Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
File: 3_XMSEiUO0_onSznH9weT_fX8-M.mft (raw, json)
Hash identifier: kMtRcwW6sq+48vAO/hJpd5VSyAWdV17/Dps+uaQozhU=
Subject key identifier: CA:A9:EA:F7:4E:3F:F2:17:2B:1D:B6:54:85:34:E8:66:E4:3C:AD:94
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 019D2C60FEB19D5C5BBB88A5C54EF5DD729B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
Manifest number: 1865
Signing time: Thu 26 Mar 2026 23:00:47 +0000
Manifest this update: Thu 26 Mar 2026 23:00:47 +0000
Manifest next update: Fri 27 Mar 2026 23:00:47 +0000
Files and hashes: 1: 3_XMSEiUO0_onSznH9weT_fX8-M.crl (hash: 4PfAj+bIFT7ulUCA6XINojp86PtXqdACuoCv8fLZ2fQ=)
2: I_klKsqV4Xc27UFkAneEsuB-gHk.roa (hash: AkW1e4Xf71kIFS8tvO/5F4giqlxcvlPyuHSMW67qHI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:60:fe:b1:9d:5c:5b:bb:88:a5:c5:4e:f5:dd:72:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: Mar 26 23:00:47 2026 GMT
Not After : Mar 27 23:00:47 2026 GMT
Subject: CN=caa9eaf74e3ff2172b1db6548534e866e43cad94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f2:cc:e5:2f:73:9c:82:54:23:a8:14:be:af:
44:f2:a3:80:83:d4:1e:b7:cb:1d:f7:82:d1:ff:40:
48:b1:b3:f8:f7:64:22:bf:d0:c0:4f:54:d8:98:d4:
5f:c3:30:ef:3f:bd:80:19:de:38:87:a6:43:02:ba:
ca:41:39:26:8e:8a:42:21:a4:20:29:4e:6c:6e:a8:
ad:94:b6:e1:5e:96:26:ad:3e:a2:f5:07:bd:9d:45:
a5:d1:0c:2a:3b:f5:89:e0:94:ba:8d:5c:d4:4b:38:
3f:cc:72:1a:da:57:1c:f6:75:8c:6a:a9:e5:74:01:
0f:e9:47:df:32:88:74:23:74:7d:c9:d7:0b:8a:82:
19:d3:fc:b5:d1:ef:4f:b2:2a:88:e3:60:d9:ac:bc:
ff:8b:08:88:63:43:2b:5d:77:36:21:05:e2:33:9b:
c9:96:d8:68:e2:ea:38:20:f5:5e:91:bf:30:f3:28:
9f:fc:68:03:f1:e2:a8:4e:ff:28:8a:e5:a0:ed:9c:
98:23:54:94:e2:0e:dd:93:fa:87:e0:80:55:6d:7f:
4e:85:49:5a:e8:64:29:7d:b3:c9:20:75:6f:39:d3:
25:9f:8b:1f:ff:0b:b5:b7:d6:3c:b3:21:77:3d:a1:
b8:27:0d:83:45:09:7a:45:c8:81:65:79:96:1c:9a:
ab:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A9:EA:F7:4E:3F:F2:17:2B:1D:B6:54:85:34:E8:66:E4:3C:AD:94
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:e2:a5:89:78:3b:1d:8d:10:ad:5f:09:4e:c7:5e:0e:6a:f0:
86:1a:03:57:9b:a5:92:ab:10:70:8b:e9:89:2c:13:cb:97:d6:
20:45:1f:d8:ca:ac:4c:97:15:36:6c:09:81:cc:a8:4a:d5:66:
14:54:f4:ee:b0:34:6f:74:19:24:96:2f:6e:63:3e:94:06:d7:
76:e7:42:8a:00:6b:d9:c8:96:d4:06:ec:4f:4a:eb:bf:bc:a0:
2a:ed:b6:5c:d6:ca:2b:f6:c5:82:a7:93:5d:19:1a:18:08:2d:
7b:da:7a:cb:e5:16:12:8e:43:e1:0f:7a:bf:75:e5:94:fb:49:
7e:c1:f3:cd:18:7b:7b:98:cb:2b:27:85:d4:d4:e9:36:5d:fb:
f9:d8:29:34:5a:ba:d3:23:d8:3c:61:cd:42:9b:ff:23:2c:0c:
6d:f4:4e:43:09:b0:8d:19:45:b3:b1:ef:b5:db:c8:a8:fd:eb:
e2:b5:91:30:66:ba:65:7c:04:01:d3:7c:4a:fe:31:34:25:87:
6b:d9:5f:31:88:c4:57:49:1b:d0:a8:36:8d:34:c9:03:da:7d:
b0:b7:f3:4d:5c:c5:eb:e9:b4:33:2e:52:b9:34:bc:4f:6a:04:
8d:ab:ac:98:7a:57:55:82:ee:03:fe:54:44:50:d9:7e:f0:ba:
3e:0f:d3:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 05:20:47 2026 by rpki-client