Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
File: 3f20crHtWewvNw8g-rSHlDnFMY8.mft (raw, json)
Hash identifier: yKYFRhsBcCY5OomCstqStsNVJRb2vgvDIReY65RUHtI=
Subject key identifier: 90:16:61:D8:DC:BE:4B:37:0A:7C:C6:B4:3B:CC:7C:7D:3E:F0:EC:D3
Authority key identifier: DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F
Certificate issuer: /CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f
Certificate serial: 019EEAEAF305873C1A5E62CD4B4F189E228C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
Manifest number: 0188
Signing time: Sun 21 Jun 2026 16:02:06 +0000
Manifest this update: Sun 21 Jun 2026 16:02:06 +0000
Manifest next update: Mon 22 Jun 2026 16:02:06 +0000
Files and hashes: 1: 3f20crHtWewvNw8g-rSHlDnFMY8.crl (hash: xjqCPg7dVUtGFUo9xKkFGJnQQc8MCzHRIQYTGLnHFtw=)
2: ZMQkud9K3mvXdpjh-yoqav-Fm2A.roa (hash: rezLl6nocyRRaT4FpZnJ5CHwHhiv5ot72qwHgOZEFQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 11:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ea:ea:f3:05:87:3c:1a:5e:62:cd:4b:4f:18:9e:22:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f
Validity
Not Before: Jun 21 16:02:06 2026 GMT
Not After : Jun 22 16:02:06 2026 GMT
Subject: CN=901661d8dcbe4b370a7cc6b43bcc7c7d3ef0ecd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5a:8c:a3:2c:f2:d2:24:f9:9e:32:d4:65:da:
da:f7:3c:83:f2:56:67:15:de:0b:ce:eb:c9:1e:a9:
56:89:b1:ba:be:9e:6c:c6:99:9c:3b:5c:c9:29:4a:
0e:a3:83:a0:96:1d:63:4c:86:c0:cf:bc:d3:49:f3:
69:50:bf:e3:85:2c:3d:fd:a3:17:a7:6d:89:cb:eb:
29:a9:2f:e9:5e:99:5e:7f:01:4f:9a:31:30:b5:d1:
ac:c4:ca:2c:a0:13:d1:9e:1e:d1:97:f5:c0:fe:61:
e5:4d:e1:6f:8b:c7:1e:4a:7d:97:81:6e:56:64:e1:
08:43:3e:87:22:d7:06:2e:34:e5:2d:08:8a:d0:b2:
42:e6:16:a9:6c:29:5b:33:67:69:a4:c0:03:23:31:
46:76:e6:a8:f8:be:37:99:7e:f0:76:2d:a2:69:82:
f4:a8:cc:12:72:d8:2b:6f:ce:b9:39:07:e4:19:a6:
e4:cf:41:b7:f2:31:5f:6b:27:a4:2d:35:43:2f:a0:
d7:38:0d:d2:d2:80:85:f2:c0:a1:5d:8e:00:30:a7:
4b:a2:fe:83:44:5d:47:82:03:4d:ad:f3:9a:b2:0b:
16:5a:75:ba:3d:1a:53:c0:b9:16:5d:a0:09:4f:ba:
e8:2d:59:17:c7:48:c4:13:6d:4a:5d:dc:2f:62:c5:
0c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:16:61:D8:DC:BE:4B:37:0A:7C:C6:B4:3B:CC:7C:7D:3E:F0:EC:D3
X509v3 Authority Key Identifier:
keyid:DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:e6:29:43:95:f6:6c:3f:8e:4a:ba:e1:95:61:9d:94:0f:e2:
da:5d:ed:1b:09:12:2b:ce:11:48:82:39:49:f2:9b:db:e8:11:
36:ac:c9:d4:fe:ca:bc:04:71:f5:cb:6e:9e:48:be:2b:d8:c4:
97:c7:fd:98:74:ea:dc:f0:29:cd:74:92:fa:fb:00:19:59:79:
d7:41:b2:a2:cf:12:93:85:fb:8f:c7:9a:c9:4e:d5:71:70:c7:
c0:a0:36:a5:28:b8:32:b5:c8:d4:5a:bb:b2:89:14:3b:95:65:
19:b7:ca:40:01:e9:d9:78:1c:a5:1c:de:96:91:b8:22:ee:fe:
08:29:b6:c7:de:f6:27:bc:a6:0f:8b:40:47:77:6e:18:df:d5:
d5:06:1f:4d:9a:2d:7f:2d:a8:f3:1f:03:3d:60:da:b5:72:56:
9b:52:e0:68:2e:45:fa:74:d1:58:7a:01:a4:da:5d:fe:f1:88:
24:5b:bb:78:92:ca:87:43:34:00:f4:c6:86:05:ec:b7:0f:28:
88:b2:68:69:44:8d:3c:60:29:ca:e3:1b:66:2d:de:40:4a:40:
2a:38:cc:c3:cb:cc:7b:2d:2a:6a:a0:db:62:ca:e4:70:47:a2:
e8:6a:c8:7f:95:15:22:52:ed:0a:cd:33:7a:6a:15:dc:cf:12:
92:2e:09:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 19:42:56 2026 by rpki-client