Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/3bcd4e-a541-4ce2-aa4f-72d091516193/1/356EndIcHQG2LXnhP74_rORSIr4.mft
File: 356EndIcHQG2LXnhP74_rORSIr4.mft (raw, json)
Hash identifier: MncjWQ9yNpr6e3X2DWftzUeNiMFDzY//bIORMXytVh4=
Subject key identifier: 74:4E:96:6C:64:C7:9B:2E:ED:F9:25:1B:D5:E3:A8:5A:F4:DE:30:12
Authority key identifier: DF:9E:84:9D:D2:1C:1D:01:B6:2D:79:E1:3F:BE:3F:AC:E4:52:22:BE
Certificate issuer: /CN=df9e849dd21c1d01b62d79e13fbe3face45222be
Certificate serial: 019D341AC4FF90330A8B3106FCED623C6476
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/356EndIcHQG2LXnhP74_rORSIr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/3bcd4e-a541-4ce2-aa4f-72d091516193/1/356EndIcHQG2LXnhP74_rORSIr4.mft
Manifest number: 7F
Signing time: Sat 28 Mar 2026 11:01:02 +0000
Manifest this update: Sat 28 Mar 2026 11:01:02 +0000
Manifest next update: Sun 29 Mar 2026 11:01:02 +0000
Files and hashes: 1: 356EndIcHQG2LXnhP74_rORSIr4.crl (hash: YmZPGLWtGr03ab3ZBXNCOLVsVT84sRbm4ORzS7ev6KA=)
2: W7kaUhASlYNkrMhJVklCrmbhwaM.roa (hash: xNYEU03R+PSzs/IRWbK0wthdfu1uuUt0qLfMcyCb11o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/3bcd4e-a541-4ce2-aa4f-72d091516193/1/356EndIcHQG2LXnhP74_rORSIr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/3bcd4e-a541-4ce2-aa4f-72d091516193/1/356EndIcHQG2LXnhP74_rORSIr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/356EndIcHQG2LXnhP74_rORSIr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:1a:c4:ff:90:33:0a:8b:31:06:fc:ed:62:3c:64:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df9e849dd21c1d01b62d79e13fbe3face45222be
Validity
Not Before: Mar 28 11:01:02 2026 GMT
Not After : Mar 29 11:01:02 2026 GMT
Subject: CN=744e966c64c79b2eedf9251bd5e3a85af4de3012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:49:45:d5:ac:1c:5e:e8:7c:56:8a:8d:ce:
9b:2a:c0:3a:f5:4d:e3:57:f0:a4:40:bd:af:0a:db:
68:70:c2:bf:1a:b4:f6:43:00:6f:62:6e:92:9b:ef:
61:1c:5b:7c:c6:ca:e2:8f:28:5c:8a:b9:c0:ca:23:
83:42:4a:98:aa:38:53:bd:81:f1:f2:c0:87:ca:34:
24:8a:64:73:31:92:40:8f:16:d3:a0:20:5f:e0:92:
b6:1b:10:98:78:b2:da:f5:48:51:63:c5:37:d2:64:
46:22:d9:77:92:2f:10:cf:38:dc:97:5b:c3:8a:4a:
16:f0:5d:28:0e:7d:3e:2f:f5:2a:05:8e:d1:d0:ec:
fe:d9:f1:54:b1:71:2d:54:92:57:2c:fe:da:04:de:
6e:3f:96:1a:64:2f:26:75:e5:78:16:4c:f1:2b:47:
9f:f5:64:87:c6:ab:ee:cc:e6:e0:ac:0c:90:a4:e2:
e3:53:2a:8a:40:51:ce:bb:f8:de:8b:eb:43:bd:f6:
d9:2d:b2:cb:f4:36:c3:dd:3e:5a:fb:1a:1e:8a:12:
9f:f6:68:37:19:0b:e1:e6:68:e9:b7:e0:19:91:93:
6c:53:34:4e:fa:66:4e:91:19:ca:c2:4e:d0:96:4a:
e9:15:24:53:56:d0:cd:17:9d:2a:a4:65:49:e7:ff:
c7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4E:96:6C:64:C7:9B:2E:ED:F9:25:1B:D5:E3:A8:5A:F4:DE:30:12
X509v3 Authority Key Identifier:
keyid:DF:9E:84:9D:D2:1C:1D:01:B6:2D:79:E1:3F:BE:3F:AC:E4:52:22:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/356EndIcHQG2LXnhP74_rORSIr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/3bcd4e-a541-4ce2-aa4f-72d091516193/1/356EndIcHQG2LXnhP74_rORSIr4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/3bcd4e-a541-4ce2-aa4f-72d091516193/1/356EndIcHQG2LXnhP74_rORSIr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:ea:d9:9c:5f:a2:59:55:ae:d9:93:be:fb:62:0e:ac:f7:07:
1c:8b:7d:e7:72:dd:3d:62:2b:96:fd:9d:5d:8f:b1:23:75:86:
32:7a:2e:ce:32:ca:46:96:00:26:e0:28:d4:8a:08:be:ac:af:
33:2f:b3:7c:37:c3:a8:0c:b9:f2:89:d1:10:fb:b0:57:9d:c2:
f2:b3:64:73:9b:c9:c5:62:dc:5f:9d:9c:e4:26:5e:de:bb:ad:
f9:bf:03:3b:49:6a:18:bf:9f:ec:82:77:f3:9d:6d:48:68:e9:
f1:f9:4a:25:13:bb:43:72:a8:e5:2a:c7:ec:88:4b:e4:c1:b9:
d7:eb:b5:37:5a:1d:af:3d:46:88:1e:8f:53:d5:a2:cb:00:91:
f0:7a:d0:14:be:91:59:a5:4f:d5:14:b5:dc:dd:60:6e:09:41:
38:e5:79:90:0d:5e:f8:08:e5:0f:53:be:ea:19:cc:2d:2a:36:
3b:30:62:9e:e0:3f:cc:37:3d:a5:e8:bd:45:49:93:2c:0d:1f:
31:87:5f:d6:6e:a0:cd:a2:e7:cd:fd:c3:1a:ad:c7:e8:78:44:
7a:e5:1c:dd:01:ce:a5:0b:4f:c9:0a:ad:a3:fe:12:cb:c5:84:
e4:75:f4:8d:05:7c:b1:47:55:d7:e0:e3:f8:40:ca:86:13:b7:
e5:63:6c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 14:29:49 2026 by rpki-client