Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
File: 3hgnB8REwxBksYmcWX6e_XNDj5I.mft (raw, json)
Hash identifier: eb+Db/RT2jK1o771AJBe7PbNMSmcdTO1d3RvpCAEa6k=
Subject key identifier: 97:8C:6E:1A:31:71:F9:67:01:D9:43:72:F1:EF:89:E6:92:9D:FB:27
Authority key identifier: DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
Certificate issuer: /CN=de182707c444c31064b1899c597e9efd73438f92
Certificate serial: 019E2F5F5E74D75BD92FD3138E07BAC3278C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
Manifest number: 0878
Signing time: Sat 16 May 2026 06:00:39 +0000
Manifest this update: Sat 16 May 2026 06:00:39 +0000
Manifest next update: Sun 17 May 2026 06:00:39 +0000
Files and hashes: 1: 3hgnB8REwxBksYmcWX6e_XNDj5I.crl (hash: pNMIivFCsSYdD5o+GPzZ0vv6THtlnNPppmV9BPol2cY=)
2: _sKUqr_T2WU5wpJt5pENqGxaGNg.roa (hash: 26WyPtt0JWgZh/PV/eTd/0WIUbfzzYa6z8NjLk7cJ+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 06:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:5f:5e:74:d7:5b:d9:2f:d3:13:8e:07:ba:c3:27:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de182707c444c31064b1899c597e9efd73438f92
Validity
Not Before: May 16 06:00:39 2026 GMT
Not After : May 17 06:00:39 2026 GMT
Subject: CN=978c6e1a3171f96701d94372f1ef89e6929dfb27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ea:f0:e2:39:99:68:e0:c3:1d:6c:6f:e9:04:
32:da:d1:46:1c:c2:ab:08:f6:80:9e:eb:c1:6e:57:
36:de:70:d8:98:8e:76:6b:cf:bb:0d:c7:63:fb:0a:
dc:c9:0e:4c:98:92:dd:a5:bd:e0:db:44:89:d3:2c:
3f:f6:70:2c:df:de:0f:c3:d5:64:1b:d2:90:0e:cd:
8e:8d:83:40:11:1b:cb:cd:67:08:15:aa:74:e9:b5:
3c:7c:d2:5a:d7:e8:be:bc:07:76:88:52:24:4e:06:
9c:8f:f3:27:d1:9d:c0:24:b6:ab:c9:29:df:c5:7d:
40:b9:fc:15:13:8a:3e:ec:e2:64:d5:d6:81:22:6e:
8d:c6:32:e2:58:94:64:c5:95:41:76:fe:df:60:e1:
55:a2:ae:6b:b7:1a:d2:5d:79:83:b3:94:59:12:b1:
ba:93:33:2f:97:99:87:76:67:4a:a6:b3:6a:c0:bd:
4d:b6:8c:af:f6:f2:07:52:58:75:9f:74:b0:21:f2:
ac:4b:87:2e:e5:f0:15:a0:11:4f:a5:9e:cb:12:e1:
95:ab:44:21:67:c0:4b:ea:3a:49:4c:6c:8f:ec:74:
67:d2:94:61:56:33:fb:dd:a2:85:90:e9:57:9e:c2:
0d:bf:49:61:da:e5:0c:1d:c9:c6:59:de:61:bd:cd:
34:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8C:6E:1A:31:71:F9:67:01:D9:43:72:F1:EF:89:E6:92:9D:FB:27
X509v3 Authority Key Identifier:
keyid:DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:9e:72:c7:10:80:7e:82:11:28:67:52:55:18:a9:e7:49:94:
