Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
File: a3bJMU-szahJARCzTnmUbdjrrTo.mft (raw, json)
Hash identifier: Ag4yQUXU9EvMn8I9Q2laLJtKNrkkxhscJxFLZOwT0BY=
Subject key identifier: 5A:15:75:A1:7D:65:C2:05:D1:3D:38:09:65:28:C4:B4:19:B5:58:65
Authority key identifier: 6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
Certificate issuer: /CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Certificate serial: 019D29979006DC97B7EFB3E929C355B9D29E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
Manifest number: 0F69
Signing time: Thu 26 Mar 2026 10:01:31 +0000
Manifest this update: Thu 26 Mar 2026 10:01:31 +0000
Manifest next update: Fri 27 Mar 2026 10:01:31 +0000
Files and hashes: 1: IaeSkYat1pJQp7OhhzbXTpoQ0Bc.roa (hash: kULQgjnRtIN8FUzhGwvNrKQlXByrZkQ0qJzI1UvPnOM=)
2: a3bJMU-szahJARCzTnmUbdjrrTo.crl (hash: caYk6WqBJVNuWXG/ZVfOKRFhiom3x22S9wILt+T4rlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:90:06:dc:97:b7:ef:b3:e9:29:c3:55:b9:d2:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Validity
Not Before: Mar 26 10:01:31 2026 GMT
Not After : Mar 27 10:01:31 2026 GMT
Subject: CN=5a1575a17d65c205d13d38096528c4b419b55865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a1:03:f4:09:64:1a:bd:ad:73:89:62:6b:a8:
21:57:8e:17:d2:6f:6a:15:37:b7:d7:59:49:66:8a:
0e:a3:ab:a8:6f:14:be:c2:e5:59:fa:0f:67:7e:aa:
31:29:6e:1d:f4:b3:e3:83:a1:72:2b:64:04:da:3d:
49:44:13:90:02:87:9f:b0:cf:fa:4a:1a:4b:80:86:
88:46:82:c4:43:ed:bb:53:f1:5e:86:1a:05:10:7a:
11:c7:bf:30:f2:e3:10:e6:56:96:3f:2b:52:d5:48:
f8:4d:e0:fb:3f:34:53:63:c8:37:9b:82:96:cc:b5:
95:f5:9c:fc:37:55:30:f2:e3:c6:24:8f:2a:80:3f:
93:26:94:4b:59:56:e1:38:a2:76:7b:29:03:64:5a:
75:63:29:ce:52:7e:ee:9b:16:87:c7:4f:25:27:9d:
df:27:64:6b:54:7c:b5:ba:cc:6a:b0:96:7e:0e:b2:
af:2f:c2:1a:2a:25:71:0a:7c:b2:cc:2b:c6:94:0e:
ab:53:a0:38:87:ad:1e:00:0a:93:e6:ea:fe:01:38:
d2:97:5f:41:05:c9:df:50:45:8c:6f:d2:32:25:b8:
10:e5:e5:57:07:f8:3f:a6:2d:c1:b4:be:73:ac:fc:
92:00:0e:72:cf:d5:e0:cb:40:1b:dd:22:4c:87:e3:
22:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:15:75:A1:7D:65:C2:05:D1:3D:38:09:65:28:C4:B4:19:B5:58:65
X509v3 Authority Key Identifier:
keyid:6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:3a:9e:36:69:ec:50:a1:46:42:25:10:6f:5b:65:f0:9e:96:
67:68:2e:e1:c8:82:27:58:46:5d:ae:06:06:a2:e5:c8:a6:b6:
cd:8b:34:dd:e5:2b:1a:b2:f9:79:c7:b4:89:c0:3d:12:36:6d:
e2:83:04:bb:c1:68:a8:8f:f4:6e:46:08:52:92:4e:03:a9:0a:
47:fc:cc:f7:24:c4:62:c3:5e:ba:26:4e:fc:ed:c1:30:a3:66:
2f:9b:40:e3:44:61:63:0e:27:86:c0:7f:21:02:dc:7e:ab:fd:
13:15:8b:ec:29:8c:5c:24:1d:00:a6:28:af:53:cb:26:4a:5e:
42:17:6a:34:b5:f6:1d:ec:d1:b3:6c:ac:f7:48:fa:96:b9:b3:
fa:c4:9d:69:5c:ce:c8:64:3b:a1:52:fa:43:bf:39:fe:7a:22:
e3:12:44:03:fc:a7:91:c7:7e:dd:29:08:d6:48:87:9a:83:0e:
6f:5c:9d:6f:32:1d:c9:59:45:56:ae:d3:8f:ee:e5:05:57:e1:
4f:ed:9d:a3:a5:e9:b8:2d:2e:b3:cb:c1:c8:64:13:7e:96:74:
a4:d2:14:49:c8:ab:58:bc:fe:37:f4:4c:9a:1d:95:d2:ca:d7:
e7:9f:59:90:88:f4:7d:5f:1b:cb:9f:7e:02:e8:88:3f:54:79:
c4:4b:aa:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:53:48 2026 by rpki-client