8b:18:48:2e:f1:8a:c7:24:7c:56:97:d1:63:
2d:2d:70:bd:bd:cf:06:f4:e8:13:c4:10:9c:9b:46:
86:32:69:eb:64:95:84:22:55:60:69:d3:46:c6:7a:
b3:41:01:53:b8:a8:f9:ab:4a:3d:f9:d1:da:1b:51:
a3:51:ec:85:60:df:d4:b9:a5:15:90:66:c8:25:c5:
da:26:03:e8:4d:e8:0e:53:00:c3:bd:68:ad:4b:3e:
5d:1a:5c:96:26:fd:20:25:f1:78:6a:0a:30:62:be:
5d:e5:15:16:12:59:5d:22:48:e9:01:ee:ae:83:50:
24:42:c0:78:2b:4a:97:9f:64:8a:f1:b1:0c:11:d4:
df:94:59:87:4e:0c:5c:a9:d7:d9:ec:90:55:89:44:
b5:2e:e0:27:95:6c:cd:0b:bb:b2:12:68:37:57:c9:
99:0b:8f:1e:81:0c:a7:b1:55:8c:ba:6c:d8:01:17:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:06:C2:3A:81:80:1B:52:77:77:4A:89:3B:0F:66:15:5B:CA:A6:6B
X509v3 Authority Key Identifier:
keyid:DC:F8:5C:36:C6:96:D5:DB:2C:BB:48:FD:43:E8:21:73:7E:E3:42:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:cb:26:81:e0:8a:f1:7a:80:c1:17:40:7e:ab:9b:e0:b4:b4:
44:20:bc:c1:2d:ec:b6:6c:ae:3e:1b:ca:c3:cb:1b:07:e4:31:
d8:43:ad:24:c6:8e:14:d8:cd:1a:05:3f:13:99:3e:09:39:9a:
90:e9:a9:f2:33:2b:0d:84:fb:ac:0b:9c:2f:ff:cb:8e:9f:aa:
e8:84:91:23:3c:37:60:2b:34:59:70:d7:cc:c4:a1:09:e8:86:
35:27:d1:88:b6:e2:57:4e:11:b2:e1:29:33:7c:bb:1e:5a:07:
6d:00:77:1a:fe:ed:5a:51:6b:b7:a7:b7:73:bf:79:79:d3:38:
28:e3:37:be:4b:62:ff:07:12:42:c5:09:63:e8:73:f4:c2:fb:
4d:22:6d:48:e1:5c:d9:a2:5f:fc:61:08:fc:1c:fe:1b:41:26:
c2:2d:3a:67:58:15:b0:13:f6:3e:09:3b:b2:1a:d7:c6:d2:d8:
a2:29:f0:de:48:d4:89:3e:47:cb:4a:d1:76:bf:11:55:03:02:
dc:c3:95:e0:7f:86:56:45:ec:c9:8f:39:68:89:b3:74:fc:90:
01:f7:22:02:30:27:01:ea:52:a5:80:78:89:76:ce:58:de:86:
e7:db:ed:98:4f:52:ca:2c:5f:32:99:58:4e:b9:ca:dd:ad:49:
97:41:09:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wqYWYhyB4SKpKgH6ggP8RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjZjg1YzM2YzY5NmQ1ZGIyY2JiNDhmZDQzZTgyMTczN2Vl
MzQyMjcwHhcNMjYwNTE2MTIwMTE2WhcNMjYwNTE3MTIwMTE2WjAzMTEwLwYDVQQD
EygwMTA2YzIzYTgxODAxYjUyNzc3NzRhODkzYjBmNjYxNTViY2FhNjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTknIbCLOnkT99rV8zxrS4zGxT5p
ABSzWuaBRcV16vgfsm29Sh1JKvIGbrdn0S0pwyO3nV+6jdQRFbmRNgjs20OYwPtH
fLa62PLmoIsYSC7xisckfFaX0WMtLXC9vc8G9OgTxBCcm0aGMmnrZJWEIlVgadNG
xnqzQQFTuKj5q0o9+dHaG1GjUeyFYN/UuaUVkGbIJcXaJgPoTegOUwDDvWitSz5d
GlyWJv0gJfF4agowYr5d5RUWElldIkjpAe6ug1AkQsB4K0qXn2SK8bEMEdTflFmH
TgxcqdfZ7JBViUS1LuAnlWzNC7uyEmg3V8mZC48egQynsVWMumzYAReIrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAEGwjqBgBtSd3dKiTsPZhVbyqZrMB8GA1UdIwQY
MBaAFNz4XDbGltXbLLtI/UPoIXN+40InMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1BoY05zYVcxZHNzdTBqOVEtZ2hjMzdqUWljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9jZmJjNjItNWQ1NC00MzI3LWIwNzIt
MGY1MmY4NjcxNzhkLzEvM1BoY05zYVcxZHNzdTBqOVEtZ2hjMzdqUWljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9jZmJjNjItNWQ1NC00MzI3LWIwNzItMGY1MmY4NjcxNzhk
LzEvM1BoY05zYVcxZHNzdTBqOVEtZ2hjMzdqUWljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANssmgeCK
8XqAwRdAfqub4LS0RCC8wS3stmyuPhvKw8sbB+Qx2EOtJMaOFNjNGgU/E5k+CTma
kOmp8jMrDYT7rAucL//Ljp+q6ISRIzw3YCs0WXDXzMShCeiGNSfRiLbiV04RsuEp
M3y7HloHbQB3Gv7tWlFrt6e3c795edM4KOM3vkti/wcSQsUJY+hz9ML7TSJtSOFc
2aJf/GEI/Bz+G0Emwi06Z1gVsBP2Pgk7shrXxtLYoinw3kjUiT5Hy0rRdr8RVQMC
3MOV4H+GVkXsyY85aImzdPyQAfciAjAnAepSpYB4iXbOWN6G59vtmE9SyixfMplY
TrnK3a1Jl0EJUA==
-----END CERTIFICATE-----
Generated at Sat May 16 22:01:26 2026 by rpki-client