Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: RihW3Rv33/8odqEYmRFEX2s3TYFsLqfKOtChc2vGfkI=
Subject key identifier: 24:9A:6A:F7:1F:B9:CD:2B:47:EF:C9:6A:49:EE:36:AD:4E:C0:EF:B1
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 019D27DFA9E3D03CF80C48E9781410A3F828
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 1899
Signing time: Thu 26 Mar 2026 02:01:02 +0000
Manifest this update: Thu 26 Mar 2026 02:01:02 +0000
Manifest next update: Fri 27 Mar 2026 02:01:02 +0000
Files and hashes: 1: 32lYY6uEr5NQiZ36Yw1PDpEB0LE.roa (hash: nbIrlyDfM/OsIW8q6DxR5+MKnNJS4Cwv/h7ugS3W6kw=)
2: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: mfqfxNDrnsSmTL895v11n1lHXOrFS4sOrRJUcJlgBk8=)
3: 4brBRSXd-3J0XI6W1cQMml969rM.roa (hash: HAAIbdurASwhGqOl0EqIaoNlObK5qBtHlNL6sAbPYAw=)
4: CV0Da0hDhTImPAfNEKg1Zmq-t4Y.roa (hash: gRQv5O+XgMBfojo8WrrSJ295oJBia/Hac6oJn0s/JA4=)
5: CcbOPSFowzuVmbQQQVUT4gQZao4.roa (hash: QoVwdK39dtT9IvoLSexiLLdImyTyxwcjHq7QNn6fGOA=)
6: Nmra5MQ90P6ykkpupDiPaVY1kco.roa (hash: iXU9Ga0vhV6ku1r3OaZ+HmJepE5UeaNFpriSH+GfUVo=)
7: YorSmVSKuGvPWA7DA6m1cRcL1FY.roa (hash: qU63ylCGxnEyiZbz76RKuCXngXRAm2RLSoEhfEzs9Wk=)
8: hsVsux8sHzZqQOz9MIXAz_SM6VI.roa (hash: 3Hc4odb8fRJz6qv0eC3Z9gpTtQGDv+DPG+2jWtEDSs8=)
9: vulmYW4p9PU9wnTvn-jVp44qOCM.roa (hash: MXgO5bfy+NsKZlh8zhQJtMRiH5fhuEIemBIGiWuNsdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:a9:e3:d0:3c:f8:0c:48:e9:78:14:10:a3:f8:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Mar 26 02:01:02 2026 GMT
Not After : Mar 27 02:01:02 2026 GMT
Subject: CN=249a6af71fb9cd2b47efc96a49ee36ad4ec0efb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8b:53:d1:9f:1f:82:7d:ef:cb:a3:5b:24:19:
ec:08:ed:1f:cb:ec:5e:79:64:48:7c:6b:fe:a7:4a:
b9:a5:18:54:8b:6e:41:d3:4c:06:ce:55:5c:9a:6f:
a9:9f:9f:de:3a:f5:04:2c:04:19:88:3c:ca:2f:29:
a4:90:ec:1b:89:92:b4:53:23:3f:a1:5b:6e:51:d8:
83:96:83:29:5e:cc:74:53:52:3b:3c:8c:69:30:5d:
dd:b3:b5:f8:ce:92:1f:d6:f9:37:56:67:40:77:d4:
ef:69:87:a6:39:60:5d:6a:3f:48:93:fe:1f:15:89:
0d:fd:a5:95:9e:df:12:17:08:f2:8d:58:1d:9e:37:
78:eb:25:85:12:88:0b:39:65:7f:91:c4:da:8d:7f:
2c:ed:23:f9:dd:d2:d4:06:6a:ce:b8:24:f3:89:0c:
69:bc:71:51:53:73:c4:9f:59:2d:74:3a:c4:db:3d:
d0:56:0b:0c:d2:9f:47:09:d3:ff:c9:2f:9f:55:5c:
79:b2:c8:d7:63:7c:aa:18:05:00:52:26:0d:4c:55:
c7:e5:53:68:e2:a6:48:fb:70:36:2b:8b:e2:5d:b8:
07:02:f4:3a:3c:56:8b:65:06:15:f8:f6:11:96:2d:
