Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: dLnoK8MZc/rTfkmVfohbWrhAoz8azGqcMUa7H1inzz4=
Subject key identifier: 7B:92:97:A3:39:12:5C:63:3F:3D:E0:E9:BF:66:7D:BA:F7:59:08:30
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 019D28BBDFF07030A22047711FBA591D4950
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 0C99
Signing time: Thu 26 Mar 2026 06:01:34 +0000
Manifest this update: Thu 26 Mar 2026 06:01:34 +0000
Manifest next update: Fri 27 Mar 2026 06:01:34 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: d0a5BIVybY7aKU7I59zKnpBywbY0srwjwZCT0LquhGU=)
2: qVOiKU3-XCJIV1dlmVqm9Z8OCSU.roa (hash: 1b1b4ZznQQVB7nOvdHCZX+1O8620BLLwp7A6OVcEvQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:df:f0:70:30:a2:20:47:71:1f:ba:59:1d:49:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: Mar 26 06:01:34 2026 GMT
Not After : Mar 27 06:01:34 2026 GMT
Subject: CN=7b9297a339125c633f3de0e9bf667dbaf7590830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7a:82:93:0e:f1:8d:a7:c3:40:85:fb:6e:47:
2c:61:2f:5a:3c:84:e4:49:12:1a:c8:21:5e:75:d4:
54:ca:2b:37:90:18:7e:30:f9:52:30:ec:c7:cc:b4:
ac:b3:c9:7d:38:c1:4b:42:71:88:bd:ec:1c:a3:7e:
cb:26:36:f0:8c:2a:c9:78:f9:99:85:f7:5a:6e:07:
e3:c3:fc:cf:ec:7c:6a:8b:58:69:b7:3f:3b:64:19:
10:31:e7:0c:15:23:96:ac:54:69:2b:63:7c:4e:7a:
96:45:36:22:ec:80:67:05:ee:08:67:94:44:c9:58:
43:31:7f:40:10:1a:c4:40:b9:27:30:74:4b:a7:2a:
51:2f:27:92:8f:2f:32:fe:7f:6a:4b:26:c9:95:54:
2b:ea:88:16:bf:56:f7:e7:e0:6c:3e:b7:5f:19:50:
0a:68:af:95:a4:a0:b1:bf:01:06:41:b5:2c:b2:39:
e7:d1:79:55:19:a2:c9:82:a7:c5:20:36:2c:52:7f:
b4:39:95:df:35:77:76:cf:c0:c9:ca:50:ed:6b:dd:
9a:ee:51:a4:ab:01:bd:2a:2d:11:71:c0:c3:11:c1:
99:07:d7:fc:7e:b9:45:08:d1:3f:d3:cd:ed:20:27:
c0:90:07:9c:78:86:d0:e1:1a:63:2b:93:8a:83:49:
b8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:92:97:A3:39:12:5C:63:3F:3D:E0:E9:BF:66:7D:BA:F7:59:08:30
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:ee:1f:02:bb:8e:ff:70:45:f4:81:fe:6a:b0:4f:3c:aa:80:
24:2a:24:b4:2a:5b:de:48:9f:53:67:20:14:67:06:da:58:62:
7e:5c:c8:f3:1d:ab:bf:17:87:bb:11:f8:9c:72:f9:12:47:a8:
d7:59:2b:cc:9b:40:a2:cf:f5:af:a9:40:6a:15:98:89:4b:f3:
de:2f:63:18:3d:21:33:2d:f5:e8:f7:18:47:ee:46:84:eb:20:
06:9c:6d:2c:1c:23:21:3b:02:18:37:cc:d6:ac:0d:fa:d8:4e:
b3:cd:20:1e:ee:1b:59:a7:96:22:48:a8:61:3f:ce:b1:c5:0a:
d2:c9:07:10:3a:26:ab:d9:86:b0:d5:3e:24:8c:fd:4c:22:fe:
7b:ff:07:fe:0b:6f:a6:4d:41:f7:3b:0f:7f:e2:ac:e9:c7:81:
d3:05:b4:d2:84:01:b4:9f:44:f9:9e:39:d6:ea:1b:d3:f0:64:
56:0d:98:13:b0:d7:dd:2a:f5:83:30:4b:98:e8:b7:23:ad:93:
17:06:62:e6:22:0f:57:5e:4c:2c:9f:1b:90:d6:70:8b:c8:0c:
95:db:67:21:0f:7a:67:4d:c8:79:31:e3:ba:6b:4d:b5:b8:d0:
ef:dd:a1:ce:74:9d:85:f4:33:66:06:f2:bc:2e:1d:4a:a6:64:
17:60:d1:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:11:55 2026 by rpki-client