Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
File: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft (raw, json)
Hash identifier: Ak1HMuoEv11KclFTsWDgUuLELpv/guJ185+EiYUw6X0=
Subject key identifier: A8:0C:6E:3D:A2:E6:E6:77:66:29:64:83:53:D2:37:4A:C0:7A:DA:20
Authority key identifier: DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
Certificate issuer: /CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Certificate serial: 019D27A870F0585783DAB845A7CB23113407
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
Manifest number: 0BA5
Signing time: Thu 26 Mar 2026 01:00:43 +0000
Manifest this update: Thu 26 Mar 2026 01:00:43 +0000
Manifest next update: Fri 27 Mar 2026 01:00:43 +0000
Files and hashes: 1: 3eK1ZL7O23CEW3-d4NQhqQce6UE.roa (hash: MyvSzm1E1BuNXsJH9y2br5JSC+bFdaTi0xbtRaMTOVk=)
2: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl (hash: Hu0g5ev/Z1sJPD57zJGE/7cUR44ki4pqF72vB47DuS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:70:f0:58:57:83:da:b8:45:a7:cb:23:11:34:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Validity
Not Before: Mar 26 01:00:43 2026 GMT
Not After : Mar 27 01:00:43 2026 GMT
Subject: CN=a80c6e3da2e6e6776629648353d2374ac07ada20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1d:b6:6a:24:0e:0a:dd:84:30:27:e2:62:9a:
df:48:14:ee:71:f1:26:90:41:10:aa:fe:11:4d:9b:
56:d1:b8:c2:8c:86:f4:69:de:43:79:bd:c3:f8:9e:
a7:a6:78:52:ec:79:cf:de:b9:26:03:5d:1b:16:e2:
6d:4f:42:34:51:f0:f2:b1:bc:05:9d:8e:42:3e:7e:
76:cb:60:8f:3d:e4:6e:65:b7:3b:93:c0:cb:46:d3:
33:2e:50:2f:23:d7:d4:c4:21:ec:f0:7d:37:6d:82:
b6:c3:72:3b:bd:53:5b:05:b3:8a:46:d4:4b:a2:9b:
5e:2c:65:7a:7d:f9:c9:9c:0a:ee:32:d7:40:a7:92:
e9:96:6d:3f:af:8a:0c:2f:a7:ec:43:ba:0d:b5:2f:
7f:55:6b:a1:86:8c:74:08:f0:9e:46:75:f3:8b:32:
dd:49:f2:63:00:83:9c:ec:00:fb:fd:7f:3b:0d:c3:
b9:43:44:b0:3c:df:4a:0d:7a:e6:f5:51:e8:16:d8:
9e:af:b9:1b:4d:88:0b:4a:46:5f:11:a4:48:32:db:
18:cb:ce:c7:38:b5:47:21:23:1e:56:94:4c:64:82:
dc:6b:da:83:72:ed:ef:bd:b3:3d:5f:95:bb:b4:e7:
76:1c:3b:c2:77:f8:3a:75:df:f7:eb:4a:2c:94:6d:
6a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0C:6E:3D:A2:E6:E6:77:66:29:64:83:53:D2:37:4A:C0:7A:DA:20
X509v3 Authority Key Identifier:
keyid:DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:49:a2:27:7e:af:fc:ed:14:3c:dc:ed:34:d9:3a:65:7a:35:
54:ec:59:8a:43:01:e9:26:4c:31:18:de:69:e8:0c:94:24:84:
32:2f:b7:8a:97:41:d1:65:c0:39:27:6c:8b:c0:c0:d1:e1:ad:
d6:db:95:2d:14:20:f6:4f:70:25:f8:08:f8:59:0b:33:d6:81:
72:42:ee:03:32:0b:f3:a4:66:a4:b7:e7:15:01:b6:1b:d6:43:
10:98:f4:34:21:1d:5c:10:b3:73:1f:6f:f2:ad:7f:be:d3:a8:
83:c1:e0:bb:0e:45:68:98:c2:96:7d:60:8c:61:bf:80:85:90:
91:e9:ec:75:4d:9f:8b:b3:52:28:c6:09:fc:f2:d7:aa:1a:80:
a3:d2:04:37:7a:e9:82:2b:21:c3:9c:8e:2d:76:a5:ed:5b:e5:
c9:2a:a2:09:9b:26:ba:81:e4:57:c6:8c:13:8c:16:b9:0a:a7:
08:07:32:04:be:25:98:f4:44:a3:3d:3e:1f:15:55:0f:7c:d9:
b5:f9:39:13:a3:27:59:e2:2b:6b:5c:b6:98:1a:7a:05:c3:26:
37:f5:f5:99:ef:25:d6:74:de:3d:de:70:43:63:f2:05:83:25:
d9:3e:3b:2f:40:91:38:e8:d2:3c:52:78:0f:48:ce:8f:5d:ed:
92:44:12:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:20:28 2026 by rpki-client