Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
File: 3g2da2l8ochlcMJWhi5oWLR5nIU.mft (raw, json)
Hash identifier: /1F8neQ7Xsbh07OWXFD60NBlX6umpgOa+35CD9NIYKI=
Subject key identifier: 51:2E:19:D6:FB:CA:9B:C9:63:76:96:B2:C1:2B:08:A6:55:F5:FC:03
Authority key identifier: DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
Certificate issuer: /CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Certificate serial: 019D3262AFF07D5921FB3777153476CF1E32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
Manifest number: 1897
Signing time: Sat 28 Mar 2026 03:00:21 +0000
Manifest this update: Sat 28 Mar 2026 03:00:21 +0000
Manifest next update: Sun 29 Mar 2026 03:00:21 +0000
Files and hashes: 1: 3g2da2l8ochlcMJWhi5oWLR5nIU.crl (hash: Ae9DR7laU5f/F4nqC+NMVHMGmnK+mc8om54HcXk/L7w=)
2: E_7lG7f5ZU0hPBZXeO9KiDguzXQ.roa (hash: uU7vlve0LCQA4yv+Ab2N5h2lLHcGh/mEnZNylo4rqpM=)
3: FHmWYGqSdJ5-CsqGnoJKGcWPx4o.roa (hash: S6HSVK6CcsFHebtvgQR42wkTCiX4LDp+Y8NKZpU+vms=)
4: XKNodyTpVE_edu5x6d6F6Y2O2tk.roa (hash: bwj5H0svZvvLnoA8x9sKQziSKp08OjMhTh7PRO1SLcQ=)
5: ZDpRY_KWNL6AZ9OnIDN7BtGPipc.roa (hash: 1DrZ+2ptHaqoBHGtimSHqvMKa2JLNNgAJEEeUlCf64I=)
6: hneKOL6xKV3cr3gP56n-PmBtpXI.roa (hash: GxqGClH9UHGqcmyTREy95vx88t5aKLbmXG/YE4t9Tqg=)
7: xTqndtOYNNxGOKliN2NcyMFkix8.roa (hash: 7wOPiKD57FwmTf2UKEcrkMSUmvstWjxFYMSq5+S7Psw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:62:af:f0:7d:59:21:fb:37:77:15:34:76:cf:1e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Validity
Not Before: Mar 28 03:00:21 2026 GMT
Not After : Mar 29 03:00:21 2026 GMT
Subject: CN=512e19d6fbca9bc9637696b2c12b08a655f5fc03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:96:82:3e:c1:0f:99:a0:1d:6c:c4:47:a9:42:
d9:44:dc:a4:18:95:6d:0e:50:a4:e0:b4:0d:43:a9:
1d:ba:f9:06:c0:ee:63:a3:a1:dc:13:66:89:c7:d5:
68:04:6e:56:9d:94:9a:24:c2:56:12:b5:fb:ee:5a:
17:fb:3b:80:63:9e:eb:7c:6f:71:02:3a:58:2d:97:
05:f2:a6:49:be:e5:bd:0d:17:b3:8a:f6:c4:7e:8e:
8e:2f:29:ff:85:fa:11:ca:45:b3:7e:a7:44:d2:95:
8c:8e:14:38:76:e4:a9:8b:34:e9:34:07:83:4e:ab:
85:03:b3:5f:5f:78:bf:1a:99:84:67:80:96:50:46:
bd:e0:c6:b7:9d:a0:94:87:b4:01:5d:4c:b7:07:7f:
74:a1:f9:f2:4f:8d:b3:f8:bc:1f:7a:cd:88:29:6f:
2b:e0:1b:b6:90:ff:27:a9:95:42:8b:13:f6:18:d5:
91:70:94:bc:70:12:0c:92:8e:14:54:f3:a8:da:2e:
a2:ed:4e:03:25:04:d5:ec:ce:fe:6f:37:92:e7:08:
bf:04:50:ed:01:3c:6c:42:9a:db:b2:a6:49:2c:e6:
62:4b:9c:26:d2:a5:ed:9e:97:25:25:a9:4b:ab:7f:
28:3f:b4:bc:ac:3c:e8:45:11:87:6f:ff:bc:b1:a3:
7b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:2E:19:D6:FB:CA:9B:C9:63:76:96:B2:C1:2B:08:A6:55:F5:FC:03
X509v3 Authority Key Identifier:
keyid:DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:a8:a5:01:e7:3d:c2:b7:ac:7f:57:0c:8f:2d:69:a0:6a:89:
d8:c8:fa:cf:48:64:00:36:5e:37:ee:63:5d:47:19:6d:b4:e7:
8b:77:62:59:bb:87:e5:db:67:4b:65:b2:0a:ae:1e:81:23:52:
f9:72:c5:30:9b:e7:4b:96:61:26:11:fa:e4:d5:7d:93:36:1f:
81:ca:e5:04:18:c3:ac:88:f6:45:10:5c:32:2e:0f:60:1a:24:
75:f2:6d:73:5d:81:b2:99:00:dd:c3:1d:67:ce:de:7a:3b:ed:
8a:7b:92:5a:0b:a4:07:96:33:6c:e6:66:9d:4b:51:f6:ed:cf:
9d:eb:de:c6:f5:cf:f6:56:87:10:9e:8a:a9:c2:1e:35:4e:c9:
1e:ba:70:07:b8:6d:5d:69:28:18:d7:d5:a5:8e:1d:b7:2c:04:
8f:04:61:12:d6:ea:ce:33:ab:6b:01:22:7d:33:05:8e:c2:c3:
bb:20:a4:80:33:a6:63:47:1e:34:5e:5c:3b:57:24:ab:e7:59:
40:7d:6c:19:09:22:22:b4:d7:4a:d2:eb:10:56:42:28:f4:e2:
39:cc:e6:03:d5:2e:63:d8:aa:65:90:0a:4c:67:ba:1a:f1:cf:
15:10:8e:a7:c3:32:fd:9c:69:33:e2:a0:14:6c:74:c2:9e:6b:
f6:32:94:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:40:52 2026 by rpki-client