10:71:84:6b:a2:bb:02:35:c5:e7:06:26:6b:94:58:
d1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:9A:6A:F7:1F:B9:CD:2B:47:EF:C9:6A:49:EE:36:AD:4E:C0:EF:B1
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:86:f8:22:57:1a:83:18:81:9b:50:05:aa:8c:47:79:7c:90:
7f:9e:7e:c7:5f:71:af:7e:18:ed:04:81:f5:5b:0f:9a:58:2d:
1f:7c:77:53:c5:0f:29:72:c3:d9:34:02:7e:b5:19:91:c8:46:
87:e8:f4:49:a4:0a:0f:a7:46:3a:e7:25:05:ff:44:9a:41:52:
e4:97:99:4a:a2:06:04:21:b6:df:36:45:71:ca:f9:06:3b:66:
1b:ca:98:54:63:dd:95:4c:4f:79:3c:33:2e:3c:1d:1c:02:f1:
08:72:2d:14:e1:46:4f:6a:53:15:52:5e:56:b0:8d:0e:2b:c1:
4f:e8:6b:8d:96:e5:71:29:04:89:0e:92:63:ce:00:3f:ad:40:
57:5f:37:9a:22:fc:65:ae:f5:bc:ac:92:2e:f5:33:38:d3:84:
4a:09:ca:8d:76:e7:4b:79:62:75:f3:3f:de:e5:9f:34:f4:f2:
32:40:3b:b7:af:ac:67:ea:bb:ef:9b:b0:4d:62:4e:68:9e:a1:
48:22:b1:8a:25:32:80:2e:a6:1b:14:33:41:2c:aa:e1:46:07:
8e:e4:aa:82:27:d7:78:dc:ac:cf:d6:12:ce:10:ff:fa:67:40:
fa:e7:6c:d1:e2:d1:34:c1:4e:29:a7:96:50:d3:42:b5:27:bd:
98:cc:27:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n36nj0Dz4DEjpeBQQo/goMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4
MTNjNWYwHhcNMjYwMzI2MDIwMTAyWhcNMjYwMzI3MDIwMTAyWjAzMTEwLwYDVQQD
EygyNDlhNmFmNzFmYjljZDJiNDdlZmM5NmE0OWVlMzZhZDRlYzBlZmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3otT0Z8fgn3vy6NbJBnsCO0fy+xe
eWRIfGv+p0q5pRhUi25B00wGzlVcmm+pn5/eOvUELAQZiDzKLymkkOwbiZK0UyM/
oVtuUdiDloMpXsx0U1I7PIxpMF3ds7X4zpIf1vk3VmdAd9TvaYemOWBdaj9Ik/4f
FYkN/aWVnt8SFwjyjVgdnjd46yWFEogLOWV/kcTajX8s7SP53dLUBmrOuCTziQxp
vHFRU3PEn1ktdDrE2z3QVgsM0p9HCdP/yS+fVVx5ssjXY3yqGAUAUiYNTFXH5VNo
4qZI+3A2K4viXbgHAvQ6PFaLZQYV+PYRli0QcYRrorsCNcXnBiZrlFjR7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCSaavcfuc0rR+/JaknuNq1OwO+xMB8GA1UdIwQY
MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt
ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli
LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnYb4Ilca
gxiBm1AFqoxHeXyQf55+x19xr34Y7QSB9VsPmlgtH3x3U8UPKXLD2TQCfrUZkchG
h+j0SaQKD6dGOuclBf9EmkFS5JeZSqIGBCG23zZFccr5BjtmG8qYVGPdlUxPeTwz
LjwdHALxCHItFOFGT2pTFVJeVrCNDivBT+hrjZblcSkEiQ6SY84AP61AV183miL8
Za71vKySLvUzONOESgnKjXbnS3lidfM/3uWfNPTyMkA7t6+sZ+q775uwTWJOaJ6h
SCKxiiUygC6mGxQzQSyq4UYHjuSqgifXeNysz9YSzhD/+mdA+uds0eLRNMFOKaeW
UNNCtSe9mMwn7w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:41:18 2026 by rpki-client