Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
File: 3W2WGgYrcca_r9m6jqaf3R-mOAI.mft (raw, json)
Hash identifier: /uKhOv0iNb9vaXDKSoYdhEAehxJ0LjfWR/S8CTEUL2s=
Subject key identifier: F8:60:64:50:D4:DA:1E:D1:53:58:78:6A:70:50:10:A5:5A:08:D4:0B
Authority key identifier: DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
Certificate issuer: /CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Certificate serial: 019D288427440DE02E7767FE192627402138
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
Manifest number: 0460
Signing time: Thu 26 Mar 2026 05:00:42 +0000
Manifest this update: Thu 26 Mar 2026 05:00:42 +0000
Manifest next update: Fri 27 Mar 2026 05:00:42 +0000
Files and hashes: 1: 3W2WGgYrcca_r9m6jqaf3R-mOAI.crl (hash: o/KM5Yumb+nEsi7mKPGEt5rhgeiBiPV4XIxQBaReNtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:27:44:0d:e0:2e:77:67:fe:19:26:27:40:21:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Validity
Not Before: Mar 26 05:00:42 2026 GMT
Not After : Mar 27 05:00:42 2026 GMT
Subject: CN=f8606450d4da1ed15358786a705010a55a08d40b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fd:ec:45:97:83:6c:de:7a:03:01:04:57:e0:
32:8d:bb:96:88:ec:cf:18:9d:81:25:50:c9:09:9b:
3e:3f:54:eb:21:78:70:f6:c9:f1:14:67:38:36:39:
45:fa:54:fc:d7:a6:f6:4a:0a:be:80:39:97:db:b3:
ca:a4:09:5f:5d:43:c9:c9:74:15:c9:d9:74:e8:bc:
6b:ff:17:7b:05:76:9d:b5:22:61:95:82:b0:3f:6a:
c5:07:23:3a:02:ff:8e:c9:fd:26:50:33:83:ae:3a:
53:b3:53:e5:69:88:21:9f:3b:96:4a:58:e1:f5:88:
72:24:8e:65:02:88:cd:22:cf:73:1f:1a:00:c9:ff:
27:84:ac:4a:f9:1a:af:14:73:9f:6e:34:8a:b0:27:
64:03:3b:6f:fe:f9:43:07:f5:49:d8:11:6e:84:ba:
c4:2a:26:6f:5c:f1:8a:38:5f:18:bd:17:dd:3c:25:
1b:0b:54:46:ec:c4:f2:53:c9:2a:08:61:92:c1:5c:
37:29:9a:ea:a5:d1:21:f2:bf:67:04:13:87:79:18:
8e:7b:e4:ef:5f:06:a2:ae:72:3e:f3:07:4c:38:cf:
21:63:5b:5c:ab:b8:68:b7:93:bd:82:c6:f0:2e:55:
2a:b2:0e:f1:a3:c2:16:fb:c3:f0:4b:e4:77:70:44:
35:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:60:64:50:D4:DA:1E:D1:53:58:78:6A:70:50:10:A5:5A:08:D4:0B
X509v3 Authority Key Identifier:
keyid:DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:65:cd:e5:50:17:d6:0f:fd:4f:0a:e2:51:b9:9c:03:34:6b:
b4:cb:cd:57:c1:d6:f4:e7:a9:27:72:1e:7a:90:ab:9b:51:8b:
1b:5c:f8:c7:22:be:4b:e3:ae:d6:9a:ff:b2:88:76:7a:ec:10:
dc:c8:d0:89:93:36:c0:a6:c3:ac:ab:8a:bf:5a:6a:cd:99:cc:
95:1d:99:55:ef:a1:48:90:21:99:c7:ca:f7:8c:e7:aa:64:45:
e9:4e:a6:ef:e0:bc:f6:b2:0e:4a:ff:16:75:2c:5f:ee:3a:0b:
1f:99:c5:11:0f:89:1e:5a:05:b3:ad:4d:ea:98:36:bb:0f:55:
30:3d:b1:c7:ca:82:26:60:5d:24:10:8b:8e:70:06:74:3e:30:
49:8b:fb:c6:19:d7:2a:7d:ab:05:8f:91:ea:9b:06:4a:4c:cb:
91:f6:1a:00:ac:02:98:37:6d:8c:a1:ba:99:84:52:e8:ba:ec:
20:27:f5:df:9e:37:57:d1:bb:37:7b:65:2a:89:56:42:14:25:
35:44:79:1e:e6:f0:3a:7d:84:72:2b:af:46:6b:20:54:b2:19:
e7:57:74:1b:7d:40:26:59:e0:5e:b6:a7:8e:0a:4a:6e:59:2f:
8d:45:48:1c:f0:e0:50:7a:0e:3e:ab:be:b1:0f:d1:97:52:b3:
e2:3d:68:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:56:59 2026 by rpki-client