Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: 1Q0YMhIIjG3p8iGNE5SkXT4N8wJrt8RkDETkXR+cSVo=
Subject key identifier: C1:5A:52:3B:73:31:98:03:9C:51:5F:59:FA:D2:C8:6C:66:A6:89:FA
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 019D27A8C6FD366D1758A29DB2AC197C6692
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 0CF2
Signing time: Thu 26 Mar 2026 01:01:05 +0000
Manifest this update: Thu 26 Mar 2026 01:01:05 +0000
Manifest next update: Fri 27 Mar 2026 01:01:05 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: jG5JwqvQVKXcX9zwsmNbFV+opnBJvHzJpAn1Ivhs99A=)
2: c52XhO4YGCrU48r6aoFS0wJifx0.roa (hash: 4+paDSnGo7aoDvCfZSAugeN0kcY8+2h3yijdRS9k2EQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:c6:fd:36:6d:17:58:a2:9d:b2:ac:19:7c:66:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Mar 26 01:01:05 2026 GMT
Not After : Mar 27 01:01:05 2026 GMT
Subject: CN=c15a523b733198039c515f59fad2c86c66a689fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7f:cf:62:1e:92:6d:ba:89:9e:84:70:e0:6e:
02:9f:98:d2:61:52:a7:22:e5:b3:2b:35:ad:27:9d:
8f:fd:82:75:5c:4d:a2:4d:7b:18:9a:e8:4a:c4:91:
50:ba:8a:1c:c0:7a:fb:d9:5d:aa:2d:a4:19:e5:90:
b0:86:06:58:02:d0:1a:e1:86:c5:67:ad:f4:a5:e4:
5b:5f:d6:ac:f1:68:09:e3:03:bf:45:c9:9f:33:88:
72:b8:20:70:97:51:93:fc:8a:5a:c6:fe:d5:cd:87:
ac:28:55:d8:3f:9e:bd:c0:14:e7:bc:12:c1:95:c3:
76:cf:58:2f:cf:a9:c7:be:fc:28:c9:c2:02:4b:c8:
c4:ab:f3:c5:07:b1:c8:28:67:4f:8b:b5:0f:b2:2e:
33:88:2c:83:3e:37:32:d9:26:96:7a:2c:fa:63:8a:
8c:a0:9f:54:b1:e4:dc:c3:a9:c8:b9:e3:1c:0f:83:
62:30:bb:8e:f7:51:55:b1:f6:ea:f2:0a:60:9b:d3:
16:de:e2:cd:cc:61:79:7e:03:cd:5e:8e:83:2c:b8:
17:ff:0c:ba:60:9f:ea:83:d0:60:d7:be:00:89:19:
ed:e1:71:cc:08:31:65:1d:5b:0e:52:49:bd:fa:b7:
47:56:8b:a1:a7:03:81:c8:be:a0:67:a0:cd:d6:7b:
3e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:5A:52:3B:73:31:98:03:9C:51:5F:59:FA:D2:C8:6C:66:A6:89:FA
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:a0:0c:61:9a:8e:75:6a:b4:70:6c:22:0f:41:d4:90:27:bc:
0f:f6:39:eb:f4:54:9c:c5:89:7b:74:63:ee:b3:2d:12:23:22:
8f:ce:8a:de:c7:f2:3e:25:90:ab:86:ff:79:36:bb:d8:5b:6e:
5a:4f:3d:e7:6f:dc:11:d2:ca:b0:2a:b5:dd:b3:ac:a9:83:63:
1c:0e:16:5c:63:3f:f6:49:1a:08:a4:65:7a:fe:c8:f9:2e:c4:
98:59:25:40:9c:20:50:f5:ec:fe:1d:4a:60:56:9b:e2:23:cd:
b4:98:a8:d2:52:c7:17:88:eb:87:09:1f:05:67:07:84:38:7c:
52:07:b8:be:fc:65:69:41:43:15:63:37:2c:39:5d:73:6a:49:
2c:b3:e1:b4:ee:a9:5c:20:fd:94:3e:65:66:25:ab:c0:45:bc:
f7:bc:66:c3:ea:21:97:02:ba:ed:e9:9a:9f:fc:8a:85:ba:a3:
0f:48:1a:33:00:68:d5:b3:df:dc:98:2c:c2:26:b7:73:be:78:
6d:95:2b:e2:3a:95:a7:9a:47:35:ae:45:b5:5c:38:14:25:31:
8e:78:bf:16:a5:74:d6:08:15:b3:dc:7b:37:01:5f:a4:1d:38:
28:4b:c7:1f:c2:20:29:2d:27:e7:e4:73:57:82:86:dd:23:a0:
f5:02:5f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:54:14 2026 by rpki-client