Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
File: 3ohLjkYvPsE6QCTWaamdlK8FzbI.mft (raw, json)
Hash identifier: GUFZXRcKOcm2X0m1SCTYVdWe/rDFQySYeEZc+46uKkE=
Subject key identifier: 5C:20:6C:D9:A8:CE:E3:26:11:72:33:30:62:DD:EE:86:41:E0:42:C0
Authority key identifier: DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
Certificate issuer: /CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Certificate serial: 019D27A88E4FD504B9A054D061CE3E01D418
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
Manifest number: 0936
Signing time: Thu 26 Mar 2026 01:00:51 +0000
Manifest this update: Thu 26 Mar 2026 01:00:51 +0000
Manifest next update: Fri 27 Mar 2026 01:00:51 +0000
Files and hashes: 1: 3ohLjkYvPsE6QCTWaamdlK8FzbI.crl (hash: POYtjV4UGIT7NyRwoAqFSPpqZdQ0TLutGjRo2UBBR/8=)
2: KyIGNZFDdjiF9uvViG3nRW9Bmw8.roa (hash: DzYiLKcYFU2Q0VtZNwQkwth/5N+BuGWGx0hMS551gkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:8e:4f:d5:04:b9:a0:54:d0:61:ce:3e:01:d4:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Validity
Not Before: Mar 26 01:00:51 2026 GMT
Not After : Mar 27 01:00:51 2026 GMT
Subject: CN=5c206cd9a8cee3261172333062ddee8641e042c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:35:08:77:0a:b7:8d:0e:3b:31:9c:d7:8a:07:
86:f7:4e:d2:42:d2:d9:75:43:16:04:84:df:14:eb:
37:c5:35:5e:f3:59:08:11:a0:18:b4:a2:ba:27:e1:
64:91:44:27:87:31:cd:9d:d1:93:c2:56:e2:fb:ee:
fb:ca:24:6a:39:21:87:fb:6e:da:e4:03:8a:68:e0:
54:70:7b:43:b4:2c:5b:85:0e:2d:bf:4f:c2:98:85:
2a:40:18:7e:b2:6f:59:8a:98:8c:aa:dc:e8:5b:bf:
3c:26:8a:25:10:52:01:be:08:2d:1e:de:ba:61:7d:
5c:da:f8:b3:49:09:d9:66:94:db:3e:6c:fc:69:ea:
ef:01:be:82:b6:65:9b:ca:d3:e0:74:ce:4f:51:cd:
04:37:66:5f:e4:7a:37:72:53:c8:5e:a2:81:af:47:
39:84:6e:96:e6:cf:58:9b:44:27:9f:98:9b:80:ca:
5b:1e:0b:b9:55:a5:2b:c4:8c:5e:1a:e8:7e:a1:c0:
54:15:1a:a7:28:f8:0f:60:45:9d:b8:5f:f9:8e:10:
99:d3:68:0d:a3:3d:03:51:84:4c:39:6c:1d:25:76:
54:f8:76:60:ab:3c:75:54:f8:b9:d3:b3:a9:ab:cd:
00:f0:31:c9:6a:0f:70:2c:08:fd:71:57:2a:ec:1d:
9c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:20:6C:D9:A8:CE:E3:26:11:72:33:30:62:DD:EE:86:41:E0:42:C0
X509v3 Authority Key Identifier:
keyid:DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:82:5c:7c:18:b7:b1:2b:d5:32:db:b7:28:33:c3:52:b2:fd:
f4:71:63:fb:82:82:21:09:14:ff:00:40:5d:f7:ba:9d:d7:b1:
1e:c2:14:cc:21:b6:b9:a5:e7:3e:58:8a:f8:99:f1:86:55:7d:
7b:1e:92:b6:d1:19:65:74:a6:33:e6:e4:70:2d:15:16:35:b6:
ac:e6:02:6c:bd:13:38:e6:c8:83:50:8c:48:42:6f:a3:15:af:
d0:6d:c9:5b:83:53:96:71:35:a1:8c:b2:8f:21:07:37:fe:4c:
bb:24:d6:df:33:66:9f:7c:5d:66:bf:0d:7e:00:95:ac:20:bc:
09:40:b1:31:9c:50:37:50:30:c1:98:53:53:12:0f:6e:73:b5:
48:d9:94:a7:ca:41:7d:e3:b5:f4:cb:4d:cc:97:32:39:28:02:
66:56:60:80:37:b9:9f:5b:15:fc:f2:25:9f:83:08:2b:3d:77:
71:90:52:80:c8:67:53:df:7b:be:45:e6:07:59:cc:f7:d9:c0:
ef:17:2c:2f:69:8b:7d:e3:17:94:20:cc:75:bd:46:90:20:f4:
6d:30:19:f2:26:46:18:07:23:b1:61:6b:c5:6f:37:98:98:f8:
39:34:81:4f:78:7c:22:12:09:10:95:c9:96:00:f5:52:2d:a5:
08:80:e9:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:49:11 2026 by rpki-client