Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json)
Hash identifier: 0VsPsWi65Qx5UsDtpCg/PpaooajtCo1BNF/seYRhi3w=
Subject key identifier: F5:E8:DF:7F:A8:86:09:4F:AA:65:B2:21:66:41:DF:05:E3:DB:6D:A8
Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Certificate serial: 019D25BAAB75E9EF4456E1B4CBE9F5CE9F67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
Manifest number: 17F5
Signing time: Wed 25 Mar 2026 16:01:23 +0000
Manifest this update: Wed 25 Mar 2026 16:01:23 +0000
Manifest next update: Thu 26 Mar 2026 16:01:23 +0000
Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: LPiQWKHS8Bz/48xKrHOCJCf6+ECBUbxhGChb/h00qLM=)
2: TWjQ2gsQUU9MXDJP00l8lOI_i8I.roa (hash: PtqnNrTefbS8Cw3BlkL6LKO9S8DUkKbOBZ0zbUviWfs=)
3: WoaNei28YSaPDdcENSu3LjSXLKg.roa (hash: YXB0+7Vswy/qgNB0Agbnb+glIUAaceZRMWc/efKKqKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:ab:75:e9:ef:44:56:e1:b4:cb:e9:f5:ce:9f:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Validity
Not Before: Mar 25 16:01:23 2026 GMT
Not After : Mar 26 16:01:23 2026 GMT
Subject: CN=f5e8df7fa886094faa65b2216641df05e3db6da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5d:8d:23:70:a1:f4:3b:00:7e:d8:83:23:10:
31:26:f5:4a:d0:71:2b:e3:66:86:a2:5c:21:bd:29:
fc:a6:ec:49:5d:de:ab:40:f6:9a:65:fe:61:23:19:
98:5e:80:49:d2:70:98:5e:7b:2f:8d:a5:01:d5:b5:
05:ac:e6:62:fd:f6:58:c0:87:df:b4:b6:55:9f:16:
58:9b:52:90:7d:20:f3:9e:fb:3e:88:41:bb:1b:46:
c0:ed:6a:13:14:17:0c:00:09:0b:0b:3c:13:dc:58:
53:08:27:3f:4f:28:e5:e0:3b:19:75:da:29:39:ad:
38:bb:e8:b1:12:ef:55:6e:f6:2b:09:30:ec:47:a6:
bf:7c:71:81:e4:b7:09:2c:5c:3d:1c:75:12:f5:9a:
3e:54:9b:da:71:f6:65:34:b1:e4:25:0c:9c:71:a8:
dd:63:96:68:19:a1:8e:87:07:cd:43:82:b9:89:52:
b1:e7:b8:1d:f5:2b:42:5a:44:e4:1e:cb:a9:97:5f:
c7:ba:6a:99:a9:04:a5:97:b2:ca:87:b2:26:3d:04:
47:0e:b7:3c:16:2b:ea:9d:84:d5:4d:ef:bb:f8:53:
8d:7a:6d:e7:2b:e0:61:26:28:17:3b:80:a7:ff:b9:
78:06:77:de:96:62:46:dc:dc:dd:52:d5:d8:0e:77:
38:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E8:DF:7F:A8:86:09:4F:AA:65:B2:21:66:41:DF:05:E3:DB:6D:A8
X509v3 Authority Key Identifier:
keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:ea:07:84:5c:9a:2c:95:ab:a8:23:d2:2d:42:02:88:a8:5c:
3e:f7:9a:b1:c4:8b:e0:b3:9d:2c:43:d0:0a:aa:3c:02:9a:7f:
c8:60:d0:9f:14:c0:48:7f:6f:d2:37:6d:43:1e:01:48:6d:ac:
fb:bc:04:d7:51:4a:db:83:20:e5:a7:72:9c:cd:01:8d:e9:89:
5e:1e:9a:f8:ec:92:7c:2b:e3:c3:ea:aa:60:9f:e9:4c:2c:aa:
28:be:cb:ff:6b:45:8b:69:d6:01:96:6e:5d:ef:02:5f:8d:00:
1a:af:a0:3f:3b:ef:42:2f:3b:1b:c0:bb:57:a9:48:ae:4c:17:
73:f6:18:2c:17:73:0e:0c:71:64:90:aa:9f:c6:ca:19:aa:87:
92:f5:15:41:fa:6b:36:81:83:4c:81:c8:a3:98:75:2f:d1:59:
85:f5:8e:97:f5:e1:3e:51:9e:91:9e:42:3b:c9:14:39:1c:ff:
5f:ef:61:a6:28:a9:c6:68:0f:a6:88:cd:76:f0:e7:a1:4d:2b:
47:d5:12:c5:19:b4:ee:16:56:76:25:ca:2f:92:79:1b:ec:4c:
b9:c3:75:f6:d5:8c:51:4a:86:ba:a8:51:b1:b3:2b:a4:c9:17:
a7:6a:24:75:2b:a7:04:34:92:b6:96:b0:0c:5a:6d:f5:c4:d9:
0c:4a:22:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0luqt16e9EVuG0y+n1zp9nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNTNmNjNmMTNhMGM5NTJhMDc5ZjQ1NzhhMTBlZGJmNmUz
YWE1OGIwHhcNMjYwMzI1MTYwMTIzWhcNMjYwMzI2MTYwMTIzWjAzMTEwLwYDVQQD
EyhmNWU4ZGY3ZmE4ODYwOTRmYWE2NWIyMjE2NjQxZGYwNWUzZGI2ZGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlF2NI3Ch9DsAftiDIxAxJvVK0HEr
42aGolwhvSn8puxJXd6rQPaaZf5hIxmYXoBJ0nCYXnsvjaUB1bUFrOZi/fZYwIff
tLZVnxZYm1KQfSDznvs+iEG7G0bA7WoTFBcMAAkLCzwT3FhTCCc/Tyjl4DsZddop
Oa04u+ixEu9VbvYrCTDsR6a/fHGB5LcJLFw9HHUS9Zo+VJvacfZlNLHkJQyccajd
Y5ZoGaGOhwfNQ4K5iVKx57gd9StCWkTkHsupl1/HumqZqQSll7LKh7ImPQRHDrc8
FivqnYTVTe+7+FONem3nK+BhJigXO4Cn/7l4BnfelmJG3NzdUtXYDnc4fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPXo33+ohglPqmWyIWZB3wXj222oMB8GA1UdIwQY
MBaAFN1T9j8ToMlSoHn0V4oQ7b9uOqWLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYt
NWNkZmExMTdhZWM2LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYtNWNkZmExMTdhZWM2
LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXeoHhFya
LJWrqCPSLUICiKhcPveascSL4LOdLEPQCqo8App/yGDQnxTASH9v0jdtQx4BSG2s
+7wE11FK24Mg5adynM0BjemJXh6a+OySfCvjw+qqYJ/pTCyqKL7L/2tFi2nWAZZu
Xe8CX40AGq+gPzvvQi87G8C7V6lIrkwXc/YYLBdzDgxxZJCqn8bKGaqHkvUVQfpr
NoGDTIHIo5h1L9FZhfWOl/XhPlGekZ5CO8kUORz/X+9hpiipxmgPpojNdvDnoU0r
R9USxRm07hZWdiXKL5J5G+xMucN19tWMUUqGuqhRsbMrpMkXp2okdSunBDSStpaw
DFpt9cTZDEoiOQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:15 2026 by rpki-client