Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: MfywEld70SsNfvyfY8zYcLZgeTJ9dwyF0pO2PvhfTY0=
Subject key identifier: A4:CC:49:03:41:B1:16:0E:56:B2:03:D7:F6:FD:E9:59:5B:EA:43:A8
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 019D26965DC10067FAF7312523C899B076E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0C8B
Signing time: Wed 25 Mar 2026 20:01:21 +0000
Manifest this update: Wed 25 Mar 2026 20:01:21 +0000
Manifest next update: Thu 26 Mar 2026 20:01:21 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: CjzfrMNDik3/oYYGXFrWKFcBYNuAi8yYuMxvJI4t1Wo=)
2: EpYfEYO_PBauG2EManfF8FgFl1Q.roa (hash: cXvNIHvNyPlxk30rEJGQL1sdKxLXm0Gvh2LNp2Lvi3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:5d:c1:00:67:fa:f7:31:25:23:c8:99:b0:76:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Mar 25 20:01:21 2026 GMT
Not After : Mar 26 20:01:21 2026 GMT
Subject: CN=a4cc490341b1160e56b203d7f6fde9595bea43a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:27:32:f6:72:90:c0:18:4e:db:14:03:ad:8e:
72:ee:29:3b:2f:cb:f7:4a:66:c3:db:ef:58:a6:c6:
20:82:12:42:e0:58:8c:ea:73:03:54:95:11:1f:41:
07:d6:ad:2a:be:d1:47:6f:6f:e3:db:76:c3:50:5c:
b1:83:2c:2d:ca:3f:b8:24:a1:4f:c6:74:eb:ff:9d:
26:94:24:2e:bd:d7:85:0a:26:36:ee:67:18:b5:ba:
2a:df:75:b2:4d:3d:36:7f:34:44:9e:f8:4a:47:98:
90:c9:ac:48:50:16:3b:ea:72:d2:df:f6:53:52:80:
f3:bf:35:c7:98:f0:3d:0f:18:ff:bb:14:59:9b:86:
6b:58:5a:94:71:50:5a:54:a5:cb:49:a0:4b:1a:5e:
2c:a4:ce:b6:08:0b:58:f7:db:5f:67:04:fd:56:3a:
14:c5:0c:e7:ff:93:3a:38:7c:98:58:fb:5e:12:ad:
e3:b0:49:3d:e3:66:99:1a:36:c7:24:1e:80:2c:92:
6f:7e:d4:c1:32:77:a3:48:66:4c:18:44:cb:85:23:
ee:27:ac:5f:8f:d5:aa:12:26:7b:31:5f:8e:a9:91:
1a:16:19:42:c8:42:30:36:e7:44:74:78:71:b8:4e:
84:99:88:0a:d2:7f:59:cd:3b:3c:df:5a:4a:39:dc:
3d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CC:49:03:41:B1:16:0E:56:B2:03:D7:F6:FD:E9:59:5B:EA:43:A8
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:33:51:a4:72:de:0f:c8:f6:a8:09:a5:92:c9:3c:8e:e5:59:
9f:b4:f3:d3:fb:67:64:55:d6:fe:74:96:40:13:94:db:11:ba:
7b:7c:a2:4c:12:db:d1:b1:93:76:5a:b3:26:52:a9:62:6b:52:
8f:c0:53:46:ec:ad:a1:ba:11:03:be:35:da:ba:31:30:02:f3:
e4:02:14:9e:50:4d:75:fc:6a:cd:c1:ce:c4:f9:98:15:14:43:
fa:69:c2:fd:e9:72:f9:97:25:5f:da:09:60:1a:ed:0c:93:f5:
1a:59:c4:cd:00:2f:b6:20:de:bf:d6:8f:c6:bb:83:fd:49:81:
2f:3d:66:58:f9:79:1c:7d:3e:0f:e4:4b:07:0b:d8:24:eb:2e:
12:68:20:76:0e:3c:aa:92:85:2e:bd:bf:9b:26:1e:b8:5c:11:
53:2f:60:48:93:00:09:f6:96:82:0c:68:1c:91:40:b5:44:f3:
6f:98:63:2e:a1:b7:a7:c1:e5:42:9b:2a:b7:45:4a:6b:dd:b1:
8f:3d:d4:19:4e:17:73:2e:78:d6:64:2b:77:3c:08:92:47:bd:
29:2d:27:a1:6f:92:05:f7:1b:8b:89:c9:b6:23:ff:f0:39:08:
62:78:61:d9:e5:d1:f3:71:e0:13:47:20:7e:53:5b:cd:a5:14:
11:eb:a7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:58:00 2026 by rpki-client