5e:0f:e8:87:c9:74:e7:55:4f:25:ae:35:17:60:ca:01:8d:ad:
fd:64:7c:18:ec:ae:7d:2a:9c:49:bd:32:08:9d:f2:ff:e6:e9:
6f:af:38:a3:aa:9a:85:de:90:79:82:9e:1d:f6:17:e9:d1:f1:
b2:29:61:a7:45:ab:f4:fc:62:3a:54:0e:51:36:a6:c8:c1:ab:
67:10:0d:7b:dc:4a:86:42:78:08:62:cb:c9:92:f0:1b:bd:06:
ec:27:51:b1:3b:3b:b2:d1:fb:ae:49:7b:65:d8:37:a0:9a:36:
00:5c:74:a5:ec:19:ee:b9:4d:d9:a1:03:6f:c6:10:43:53:22:
93:ab:06:4e:e4:ab:c6:22:86:88:4d:8b:d2:be:fc:32:06:46:
0b:aa:0d:5d:a0:cc:74:e2:d1:c2:04:a6:49:a6:b6:fc:40:b1:
1d:cb:e6:18:28:0b:14:99:67:ff:00:2f:28:12:83:af:38:12:
55:0b:44:4d:f7:f0:dd:a2:6c:0e:6f:75:0a:0e:63:cb:0f:95:
2c:d6:bb:59:84:6a:83:3f:b1:27:3e:5f:07:59:43:f1:4e:cb:
45:a8:20:23:8b:44:36:bd:e1:6e:ee:19:cf:76:ce:6a:93:bd:
68:95:3a:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vX15011vZL9MTjge6wyeMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMTgyNzA3YzQ0NGMzMTA2NGIxODk5YzU5N2U5ZWZkNzM0
MzhmOTIwHhcNMjYwNTE2MDYwMDM5WhcNMjYwNTE3MDYwMDM5WjAzMTEwLwYDVQQD
Eyg5NzhjNmUxYTMxNzFmOTY3MDFkOTQzNzJmMWVmODllNjkyOWRmYjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+rw4jmZaODDHWxv6QQy2tFGHMKr
CPaAnuvBblc23nDYmI52a8+7Dcdj+wrcyQ5MmJLdpb3g20SJ0yw/9nAs394Pw9Vk
G9KQDs2OjYNAERvLzWcIFap06bU8fNJa1+i+vAd2iFIkTgacj/Mn0Z3AJLarySnf
xX1AufwVE4o+7OJk1daBIm6NxjLiWJRkxZVBdv7fYOFVoq5rtxrSXXmDs5RZErG6
kzMvl5mHdmdKprNqwL1Ntoyv9vIHUlh1n3SwIfKsS4cu5fAVoBFPpZ7LEuGVq0Qh
Z8BL6jpJTGyP7HRn0pRhVjP73aKFkOlXnsINv0lh2uUMHcnGWd5hvc00NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJeMbhoxcflnAdlDcvHvieaSnfsnMB8GA1UdIwQY
MBaAFN4YJwfERMMQZLGJnFl+nv1zQ4+SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2hnbkI4UkV3eEJrc1ltY1dYNmVfWE5EajVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8zYmYzMDEtZDE4OS00NzVkLTk1ZGMt
ZWFhZTNkZThhYjU4LzEvM2hnbkI4UkV3eEJrc1ltY1dYNmVfWE5EajVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi8zYmYzMDEtZDE4OS00NzVkLTk1ZGMtZWFhZTNkZThhYjU4
LzEvM2hnbkI4UkV3eEJrc1ltY1dYNmVfWE5EajVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJZ5yxxCA
foIRKGdSVRip50mUXg/oh8l051VPJa41F2DKAY2t/WR8GOyufSqcSb0yCJ3y/+bp
b684o6qahd6QeYKeHfYX6dHxsilhp0Wr9PxiOlQOUTamyMGrZxANe9xKhkJ4CGLL
yZLwG70G7CdRsTs7stH7rkl7Zdg3oJo2AFx0pewZ7rlN2aEDb8YQQ1Mik6sGTuSr
xiKGiE2L0r78MgZGC6oNXaDMdOLRwgSmSaa2/ECxHcvmGCgLFJln/wAvKBKDrzgS
VQtETffw3aJsDm91Cg5jyw+VLNa7WYRqgz+xJz5fB1lD8U7LRaggI4tENr3hbu4Z
z3bOapO9aJU6IA==
-----END CERTIFICATE-----
Generated at Sat May 16 15:40:04 2026 by rpki-client