Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
File: 3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft (raw, json)
Hash identifier: MjzsAwrXIDAOezBAsddPHIL8tKXzs8zioWU3SYYNFAE=
Subject key identifier: 2D:07:9A:67:43:99:19:92:7A:D4:19:1B:EE:31:A5:3B:4C:F4:D3:D5
Authority key identifier: DF:3B:1D:27:73:A0:3D:31:7A:77:03:19:3D:2F:45:42:9A:94:BA:9F
Certificate issuer: /CN=df3b1d2773a03d317a7703193d2f45429a94ba9f
Certificate serial: 019E1DC78F05897EC6F9F11D6DF1BA096A09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3zsdJ3OgPTF6dwMZPS9FQpqUup8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
Manifest number: 02EC
Signing time: Tue 12 May 2026 20:01:17 +0000
Manifest this update: Tue 12 May 2026 20:01:17 +0000
Manifest next update: Wed 13 May 2026 20:01:17 +0000
Files and hashes: 1: 3zsdJ3OgPTF6dwMZPS9FQpqUup8.crl (hash: lPSd5CrVAWMcLqeAtKamyBqZsEiBVdolCkWiHIAwD24=)
2: zi6BX2pprFhR63Y5lPO5fzP2XJw.roa (hash: k4cOLLcWBtedRh3+dHl3HpPG8a/ZH38IiLNVDqMNrQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3zsdJ3OgPTF6dwMZPS9FQpqUup8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:8f:05:89:7e:c6:f9:f1:1d:6d:f1:ba:09:6a:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df3b1d2773a03d317a7703193d2f45429a94ba9f
Validity
Not Before: May 12 20:01:17 2026 GMT
Not After : May 13 20:01:17 2026 GMT
Subject: CN=2d079a67439919927ad4191bee31a53b4cf4d3d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:11:97:1a:4f:cd:d3:b2:4d:bf:a2:96:ba:74:
e0:18:b5:8b:84:43:1f:a4:7c:02:93:71:7c:e1:fb:
07:de:e3:35:c9:60:68:a1:69:f8:1c:c5:af:fb:5e:
1a:ef:e3:71:20:e9:6a:af:a3:a7:d8:dc:a8:a6:a5:
88:0c:27:74:27:c6:fb:68:18:a3:47:3e:36:93:e8:
df:33:d0:6d:35:f0:4f:53:b2:9a:c8:6b:eb:1e:2e:
b9:8c:cd:e0:28:4c:18:3a:e1:97:49:39:a7:02:fc:
66:d4:98:6e:c4:ef:f7:2e:59:de:4b:de:12:7e:c6:
ec:f4:de:37:6a:fa:dd:43:30:d8:b1:9c:fb:fd:25:
07:64:b2:ea:f6:6d:20:2c:5e:c4:3c:b7:d9:17:27:
57:b3:0c:ec:7c:f9:57:87:36:d6:a4:a6:c7:8c:93:
22:a2:c5:2c:9c:df:9b:1e:45:72:f6:82:3b:a9:b8:
0c:c0:30:20:95:3e:7a:f0:03:42:f5:47:f2:b7:21:
02:07:d0:ea:39:bf:ca:1d:c0:a3:e7:f5:f1:4c:02:
90:45:4d:e5:65:5f:e7:2e:62:18:91:4c:02:14:73:
ba:57:5d:40:5f:e1:c8:ff:91:99:d0:25:7c:1d:06:
ee:6f:0e:6b:37:bf:95:cc:2b:6b:9c:64:ab:48:b3:
4f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:07:9A:67:43:99:19:92:7A:D4:19:1B:EE:31:A5:3B:4C:F4:D3:D5
X509v3 Authority Key Identifier:
keyid:DF:3B:1D:27:73:A0:3D:31:7A:77:03:19:3D:2F:45:42:9A:94:BA:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3zsdJ3OgPTF6dwMZPS9FQpqUup8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:5a:6f:f2:b9:e2:a0:b8:7b:37:f2:88:6d:26:80:d9:86:be:
80:d3:0d:30:31:46:6c:d4:51:1a:ac:8f:da:f0:e0:cb:54:ee:
50:47:e3:66:ad:1b:e8:b1:98:e4:36:a4:8d:48:30:aa:5d:16:
73:95:3f:2f:11:38:ee:8c:bf:23:56:a3:22:80:1f:3b:2a:17:
5f:fb:0d:64:10:56:f2:ae:16:38:9b:fb:df:a9:00:4c:b6:58:
b2:72:32:98:24:60:e5:21:e3:12:c3:cb:46:11:a9:38:6c:8a:
f7:71:c0:d7:2a:be:8d:f9:3a:fc:b7:16:bf:41:e1:21:5d:7a:
a1:56:63:4c:60:6d:ee:f6:40:b2:3d:a5:70:2f:2f:40:3c:06:
d9:39:2e:55:6b:84:52:b7:ac:2c:ce:87:5e:34:d7:a7:98:97:
e4:c8:b8:7f:82:15:f0:2e:3a:3b:4c:2d:06:c8:d8:13:b4:07:
67:2f:00:34:1c:89:70:22:9e:ea:cb:01:26:e0:5a:c0:8c:62:
99:89:f4:4b:2b:86:ec:99:5a:58:5c:f5:61:c1:18:4c:29:71:
99:8f:42:ea:1f:b3:e5:67:c4:3b:08:1b:b3:ef:93:6b:2b:22:
33:49:dc:d6:63:9c:9c:5b:78:42:4f:f9:89:34:45:7f:63:46:
e7:e6:bb:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:42:52 2026 by rpki-client