Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json)
Hash identifier: NWG9OOKB65CUMJ9/Zf7yTJluorrc642pdkPJaKWMQbE=
Subject key identifier: 35:55:8D:4F:CF:B7:41:EF:EE:B1:E7:DC:13:39:04:E9:87:1A:2D:85
Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Certificate serial: 019D2A3BDF89FBB50DD554A3F785ACFCEF6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 13:01:00 +0000
Manifest this update: Thu 26 Mar 2026 13:01:00 +0000
Manifest next update: Fri 27 Mar 2026 13:01:00 +0000
Files and hashes: 1: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: 0PRpgfI/Gt1ixPs1DtsXgHDkJ8fuM7qyyoBe8wRAKJU=)
2: hFTnWGImSrItjvTZMgv5Y6qcHWI.roa (hash: pZbkXKYC4cfW4J3LrFAYotHKXZiiOIa/hV0bOys/6DA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:df:89:fb:b5:0d:d5:54:a3:f7:85:ac:fc:ef:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Validity
Not Before: Mar 26 13:01:00 2026 GMT
Not After : Mar 27 13:01:00 2026 GMT
Subject: CN=35558d4fcfb741efeeb1e7dc133904e9871a2d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:78:08:eb:5e:31:ac:50:80:63:7d:de:fb:fa:
8d:03:ce:22:ec:1f:ce:fe:66:5f:de:70:a0:41:6f:
48:e5:36:7d:21:f1:7f:95:8a:ab:b7:16:d0:08:f3:
aa:15:1a:92:9b:13:6f:ff:23:66:2c:ad:d3:d7:43:
73:0e:d2:a4:fa:b3:6e:9b:6b:80:05:9f:31:cd:81:
e4:57:eb:0f:00:26:89:fe:20:5b:b1:37:ce:4d:f2:
5c:7b:8d:a3:1e:49:10:ae:bd:aa:13:0a:ed:bf:fd:
6e:b4:e0:e4:ef:11:00:ca:a1:07:8f:6c:7c:ce:b3:
a1:01:a5:1b:61:f3:62:07:56:5e:12:90:d5:a7:e5:
b9:65:fe:d3:de:85:c4:33:9f:95:93:e5:e4:41:14:
bd:4f:bb:6b:99:51:bc:04:cc:63:36:5a:db:6a:1e:
e3:68:db:0a:40:37:b5:5c:68:0f:a4:fa:6a:0e:f3:
00:4f:56:6c:55:62:ef:06:3c:50:b4:cb:5d:0f:14:
93:eb:11:69:93:96:bc:e8:b3:46:c4:a4:51:7a:96:
8c:8d:54:b9:86:d5:73:df:27:4b:c6:b6:7a:64:d0:
f4:ab:18:5a:b8:0c:db:b4:6a:25:87:9c:93:49:5c:
a3:71:de:e2:f9:39:b0:33:19:7a:36:13:ab:22:88:
a1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:55:8D:4F:CF:B7:41:EF:EE:B1:E7:DC:13:39:04:E9:87:1A:2D:85
X509v3 Authority Key Identifier:
keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:36:aa:c4:14:26:a5:cb:9a:7b:ba:aa:37:72:06:20:93:50:
a0:32:30:39:a2:41:9d:03:9e:d0:f8:c5:6a:c5:11:d4:06:0f:
75:55:98:44:b6:96:19:0d:90:c3:f1:a0:e2:76:81:dd:e5:70:
1e:22:3b:91:89:55:f6:79:14:36:b1:0f:ba:a8:c4:7f:cf:4a:
33:3f:aa:6e:28:e1:2d:13:d6:b2:18:ae:14:99:81:a3:b5:81:
64:e4:90:b0:b2:a9:88:8a:e0:63:7a:39:c3:6b:0b:a8:86:0a:
8c:e9:c6:b7:07:ea:a9:fd:58:94:69:47:be:9c:4a:aa:7b:31:
dc:d3:40:b1:67:76:f4:e9:3d:a4:10:1b:fa:40:1d:c9:90:88:
1f:a1:c1:ad:8e:cb:1f:37:09:43:cc:c1:11:20:c0:5b:1f:09:
0e:7b:4b:16:59:23:55:9c:9f:dd:4f:93:d0:3a:55:2e:31:5d:
e1:a9:bd:38:70:a5:35:99:65:67:ba:e3:7f:53:b2:1a:2a:96:
13:61:1f:98:e2:70:aa:99:5b:d8:ad:21:91:2b:7a:e6:20:ab:
a8:b8:ba:6d:e3:93:9a:47:5c:da:1b:25:c6:8e:6b:e6:91:bf:
b0:b3:04:96:8d:51:d1:68:3a:18:84:dc:c7:71:53:55:7c:63:
2b:19:c6:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:48:13 2026 by rpki-client