Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
File: 3kVs200UA0XD3K6_x2NNTnzcuRM.mft (raw, json)
Hash identifier: bqI67BSoUesfv/i6YiWewAXcwLuFqIOLqRtLYey6gHs=
Subject key identifier: E4:7E:D8:47:4A:5C:27:10:CC:83:AC:7E:7B:A9:01:6C:C7:BB:21:8E
Authority key identifier: DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
Certificate issuer: /CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Certificate serial: 019D2996C5AFB8EF6059BB9AC795E6628F8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
Manifest number: 1894
Signing time: Thu 26 Mar 2026 10:00:39 +0000
Manifest this update: Thu 26 Mar 2026 10:00:39 +0000
Manifest next update: Fri 27 Mar 2026 10:00:39 +0000
Files and hashes: 1: 3kVs200UA0XD3K6_x2NNTnzcuRM.crl (hash: BHOIpK6fAjqQsRUq6oY9jOBL5dQKHU1ddf7EGCK7NaE=)
2: C6zjpcBdZcRudxtmosvZuextZiI.roa (hash: zfnjDDGxVh2c7H/SnJCHldm/s9nx6Q4NSeuXoVoEuIA=)
3: EgdF3_zRLfplMDskKLXWWxT1Tyw.roa (hash: eShS1avsd7lspsl2gt1UyJJOPaFtk29Q65/drj/gSnk=)
4: HVeaPRGScqoeTxasRC7FtT7Oevw.roa (hash: ZQiBIa09vjaeX5NqaOpdrBAiwYMoL3wpAhEDSy6DOE8=)
5: g2A1nTWxNrbMC-tqMTYkTbSwLhE.roa (hash: x/I2NpciYmuJ2+ZCbrzBxxulkHo2MJfUChPtravpSw8=)
6: muToDVYHSFG7Iu6PcKczO1n_uA8.roa (hash: kfU2WDCosJv7C3pmCG7wZj4O3i1ktUmx7bgAeXZk4Mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:c5:af:b8:ef:60:59:bb:9a:c7:95:e6:62:8f:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Validity
Not Before: Mar 26 10:00:39 2026 GMT
Not After : Mar 27 10:00:39 2026 GMT
Subject: CN=e47ed8474a5c2710cc83ac7e7ba9016cc7bb218e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d2:bc:97:4d:1f:7e:97:45:cd:b9:cc:8e:73:
9b:2f:b1:a1:5d:11:a9:06:21:74:0b:6e:be:75:5b:
b6:e3:d0:b6:5e:1f:de:dc:1d:d4:83:f0:62:84:26:
4a:d1:2a:4f:18:6d:f2:28:a6:f4:b2:79:32:86:e9:
26:cf:bb:f0:12:0d:e8:b2:82:ae:e0:be:01:b4:ba:
9e:d0:2a:c3:58:4a:86:d0:ed:f9:bf:e5:75:3d:e9:
d6:1e:fe:15:3b:12:41:3d:e5:50:0f:d1:3f:de:58:
9c:c2:63:e6:1c:a5:15:5e:b7:e1:f4:b6:04:9b:24:
df:65:cf:a7:e2:51:47:67:76:99:73:7f:95:8e:bc:
8c:16:dd:2f:e0:81:3d:2a:5f:34:27:08:ba:59:c2:
95:38:ae:f4:1e:d4:89:37:9e:61:fb:d5:78:af:dc:
07:49:59:33:7f:4a:86:68:dc:be:37:40:ab:37:33:
90:18:b1:f6:28:d5:7b:d0:b6:ed:52:76:75:7a:82:
33:ad:c2:04:3e:3e:9a:9e:b4:3a:f9:33:1d:54:6e:
92:14:7a:84:b3:3d:c1:8a:5b:f6:69:3e:a9:d0:47:
10:ab:bc:3c:2a:bb:ad:98:ba:07:24:f6:bf:7c:0a:
07:50:37:78:af:a6:2c:62:2a:24:67:10:d7:b1:e5:
fe:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7E:D8:47:4A:5C:27:10:CC:83:AC:7E:7B:A9:01:6C:C7:BB:21:8E
X509v3 Authority Key Identifier:
keyid:DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:53:fa:6a:43:f9:8e:cd:61:89:81:65:3b:58:2f:ff:ce:a0:
ab:fd:13:5c:cc:4b:17:a8:08:3e:29:a5:d3:27:1c:4d:e4:90:
25:83:18:64:e5:f0:fc:c6:ca:34:86:b9:9e:c6:b2:05:6b:3a:
41:11:8a:49:ec:6b:1a:a3:b6:4f:59:3e:f5:9e:9e:e2:83:80:
fe:70:bd:e1:cf:37:f4:52:6d:d4:4e:24:b1:eb:ca:9f:03:f5:
94:2f:6b:d7:72:28:de:f1:bb:d6:e1:e4:7d:44:ea:3c:ad:e6:
15:7a:00:d2:c9:40:42:bc:e2:97:38:59:a1:e2:ef:6e:bd:14:
6f:00:d5:66:af:97:cf:12:26:a5:31:97:1e:0a:44:90:dd:bc:
5e:89:47:5f:37:9d:e3:15:ef:7f:34:d9:9a:e5:d7:a7:9c:19:
59:ac:75:6e:7c:06:2c:55:7e:b8:ac:b3:b0:52:0f:09:1a:bd:
dd:08:03:09:8c:1e:b1:c9:30:b7:96:2c:3b:e2:c1:3e:c8:21:
d8:ee:91:f7:25:4f:6b:f0:84:2f:eb:34:d4:48:01:b5:11:27:
19:6c:2e:55:73:6a:e2:08:0b:c4:07:bf:fd:d0:40:98:b7:c9:
33:42:5e:6b:2f:51:2f:b6:6b:34:d0:a8:b6:9e:be:ce:8b:23:
b8:8d:51:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:06:47 2026 by rpki-client