Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
File: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft (raw, json)
Hash identifier: SeTNLwFO+J4/UnLiKtAH+ZMxL2n/XttHV5RG55dlTA0=
Subject key identifier: 86:CC:8E:0C:F6:C0:5C:A1:F2:AD:FB:62:CC:32:BE:1E:E6:4F:89:A0
Authority key identifier: DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
Certificate issuer: /CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Certificate serial: 019D2A723E0F4AAA1D5BE6D4AA2F862970A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
Manifest number: 0CF2
Signing time: Thu 26 Mar 2026 14:00:23 +0000
Manifest this update: Thu 26 Mar 2026 14:00:23 +0000
Manifest next update: Fri 27 Mar 2026 14:00:23 +0000
Files and hashes: 1: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl (hash: a9DnsDoGG8TzRHDv4fq38miKeloSiuszzhEI+op/NSs=)
2: N905L8-7YxH2DGuKT4TqyLtH9hg.roa (hash: 8pMSMPosiUUfB8gsw6Yi/Z3lOaNd4MGcuLKeWx/SoOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 14:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:3e:0f:4a:aa:1d:5b:e6:d4:aa:2f:86:29:70:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Validity
Not Before: Mar 26 14:00:23 2026 GMT
Not After : Mar 27 14:00:23 2026 GMT
Subject: CN=86cc8e0cf6c05ca1f2adfb62cc32be1ee64f89a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:41:17:4e:98:e9:99:f4:f4:00:44:df:dc:8e:
42:f4:ca:47:95:77:fd:de:5d:f2:f6:a7:48:b5:31:
70:04:8c:59:f8:bf:82:03:63:e9:09:b5:b7:de:86:
2e:38:9a:89:73:ef:85:1f:2f:d9:01:a7:24:33:d7:
59:56:22:f3:b0:36:f7:5c:6e:4a:54:71:f9:2a:fe:
a1:d0:d9:16:41:2d:5c:30:4b:2a:58:f2:3e:96:7f:
83:66:c4:f4:b5:ce:07:ac:48:23:bf:85:c6:0b:4f:
e2:4c:0a:58:63:9e:59:e2:0f:24:a4:a9:b8:bc:8b:
38:9b:bc:6e:d8:a7:7b:f8:14:29:78:ff:ff:10:21:
a4:57:b5:e3:21:a7:83:eb:67:6d:2b:73:62:21:84:
34:5e:70:61:1c:e3:6d:44:89:e7:01:5d:b4:ad:7e:
a9:d4:6a:ce:bb:53:bc:25:8e:18:bc:a4:77:0a:f3:
33:56:d3:21:01:43:d8:89:11:2b:39:9e:ec:b7:0a:
04:63:78:a1:ba:b9:f5:f7:39:cd:85:40:29:bf:3d:
c9:70:cb:5c:f7:c2:ab:a7:33:e0:d1:5f:7e:82:c7:
af:2a:61:2f:34:0a:e7:ab:87:cc:43:13:09:a2:bd:
b6:cc:47:55:a0:25:ce:25:7d:0c:ca:8b:99:ba:d6:
90:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:CC:8E:0C:F6:C0:5C:A1:F2:AD:FB:62:CC:32:BE:1E:E6:4F:89:A0
X509v3 Authority Key Identifier:
keyid:DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:95:f6:60:42:46:99:04:b8:64:1f:48:9b:62:08:93:d4:ce:
