Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
File: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft (raw, json)
Hash identifier: ououuytGXkgIpeBrcA1XlOpoLqheVyTIqt4TkruxRiQ=
Subject key identifier: 38:C8:78:0F:18:AC:A1:A2:20:8F:DB:4F:68:A9:CE:66:53:77:31:FA
Authority key identifier: DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
Certificate issuer: /CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Certificate serial: 019D24DEE9AE2BB437CC0B327659F7993473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
Manifest number: 04D4
Signing time: Wed 25 Mar 2026 12:01:21 +0000
Manifest this update: Wed 25 Mar 2026 12:01:21 +0000
Manifest next update: Thu 26 Mar 2026 12:01:21 +0000
Files and hashes: 1: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl (hash: rv4bKXDxM3sLCF92QDB2I8sAzhM+DJm9z4FQvu2nSzA=)
2: _tzPs4jJj87d7Cluh9sgQm06Oy8.asa (hash: zWtQvDfWVHth5+g0jzyRaLgIhTdtWs7KPbDKeSI3a2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 12:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:de:e9:ae:2b:b4:37:cc:0b:32:76:59:f7:99:34:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Validity
Not Before: Mar 25 12:01:21 2026 GMT
Not After : Mar 26 12:01:21 2026 GMT
Subject: CN=38c8780f18aca1a2208fdb4f68a9ce66537731fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:84:15:df:7c:81:0f:e9:b1:74:2d:9f:4e:5d:
78:10:55:29:fc:57:14:79:17:f1:16:3d:36:0f:fd:
e2:ac:c1:42:88:12:8c:bf:bf:2a:9b:89:60:bb:4a:
6b:1a:fb:31:6a:46:1c:c3:5b:e7:60:08:3e:1a:a7:
54:b8:7a:3f:0b:af:5f:e4:7d:e6:ed:55:39:5b:b4:
2e:b4:3d:fa:83:71:dd:ab:da:7c:e6:5e:4e:09:f9:
97:c4:3e:b6:62:e0:b8:01:e8:1c:28:2d:0f:e8:4a:
c2:83:71:76:95:c0:19:a4:f5:a2:2b:e2:24:cb:3b:
38:0d:8e:ae:a5:e4:19:24:85:0a:07:84:05:5c:38:
ce:e5:5f:42:ec:97:97:d6:7e:e2:6a:b5:fd:9b:6b:
54:b7:48:13:11:77:f0:78:5e:36:44:5a:84:6d:99:
c0:a7:dd:ab:6e:d0:95:ba:6f:eb:24:ce:3a:d4:8f:
05:81:6c:c1:ee:fb:ff:a9:da:e4:a6:46:fb:5b:45:
b3:e7:4a:f0:01:a4:ce:e1:19:86:0e:10:cb:ba:3d:
df:7a:a4:1c:21:67:ec:0a:89:f4:4b:6e:89:ad:2f:
f2:83:85:66:ad:ea:33:71:da:03:06:5d:6e:f9:1a:
8f:68:b2:36:af:88:6d:ed:91:e6:71:43:64:23:0f:
84:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C8:78:0F:18:AC:A1:A2:20:8F:DB:4F:68:A9:CE:66:53:77:31:FA
X509v3 Authority Key Identifier:
keyid:DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:2b:4a:63:64:85:ab:a6:27:76:bb:62:25:e8:1d:a0:30:29:
87:16:85:d5:3d:e3:f0:8a:66:4b:f9:65:95:af:de:5b:e7:66:
f3:47:56:25:c3:c1:28:2c:47:ca:53:c3:b0:44:da:a9:c6:ad:
77:18:cd:69:d7:3f:78:ce:2c:65:15:c3:25:67:6e:d7:d1:42:
34:2b:2e:90:51:dc:d3:2e:47:57:5e:36:e5:97:9e:40:69:1f:
40:88:0b:79:85:ae:a2:ca:d3:06:08:5b:3f:d0:06:27:a3:6d:
9d:0c:67:70:53:b6:04:74:f4:a5:33:e7:0c:75:18:28:b6:d0:
e2:82:c7:c8:6f:6c:29:45:e0:c9:40:f8:bf:9c:a6:b8:af:2e:
0a:10:7e:c2:3a:43:99:11:e9:66:97:52:8c:27:c6:c2:73:a3:
23:f5:3b:f5:ee:79:58:bb:e6:c9:c9:d4:b4:ff:1d:f7:e1:9a:
49:38:45:c2:c3:7a:b3:3f:79:e9:c9:f3:ca:7e:81:1f:dc:8d:
36:1a:2d:d2:92:2e:24:0c:03:8d:0b:4a:b7:2c:8d:c9:d4:68:
ca:3c:c4:0d:c5:6f:83:c8:50:ff:cb:29:ec:e3:45:fc:7f:fe:
06:8e:90:fb:ec:9f:c3:ea:23:22:2d:4d:df:b6:37:50:68:4b:
4d:22:96:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 22:46:59 2026 by rpki-client