Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: g8CsEl2IBvN0HlAk44dI+UOyECnI6cjMccp/FEeatm4=
Subject key identifier: F4:F8:C4:C0:EA:25:DB:F1:0A:DA:C3:15:98:2C:2A:02:56:73:7C:94
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019D2C2ACFA3F6963EAF8D5D97B02D59528C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 181A
Signing time: Thu 26 Mar 2026 22:01:36 +0000
Manifest this update: Thu 26 Mar 2026 22:01:36 +0000
Manifest next update: Fri 27 Mar 2026 22:01:36 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: wOxiS6iNBEEpVUFXkdaA3UgV4I1MvUvyUSG+/JKJgaI=)
2: FFrrJg1f7sBn9CMNkWOHWkncPKA.roa (hash: RRbiIEi7LB7ItO/8kZqYNCorz0xLwEEZeK7jHRHtAV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:2a:cf:a3:f6:96:3e:af:8d:5d:97:b0:2d:59:52:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Mar 26 22:01:36 2026 GMT
Not After : Mar 27 22:01:36 2026 GMT
Subject: CN=f4f8c4c0ea25dbf10adac315982c2a0256737c94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2f:21:ea:04:07:d2:89:1c:bd:cf:53:82:0c:
0f:87:3a:92:42:e4:85:de:74:54:f6:f9:bf:1f:4d:
a2:22:4f:d9:17:24:0a:4d:ac:aa:d2:1b:90:18:b6:
c3:36:82:0d:d2:f4:ad:1f:9d:77:bf:c4:21:31:62:
dc:3f:9f:4c:00:fa:20:56:c4:65:af:b1:88:08:49:
57:77:0b:09:8b:49:f2:60:06:e5:2d:19:ff:5d:59:
61:6b:95:8f:39:7b:4a:f2:0f:b1:a3:8b:be:6a:0d:
64:3e:51:9a:a5:c2:9e:22:7b:8c:e6:9c:0a:c4:b4:
04:2f:51:3b:e8:86:0f:4a:95:f0:96:3c:8b:72:14:
b3:88:26:4d:31:0d:27:6a:f6:1b:1c:66:2e:3a:93:
1f:4e:8e:20:9c:d6:61:09:d6:6f:fc:0f:ce:99:07:
8e:77:33:f5:5d:9d:1b:8d:29:7d:e3:80:54:ee:e6:
df:7c:05:b3:70:f5:a6:fc:b8:56:9e:9e:20:cb:a4:
27:5c:ba:5f:15:1a:d0:8d:32:61:6f:d5:22:f3:0a:
02:50:16:d0:aa:78:6d:8e:b4:51:03:42:6d:74:67:
b0:49:11:50:e4:a6:e3:e1:fa:46:d2:a4:69:ad:6d:
99:c9:18:27:02:c5:91:29:5a:37:e9:2d:2d:d9:0d:
a2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F8:C4:C0:EA:25:DB:F1:0A:DA:C3:15:98:2C:2A:02:56:73:7C:94
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:a2:53:b9:40:30:b3:8a:ae:f5:96:2d:d1:70:ad:35:7d:4c:
f2:8e:18:f5:dd:f6:14:96:3b:30:b7:e2:79:3a:1f:80:a9:fc:
04:3c:ef:aa:61:34:1d:cc:43:7c:c0:45:92:3a:81:f9:cb:e0:
85:9b:90:5d:f8:77:cf:d2:7e:40:58:34:c6:3a:36:3a:90:ec:
79:74:66:77:5f:8a:fb:3f:03:fe:f2:6a:d3:d1:d5:79:7a:3d:
10:38:34:bc:e7:52:67:0d:92:d2:0a:2e:53:b2:e4:55:bc:e3:
1f:a8:04:7f:d5:74:fd:80:5e:20:59:16:e2:b2:e4:05:52:2e:
6a:26:4b:a6:b5:8b:6e:65:f6:22:74:c9:31:f5:06:b0:46:f5:
02:76:3d:72:0e:99:f1:57:c5:cf:75:81:a5:87:16:70:ce:6c:
7e:a5:8e:55:c0:9a:53:6c:7f:65:42:93:aa:32:34:7a:c5:e2:
cb:dc:71:ca:81:94:80:ce:ce:75:24:e0:86:7f:8b:46:bc:2b:
b0:8d:09:6d:0e:d2:f5:95:31:09:6f:33:27:de:61:26:47:7f:
bf:b7:f4:04:86:e7:91:45:64:75:79:c5:a7:5b:1a:3f:e2:e7:
58:b7:b7:9c:3b:a7:30:e2:d2:25:54:de:45:1c:55:0e:5a:26:
ec:f8:f0:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 03:09:48 2026 by rpki-client