Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
File: 3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft (raw, json)
Hash identifier: po31C9RwZCWDljI3L7VknCNwASjS+Q1l3+yFF4XXq0g=
Subject key identifier: F4:E4:E8:EF:00:4F:7E:85:A3:64:94:F7:7D:56:A2:19:31:E3:0E:69
Authority key identifier: DF:3B:1D:27:73:A0:3D:31:7A:77:03:19:3D:2F:45:42:9A:94:BA:9F
Certificate issuer: /CN=df3b1d2773a03d317a7703193d2f45429a94ba9f
Certificate serial: 019D2695CC8BFC40D8039F526B79B2AB5BDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3zsdJ3OgPTF6dwMZPS9FQpqUup8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
Manifest number: 026C
Signing time: Wed 25 Mar 2026 20:00:44 +0000
Manifest this update: Wed 25 Mar 2026 20:00:44 +0000
Manifest next update: Thu 26 Mar 2026 20:00:44 +0000
Files and hashes: 1: 3zsdJ3OgPTF6dwMZPS9FQpqUup8.crl (hash: 1G8lWVDBxHxbPkNGn4Oy4icNmNPD77FsjolSosthRFE=)
2: zi6BX2pprFhR63Y5lPO5fzP2XJw.roa (hash: k4cOLLcWBtedRh3+dHl3HpPG8a/ZH38IiLNVDqMNrQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3zsdJ3OgPTF6dwMZPS9FQpqUup8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:95:cc:8b:fc:40:d8:03:9f:52:6b:79:b2:ab:5b:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df3b1d2773a03d317a7703193d2f45429a94ba9f
Validity
Not Before: Mar 25 20:00:44 2026 GMT
Not After : Mar 26 20:00:44 2026 GMT
Subject: CN=f4e4e8ef004f7e85a36494f77d56a21931e30e69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b5:06:66:c9:5b:e8:3d:d3:52:e7:e5:0e:58:
21:47:de:55:59:99:e7:0d:8b:79:d0:6f:b1:33:97:
87:b9:0b:ce:3b:50:b8:19:a9:cd:66:3e:a3:9d:6c:
0b:a0:d9:68:9c:56:1e:ae:7d:bc:9e:d0:60:7b:b2:
15:5d:e6:6e:fe:9e:1c:49:36:43:c6:74:2f:21:96:
99:5b:83:70:4f:e7:4e:64:a9:cc:d1:6a:ca:06:19:
2f:35:ec:2e:a8:d6:a1:e4:6a:aa:1b:59:a0:b9:bf:
b2:70:40:08:12:7e:b2:1b:c7:b1:b8:54:9c:37:b0:
af:f8:82:9b:2b:11:86:e1:a1:5e:6b:9b:89:15:9d:
71:5b:1d:77:f1:03:ca:b3:59:5d:99:1a:63:55:69:
67:86:95:f5:7d:ea:46:ff:77:23:92:16:d5:a2:dc:
76:65:ff:89:7d:65:ec:29:e8:a5:4a:02:96:11:9b:
a6:42:6f:90:11:c5:a1:0f:1c:86:70:4b:0e:8a:e8:
26:43:1e:90:4a:54:36:7e:d7:20:52:a7:f4:43:a1:
05:d1:b5:f4:3f:78:12:a3:16:0b:3a:21:5b:bc:26:
70:f6:e9:51:82:df:ab:78:cc:15:9b:68:21:ac:e7:
39:68:5b:c8:0d:e0:63:96:21:87:04:99:04:c9:2c:
28:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E4:E8:EF:00:4F:7E:85:A3:64:94:F7:7D:56:A2:19:31:E3:0E:69
X509v3 Authority Key Identifier:
keyid:DF:3B:1D:27:73:A0:3D:31:7A:77:03:19:3D:2F:45:42:9A:94:BA:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3zsdJ3OgPTF6dwMZPS9FQpqUup8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:56:e1:ea:fd:d0:be:e7:3c:d1:1a:0b:00:4e:6a:34:9c:05:
29:de:31:e8:18:17:e7:28:15:fe:45:e6:3a:c5:43:fc:1a:44:
c0:a2:9d:87:e5:c7:eb:68:58:ec:60:4b:2b:24:76:da:f8:39:
51:f1:bc:f9:2f:8b:b0:b9:09:87:30:ce:4d:08:0e:72:25:59:
f7:8e:be:9d:4d:29:d9:0e:0e:4e:53:80:8a:1d:17:87:23:59:
93:da:80:11:c8:5b:b7:1f:b9:a4:2c:b8:5a:2d:41:e6:02:d7:
2b:fa:96:6e:e9:f0:52:77:ae:f6:ba:95:52:4c:bc:6e:21:fb:
00:32:ba:7a:26:d0:6c:68:e7:4f:1c:a8:26:6b:c0:eb:9f:2f:
5c:8d:ed:4c:4c:e2:53:aa:a0:1b:71:c3:c0:9a:a7:96:b7:17:
e1:59:9f:a2:62:36:b8:d7:06:87:e3:29:6c:11:ee:66:e3:62:
f2:8e:cc:e2:0b:96:5f:4b:30:d2:14:a7:75:4b:11:b9:d6:e5:
37:78:37:18:80:f6:d4:b8:8a:90:20:c0:eb:4a:bc:01:99:01:
cd:83:6d:0b:a7:5e:50:9c:a9:01:4d:3f:a3:2e:86:9e:63:b3:
77:48:5d:e5:2b:1b:da:c9:ab:11:88:5e:7e:75:3f:f4:33:7e:
b0:13:49:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:09:40 2026 by rpki-client