Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
File: 3RiOwuSayUWFJFtLh0Whu3oc3GY.mft (raw, json)
Hash identifier: NFGPZ11+jCCiwCqa2Lln7UDJ6A/nfGFNH/BEJkU+mRI=
Subject key identifier: 40:B1:94:C4:FA:35:75:E3:0A:04:5F:02:D9:32:6E:6A:B9:6E:BE:D8
Authority key identifier: DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66
Certificate issuer: /CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66
Certificate serial: 019D26CD118DA619AE6F0C8BCE7ACE076649
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
Manifest number: 0AF8
Signing time: Wed 25 Mar 2026 21:01:06 +0000
Manifest this update: Wed 25 Mar 2026 21:01:06 +0000
Manifest next update: Thu 26 Mar 2026 21:01:06 +0000
Files and hashes: 1: 3RiOwuSayUWFJFtLh0Whu3oc3GY.crl (hash: wjgNETmf1iG/O2oMuVS/3WnuugbxX7im1oVlxomRUqo=)
2: OJYwyNovCJmIKZF1nk5Dzxd0RYc.roa (hash: WPn0W+4jICl9OeInrEgUZWegwTFzjRsf+1TWPog3Wy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:11:8d:a6:19:ae:6f:0c:8b:ce:7a:ce:07:66:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66
Validity
Not Before: Mar 25 21:01:06 2026 GMT
Not After : Mar 26 21:01:06 2026 GMT
Subject: CN=40b194c4fa3575e30a045f02d9326e6ab96ebed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5f:78:e8:d2:7c:17:d8:7e:be:ee:43:4e:55:
54:8c:e2:38:2d:a9:f3:45:61:1f:48:fd:e3:e3:65:
f7:c6:69:ff:3d:a8:e5:63:73:3e:9c:39:65:35:4e:
62:f6:55:a5:ae:d9:6a:f5:50:57:1b:7e:93:87:77:
fc:6e:ee:a7:4b:b4:c2:ef:a1:a0:d4:2c:95:0c:be:
80:fe:e4:b6:22:7e:e8:f3:71:70:f8:90:13:48:bb:
01:03:98:57:0e:0c:07:92:85:93:58:72:a4:b5:c9:
e2:b9:26:3b:3c:4c:68:f4:4c:4b:9f:03:83:5d:e3:
3e:48:d8:30:58:f9:fe:ac:8e:c5:7e:a2:23:f1:6e:
a8:41:7c:d7:e3:a6:ec:78:3a:d4:25:f2:26:8b:53:
8c:92:7c:47:d5:97:39:6d:a2:09:80:3b:26:6e:0e:
fb:82:82:c3:cd:79:8e:1c:4e:70:c7:78:b1:eb:5a:
ee:65:69:a5:22:44:35:dc:a0:4e:72:56:0b:44:52:
23:87:d0:7f:89:8b:21:d5:8a:8b:15:ef:72:94:6f:
e7:c9:c5:b2:39:a5:5a:d3:bd:33:7c:7a:9b:53:cc:
b1:f6:d3:0a:6b:3f:54:43:53:d3:0d:5f:95:ef:08:
07:9e:0d:94:a4:ac:4d:98:29:07:72:3c:fc:f0:fc:
a4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B1:94:C4:FA:35:75:E3:0A:04:5F:02:D9:32:6E:6A:B9:6E:BE:D8
X509v3 Authority Key Identifier:
keyid:DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:33:d8:81:ae:a9:82:68:42:0f:5f:15:0b:b7:b1:17:42:0f:
54:75:d3:08:a1:f8:55:2c:66:99:fa:07:15:a1:c7:7b:08:03:
ca:44:6b:57:19:29:98:02:b0:36:fb:66:cb:e2:51:02:88:be:
c1:83:3c:82:a2:8a:3f:03:7f:b8:c0:cb:21:c1:6a:4d:fa:98:
a7:bb:35:e7:08:da:02:d5:33:44:1f:ae:ba:80:bb:66:33:e5:
3d:f3:39:79:d4:e6:80:d4:1c:18:a4:44:84:c1:a9:93:2a:e0:
aa:b3:e5:e7:91:1f:68:d3:61:0e:39:13:18:6e:66:f9:b9:54:
a9:3a:57:68:74:0d:bf:ac:37:b5:81:b3:4e:71:d0:f7:d5:f0:
24:72:e8:84:bf:f7:6b:9e:57:6a:d0:0f:b5:0b:71:ab:ea:1c:
b5:ba:1c:58:d2:c0:d5:a8:b4:cd:76:e7:52:7b:fc:c1:80:48:
59:f4:bd:06:d6:65:46:c6:90:95:1c:53:af:3f:cf:3d:71:b7:
8a:0c:a8:68:4f:5d:4a:24:6e:71:af:e4:cb:a7:ee:3f:24:09:
92:20:1a:73:89:ea:e4:5d:99:2a:95:49:35:0c:3e:cb:90:9a:
c7:16:89:a6:69:c0:87:e9:08:f0:8d:1a:38:21:fd:78:cd:ee:
cf:42:77:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:16:03 2026 by rpki-client