Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
File: 3k_14NZGWzwsc6LG4Q5WovpzFic.mft (raw, json)
Hash identifier: fXw1TdGF/wZBlzUmzTQBULiFKQcAlpNV/iNh9cQW0AM=
Subject key identifier: 8D:20:8E:9A:03:31:1A:8F:13:5F:A0:8A:7F:71:AE:93:C9:A1:B0:0B
Authority key identifier: DE:4F:F5:E0:D6:46:5B:3C:2C:73:A2:C6:E1:0E:56:A2:FA:73:16:27
Certificate issuer: /CN=de4ff5e0d6465b3c2c73a2c6e10e56a2fa731627
Certificate serial: 019D265FDB7EBB9A06BB57E035A63061F436
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
Manifest number: 101E
Signing time: Wed 25 Mar 2026 19:01:49 +0000
Manifest this update: Wed 25 Mar 2026 19:01:49 +0000
Manifest next update: Thu 26 Mar 2026 19:01:49 +0000
Files and hashes: 1: 3k_14NZGWzwsc6LG4Q5WovpzFic.crl (hash: +jpwMBpB3IDJcQtUIN6yhRwBfIxaEKtmugMWNw9qRLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:db:7e:bb:9a:06:bb:57:e0:35:a6:30:61:f4:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4ff5e0d6465b3c2c73a2c6e10e56a2fa731627
Validity
Not Before: Mar 25 19:01:49 2026 GMT
Not After : Mar 26 19:01:49 2026 GMT
Subject: CN=8d208e9a03311a8f135fa08a7f71ae93c9a1b00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3e:27:08:4a:93:a2:b8:cf:d2:d6:66:08:b1:
3a:62:33:ff:41:08:b9:7f:9a:45:14:5b:9a:a4:85:
0e:a2:2f:42:75:40:dd:0c:48:d4:6e:cf:2e:c1:3f:
78:b5:7c:89:bb:0e:e6:33:26:e8:e7:64:1a:35:47:
93:cd:35:09:71:fc:53:cb:22:84:31:93:57:7d:2d:
44:1c:94:f6:35:8e:a9:3d:52:61:8d:02:67:5c:95:
f7:11:26:3d:41:d7:48:96:09:c7:da:be:7f:13:f4:
b3:94:6b:78:41:7d:26:d1:c5:23:e0:3b:b1:96:2f:
ea:f9:a4:af:8a:a3:85:e6:d3:ed:d8:8e:0a:58:c8:
38:ae:11:e2:10:52:06:b7:2c:38:26:7b:81:cb:0e:
71:ab:d1:a7:cb:ef:52:7b:9d:29:75:fd:02:bc:ab:
07:ae:7e:26:f2:ac:f3:17:55:73:64:0f:af:a4:07:
3d:48:33:c9:50:4e:3d:c8:75:27:87:1d:d2:d9:c7:
34:5d:03:3a:d8:2b:b9:5d:92:f0:36:2f:e2:f5:8d:
00:71:7e:ac:d4:3e:46:28:6d:2f:38:ba:0e:c2:9d:
4d:66:79:98:64:c8:1d:61:3c:bb:dc:92:d3:cc:11:
db:92:aa:80:56:66:68:5b:cb:ab:18:90:11:2f:9b:
56:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:20:8E:9A:03:31:1A:8F:13:5F:A0:8A:7F:71:AE:93:C9:A1:B0:0B
X509v3 Authority Key Identifier:
keyid:DE:4F:F5:E0:D6:46:5B:3C:2C:73:A2:C6:E1:0E:56:A2:FA:73:16:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:ee:a8:ea:65:f7:b8:92:aa:86:4c:7f:11:43:e8:e1:67:31:
4e:95:39:04:4b:93:3f:c3:25:1a:3b:07:b8:0e:80:95:7d:36:
f3:c0:d3:a0:fe:51:60:3d:47:bb:75:49:c1:21:bb:00:c9:bf:
e8:c0:0d:24:cd:98:0a:ee:70:15:96:aa:c1:3c:56:73:3f:40:
a4:af:8c:d4:7f:f5:bc:0a:6c:a6:41:60:6c:05:32:0e:fa:f2:
00:a7:4d:33:99:48:bf:71:05:92:3f:22:24:1f:7e:c8:6a:a7:
50:b7:05:a2:97:1c:a5:b2:b2:dc:de:11:25:c0:4a:14:c8:da:
84:1c:cc:f5:b3:4e:ac:bd:72:81:92:cc:f5:14:3a:65:25:d9:
ed:61:c9:82:19:62:69:8b:f0:2f:b4:f6:41:56:25:c3:54:0f:
17:21:2c:68:90:1e:45:b2:7d:e2:ca:cf:74:e6:49:76:04:66:
a7:ce:b2:ab:3b:02:8d:2d:30:07:e3:94:18:a0:a8:09:f8:3f:
dc:ef:47:1e:18:e3:16:74:e4:eb:0c:fa:5d:b6:90:de:9c:53:
f6:08:b0:30:2c:0c:0d:f0:aa:00:c0:fa:12:9f:20:cc:43:da:
a7:c0:f8:36:40:0e:56:7f:a3:d2:26:df:44:16:84:da:89:64:
0c:99:22:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:46:25 2026 by rpki-client