Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: bOnzGpPeQZCGjZr+4x1nqcNJSSBo9tgzzTDSidt7GVg=
Subject key identifier: 74:DE:23:77:52:3D:C8:49:2C:0E:3B:A7:EB:EC:B2:9B:32:A4:76:7C
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 019D28845438085A6F623DAEC625DBC047F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 05:00:54 +0000
Manifest this update: Thu 26 Mar 2026 05:00:54 +0000
Manifest next update: Fri 27 Mar 2026 05:00:54 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: KdRd0YshGnMM5z3AvNj8Q4iKjpbUxPYNNnkpgt5bnek=)
2: BVmlLvTO3TnwU-WykyLWkZijiEQ.roa (hash: GjheiEWnUhL3hO3K8TeuKDirKE8ozbAnofhtWixZIn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:54:38:08:5a:6f:62:3d:ae:c6:25:db:c0:47:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: Mar 26 05:00:54 2026 GMT
Not After : Mar 27 05:00:54 2026 GMT
Subject: CN=74de2377523dc8492c0e3ba7ebecb29b32a4767c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0e:b0:21:ab:7b:34:04:84:25:52:55:27:21:
28:df:be:15:d1:76:be:89:b3:22:c2:ab:31:60:02:
be:9b:4f:7a:2a:6b:62:b7:27:bf:90:1e:4e:b5:cb:
8a:72:36:eb:36:7a:1f:ce:d5:35:6c:7f:63:11:52:
96:6e:fe:17:1a:26:ca:2d:0c:c4:d4:a9:a2:bd:6b:
2d:4c:3a:82:40:33:97:60:6b:f5:ec:e1:84:00:78:
60:0a:7f:63:29:12:92:0e:51:73:7e:84:f9:1b:85:
b0:72:e1:3f:f6:82:2d:ec:6b:a1:a7:ab:11:29:56:
f9:a3:3a:f3:d8:7a:34:36:3f:23:04:81:6d:65:fe:
1b:2b:1b:05:5f:f2:bf:5c:a0:c3:0f:1f:56:99:7f:
1b:a4:e9:d3:da:03:9e:4e:0d:7f:da:25:21:6b:69:
9b:c2:79:ec:bb:5e:40:2e:2e:cc:08:09:7b:55:da:
1f:39:24:27:cf:b3:94:02:20:dc:64:63:f2:61:9b:
64:e2:8b:15:e6:69:3d:4c:9c:13:60:dd:3f:16:dc:
50:c8:78:a5:ba:aa:8b:82:1f:e4:90:ac:18:3c:20:
3a:6c:ae:ed:bb:c2:54:b2:7d:b5:7c:72:55:52:fd:
45:63:76:ef:66:45:99:ae:69:e3:76:e3:f1:b4:4e:
bd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DE:23:77:52:3D:C8:49:2C:0E:3B:A7:EB:EC:B2:9B:32:A4:76:7C
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:98:0f:e9:be:3b:13:4e:02:6f:c3:50:92:7a:00:ee:86:b5:
79:2f:fd:af:62:2d:6f:e9:fd:fb:7c:9a:1a:d3:80:21:cd:0c:
2e:7e:09:88:65:02:26:56:fe:3e:8b:c5:3f:49:1b:08:c3:22:
85:45:4b:12:d8:ae:06:73:4a:50:e6:c3:67:6d:2a:71:6f:cc:
67:70:6b:fc:b2:c6:5e:f4:f7:1d:92:5b:19:e0:1e:95:b7:0b:
82:71:c7:c5:22:a4:55:80:c6:f5:ed:0a:92:03:37:cf:99:d1:
ad:08:5e:08:20:1e:c8:cc:51:a4:a1:71:4e:59:8b:c0:b6:b3:
a8:92:77:d2:b0:c4:71:14:45:c2:28:81:51:20:96:84:01:5c:
99:1a:f7:b6:f8:6e:3b:5d:24:ea:3e:f2:36:80:f6:7f:d8:2c:
08:71:3a:cf:e9:74:9d:4b:ee:80:46:d5:35:c8:7d:bb:39:c1:
c4:42:93:d8:98:5c:bb:d9:47:1d:21:86:2c:27:54:f0:8c:34:
aa:84:e7:00:6a:fc:c9:c2:0e:1a:40:91:86:90:e8:b9:fe:38:
98:2f:61:b4:c6:5e:71:00:15:ab:f3:17:2c:39:3e:f8:a8:9d:
5e:b4:f7:d5:dd:41:a4:b8:c2:a5:14:62:28:35:13:56:b6:6d:
c5:a5:d5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:13:27 2026 by rpki-client