Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
File: 3EFBHpPiXV7GUJlWmxtcX63Brj0.mft (raw, json)
Hash identifier: AWf1HQEZhQDUreUtpvqP4mlQxviVzWCnNlaPn2EBWKI=
Subject key identifier: 70:A8:0D:FF:13:FA:8E:2D:53:40:17:77:75:22:3D:74:DF:7F:85:42
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 019D29CE37823270AFE7FA79C0B38264C713
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
Manifest number: 1452
Signing time: Thu 26 Mar 2026 11:01:13 +0000
Manifest this update: Thu 26 Mar 2026 11:01:13 +0000
Manifest next update: Fri 27 Mar 2026 11:01:13 +0000
Files and hashes: 1: 2uJAkewiUJwsbNaj2yvunQboIco.roa (hash: FFjpTcabKOY4bvHAqUpVIWDG0dv6yHtpa4jSe9dcbIQ=)
2: 3EFBHpPiXV7GUJlWmxtcX63Brj0.crl (hash: /UNRxgNOH7iRic65T6IEAqPkHOwhSboooOTtzFYxojU=)
3: B1STsfdesV5NfTBKRKCVN2ABrCw.roa (hash: NWB6mpqgZNqK5Ki19/Fr7idV+OhlroMe3Jwdlj+J+M0=)
4: VaQhwNUDpB1f377_pgDC7bKIVs8.roa (hash: yIsP2S+y7+H5E1qVaCf/heokAGlt0wDZeCh1+1PijTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:37:82:32:70:af:e7:fa:79:c0:b3:82:64:c7:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: Mar 26 11:01:13 2026 GMT
Not After : Mar 27 11:01:13 2026 GMT
Subject: CN=70a80dff13fa8e2d5340177775223d74df7f8542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e8:e9:a0:46:c0:ca:ad:6e:ba:49:f0:2b:c2:
3e:32:ab:63:5c:a2:23:97:73:d8:f2:a9:f8:a7:ce:
9e:92:19:9f:e9:00:5f:f2:65:6b:3d:db:52:c1:22:
42:b1:15:35:da:f8:bf:27:03:29:06:43:b0:14:7e:
00:f6:9f:59:c1:d9:40:87:ab:38:f5:77:60:45:30:
d5:34:6e:2c:91:20:b7:55:8a:82:63:3f:40:e7:e2:
4b:bc:1c:f2:ba:76:71:da:69:47:54:59:88:ae:5f:
f0:0d:16:9b:e0:2c:5b:5f:fb:75:05:e6:30:95:b7:
16:6d:83:53:da:f1:39:1c:48:d3:01:d4:16:63:6c:
d4:98:75:ae:68:f9:66:da:07:28:aa:d4:d7:11:cc:
19:3b:9c:15:aa:aa:dc:e1:c8:fb:ef:f5:82:5a:20:
c3:1d:8b:56:3a:d1:57:6d:d3:91:61:cd:ed:78:82:
b8:9d:19:b7:1b:f8:e2:a3:45:e8:86:e1:b9:75:6a:
9c:c9:89:6c:d3:c6:9e:1c:65:31:6d:ae:bf:d4:8d:
d5:07:74:f2:95:82:a1:19:0e:8f:d7:d6:20:4a:27:
c3:92:0e:1e:ee:31:95:af:b4:67:1a:d5:b7:a1:31:
92:27:a8:d2:01:2f:62:9f:bc:90:b8:89:14:ea:c0:
6e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A8:0D:FF:13:FA:8E:2D:53:40:17:77:75:22:3D:74:DF:7F:85:42
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:dd:8d:00:48:d4:a0:35:31:a1:9f:e6:7b:57:b3:4d:ef:83:
4f:10:ae:05:93:88:d0:f1:80:84:7b:64:9a:31:21:f1:91:73:
f2:f8:3d:7e:4f:5e:36:01:c5:73:51:35:57:16:c6:e5:32:60:
59:9e:52:58:b6:87:62:95:51:25:69:08:a3:81:5d:87:b1:af:
0a:a7:f6:38:4e:7b:7e:e0:09:a3:62:e2:86:32:73:c4:2f:2f:
41:b3:49:c0:f8:95:d0:0d:51:74:78:3b:fd:ad:ca:48:cf:58:
0c:da:e5:ee:b1:04:a0:b5:02:15:d1:ad:0a:c7:69:86:74:e9:
16:dd:2e:f7:68:34:ad:34:f4:89:e2:95:ca:f4:fc:f4:5b:6f:
5e:6b:46:b8:72:81:81:28:e9:0e:6c:11:c3:ce:8e:88:62:42:
04:94:ee:57:c4:72:76:e6:f5:af:03:80:cb:14:1a:74:77:ea:
9e:8c:4e:d0:bd:99:14:a1:07:b8:21:7e:b3:51:d5:1c:30:20:
ae:72:aa:93:47:15:e6:2d:5d:4f:4a:75:43:46:e1:9e:d8:d4:
f8:53:c9:0d:0c:41:e2:e7:b0:ce:3e:38:a3:8a:cb:80:72:96:
34:53:90:77:3c:50:31:ee:0a:8a:e4:50:11:14:63:95:fb:68:
26:a1:51:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:36:40 2026 by rpki-client