ed:c2:a8:9a:8f:05:a0:4c:91:26:f9:87:7c:8a:7d:3d:16:c3:
f9:71:76:39:15:8e:06:73:f8:36:e9:ad:6d:0b:be:32:7e:b8:
bf:a8:13:cf:76:cd:47:54:02:a6:5e:f9:8c:5d:04:b3:d8:5f:
97:df:c7:8c:16:2e:3e:29:5a:81:3e:a2:58:55:96:d2:a5:04:
84:43:aa:54:e3:92:46:fd:2d:34:84:80:92:c0:73:49:f5:d3:
d9:e9:2c:6e:a2:3b:fd:ff:74:d8:93:01:58:ce:da:94:92:4f:
b9:4a:1e:0b:47:fa:3e:a1:2e:78:00:68:8d:4f:16:98:50:3b:
ac:3b:ee:7f:a7:5c:31:25:32:4b:4c:89:47:61:a3:1f:b9:06:
64:c5:70:b8:52:34:82:5d:89:96:a3:07:f8:11:c9:28:c4:fc:
f3:d8:6a:9a:cb:35:c8:fc:c0:76:84:52:16:52:62:39:3f:31:
73:7d:df:ff:97:35:5d:6b:7e:a7:2e:9d:fb:de:4f:7b:4c:15:
e1:ad:b1:66:78:a8:b7:0f:95:7a:ba:f7:2c:53:ea:36:8c:82:
2a:9f:9f:82:30:8a:3e:fe:f9:ce:98:64:43:d1:41:a8:b5:cc:
78:f9:4b:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qcj4PSqodW+bUqi+GKXCiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkOWMzMDM5OWY2Mzg1NTVmNGMwMmU4ZDFiNTViYzkyNzIy
NWNiNTEwHhcNMjYwMzI2MTQwMDIzWhcNMjYwMzI3MTQwMDIzWjAzMTEwLwYDVQQD
Eyg4NmNjOGUwY2Y2YzA1Y2ExZjJhZGZiNjJjYzMyYmUxZWU2NGY4OWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EEXTpjpmfT0AETf3I5C9MpHlXf9
3l3y9qdItTFwBIxZ+L+CA2PpCbW33oYuOJqJc++FHy/ZAackM9dZViLzsDb3XG5K
VHH5Kv6h0NkWQS1cMEsqWPI+ln+DZsT0tc4HrEgjv4XGC0/iTApYY55Z4g8kpKm4
vIs4m7xu2Kd7+BQpeP//ECGkV7XjIaeD62dtK3NiIYQ0XnBhHONtRInnAV20rX6p
1GrOu1O8JY4YvKR3CvMzVtMhAUPYiRErOZ7stwoEY3ihurn19znNhUApvz3JcMtc
98KrpzPg0V9+gsevKmEvNArnq4fMQxMJor22zEdVoCXOJX0MyouZutaQZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIbMjgz2wFyh8q37Yswyvh7mT4mgMB8GA1UdIwQY
MBaAFN2cMDmfY4VV9MAujRtVvJJyJctRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1p3d09aOWpoVlgwd0M2TkcxVzhrbklseTFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi9iZWNhNGQtNzBjYy00Y2E0LWI0NTIt
MGU1MTQwNjJjNTkwLzEvM1p3d09aOWpoVlgwd0M2TkcxVzhrbklseTFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi9iZWNhNGQtNzBjYy00Y2E0LWI0NTItMGU1MTQwNjJjNTkw
LzEvM1p3d09aOWpoVlgwd0M2TkcxVzhrbklseTFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh5X2YEJG
mQS4ZB9Im2IIk9TO7cKomo8FoEyRJvmHfIp9PRbD+XF2ORWOBnP4NumtbQu+Mn64
v6gTz3bNR1QCpl75jF0Es9hfl9/HjBYuPilagT6iWFWW0qUEhEOqVOOSRv0tNISA
ksBzSfXT2eksbqI7/f902JMBWM7alJJPuUoeC0f6PqEueABojU8WmFA7rDvuf6dc
MSUyS0yJR2GjH7kGZMVwuFI0gl2JlqMH+BHJKMT889hqmss1yPzAdoRSFlJiOT8x
c33f/5c1XWt+py6d+95Pe0wV4a2xZniotw+Verr3LFPqNoyCKp+fgjCKPv75zphk
Q9FBqLXMePlLKQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 20:27:51 2026 by rpki-client