Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
File: 3j4BZ79YLOzkjWxtApqCzeJyqdU.mft (raw, json)
Hash identifier: fqQX+vnnInFBP2oUKvKJbfz8bz1oEEMsVWoDabMvZcg=
Subject key identifier: 40:24:CE:B2:1F:37:7A:46:52:19:1B:77:3D:23:6F:9A:C5:D1:CA:B3
Authority key identifier: DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
Certificate issuer: /CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Certificate serial: 019D2816516E1B7E18D3EAAF89BE42D92839
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
Manifest number: 181A
Signing time: Thu 26 Mar 2026 03:00:44 +0000
Manifest this update: Thu 26 Mar 2026 03:00:44 +0000
Manifest next update: Fri 27 Mar 2026 03:00:44 +0000
Files and hashes: 1: 3j4BZ79YLOzkjWxtApqCzeJyqdU.crl (hash: IsxNuvhdhISHpjMWpwulEKizyofn00N3lFSRUqvLc1Q=)
2: RP5c5AhjbUkmDfubYWaFncEBFeU.roa (hash: tROgfSyZEJSTutfORsxHOvucHqOl4aWfT4NXFn6Duak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:51:6e:1b:7e:18:d3:ea:af:89:be:42:d9:28:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Validity
Not Before: Mar 26 03:00:44 2026 GMT
Not After : Mar 27 03:00:44 2026 GMT
Subject: CN=4024ceb21f377a4652191b773d236f9ac5d1cab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:00:4f:bf:32:00:6d:c6:41:dd:4b:9f:a3:c2:
59:3d:94:1d:ab:78:6a:42:33:6f:24:b6:9f:74:89:
33:01:d2:39:3a:b9:f9:3f:41:90:c6:bc:98:eb:e7:
bd:7a:e1:84:b0:fe:4d:d7:8e:84:7b:35:7a:7e:72:
94:1f:cf:d2:a7:83:2d:06:c9:c6:be:e3:e7:9a:44:
19:4b:4f:53:4d:ed:20:01:58:96:3b:32:93:bb:b3:
81:2b:f6:55:ef:07:28:af:c3:6a:f6:23:95:da:c0:
2b:b8:0a:7c:cb:a1:34:3d:60:bf:66:3e:23:cd:27:
32:bc:cd:7b:0d:f0:74:72:d3:e2:69:ca:0d:b2:28:
df:5a:cb:e8:ab:47:1b:43:f7:76:42:15:ec:20:2d:
76:6c:7a:ea:d3:54:5a:8c:ad:e0:f6:60:2b:91:28:
de:69:b2:2f:ce:1e:dc:f1:8d:14:2b:1a:5e:a3:19:
95:dd:93:51:9e:8a:f6:9b:0f:bb:7a:be:0e:b1:e0:
05:e1:7f:ea:4c:be:6b:10:49:08:9e:5b:73:47:dc:
cc:b6:a0:10:74:21:db:44:6e:4b:a5:27:de:67:ba:
69:38:0d:81:1a:ff:0b:c1:f6:15:06:58:80:a1:04:
de:a3:ac:e7:80:b6:fe:4c:65:b5:e5:d6:96:3b:08:
3f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:24:CE:B2:1F:37:7A:46:52:19:1B:77:3D:23:6F:9A:C5:D1:CA:B3
X509v3 Authority Key Identifier:
keyid:DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:08:dd:a3:c1:e2:0c:30:ee:72:e8:b2:f6:0e:a4:e9:93:c1:
83:5e:d1:02:3e:0a:9b:b4:c8:35:f2:36:13:38:61:0b:e0:8c:
63:e2:64:34:eb:fc:16:32:8c:4c:cf:d6:7e:c4:49:d2:ed:9e:
5a:5d:fb:f5:a2:59:40:b4:dc:46:ce:3a:3d:81:ba:27:c1:e8:
db:5a:c8:f2:61:ea:51:6c:18:fc:20:f3:ca:73:2b:d6:c8:0f:
a8:42:a1:5c:0d:99:87:95:79:f0:26:bc:49:7c:b3:a7:51:d9:
c9:bb:5e:2a:a5:e0:4c:58:4a:a4:14:1a:96:d9:e4:6b:3e:38:
42:05:45:cf:8d:60:33:6a:eb:66:47:aa:78:7f:8b:bb:06:40:
3d:21:cc:0e:bf:2c:cb:66:da:9c:d4:33:98:cc:18:63:cb:be:
f9:bf:cb:c1:de:81:31:dd:6e:d7:ef:1b:39:1c:ca:e0:93:ae:
11:ae:f2:f6:89:f5:0b:80:01:77:19:d7:e3:4b:51:9b:f5:ac:
26:f4:fc:c3:13:82:95:fa:d8:aa:0a:ab:4c:82:8a:6d:7c:d5:
e7:da:d9:7d:57:b2:f6:1b:82:b1:26:cb:53:04:d8:3b:dc:ab:
9e:20:4f:b4:d4:b3:f8:7f:30:82:b6:99:b5:75:1c:7a:ec:0b:
55:45:8e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:35:09 2026 by rpki-client