Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
File: g-3hynyzX11h-NWctQNumT6kO3A.mft (raw, json)
Hash identifier: zjA2MqIITmtGH5dWRfYpbJGhS5lBzzLEQlWTzlTxWl8=
Subject key identifier: 46:5A:85:D5:E1:00:02:5C:77:62:DC:26:5E:16:2E:C5:DF:4E:3F:79
Authority key identifier: 83:ED:E1:CA:7C:B3:5F:5D:61:F8:D5:9C:B5:03:6E:99:3E:A4:3B:70
Certificate issuer: /CN=83ede1ca7cb35f5d61f8d59cb5036e993ea43b70
Certificate serial: 019D2704A83C885BB6DE0970337D0A35E2F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-3hynyzX11h-NWctQNumT6kO3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
Manifest number: 10AD
Signing time: Wed 25 Mar 2026 22:01:49 +0000
Manifest this update: Wed 25 Mar 2026 22:01:49 +0000
Manifest next update: Thu 26 Mar 2026 22:01:49 +0000
Files and hashes: 1: g-3hynyzX11h-NWctQNumT6kO3A.crl (hash: bE1OixathpLteX7rf9GGjd1nmubmwjZUXhEq70SQzJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/g-3hynyzX11h-NWctQNumT6kO3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:a8:3c:88:5b:b6:de:09:70:33:7d:0a:35:e2:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83ede1ca7cb35f5d61f8d59cb5036e993ea43b70
Validity
Not Before: Mar 25 22:01:49 2026 GMT
Not After : Mar 26 22:01:49 2026 GMT
Subject: CN=465a85d5e100025c7762dc265e162ec5df4e3f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:93:ea:79:cf:23:68:0c:c4:8c:91:63:56:
5d:ce:c7:0e:cd:68:1f:6f:6e:eb:1b:44:a3:19:98:
c8:37:db:e4:4a:8d:cb:6c:30:06:b3:46:5e:a6:e5:
7a:12:6b:4c:fe:b0:33:ca:af:71:4b:b0:ec:cf:7a:
b6:eb:3e:d1:57:c7:92:6e:8a:6a:85:5f:16:2d:90:
a0:23:52:b8:81:0f:5c:a2:3a:57:f1:f7:a8:14:4f:
95:59:53:fb:1a:35:a7:fa:5a:3e:e0:05:08:21:06:
7d:85:c4:35:ac:61:bf:d0:52:65:74:63:13:fa:69:
44:55:3e:eb:85:dd:44:77:17:a6:8c:38:b2:2d:14:
ed:cf:9b:10:d2:8e:95:6d:65:7e:62:52:0f:46:0c:
79:59:b4:66:28:d6:11:bd:a8:11:aa:c8:60:98:d6:
d7:bd:80:44:64:a6:29:bc:fe:71:3b:4c:e6:cc:3a:
ec:06:9c:cf:0d:9d:fb:bb:0e:45:2a:46:fd:1c:c2:
94:9d:20:4b:d2:79:3c:d2:f6:f1:f0:56:b7:ce:19:
c3:e3:18:92:10:25:c6:5a:2d:e5:00:86:70:b3:56:
48:6d:f0:aa:e5:e5:4d:38:8b:5d:fe:01:b5:4c:8b:
56:8a:02:a8:73:93:fa:e0:cd:f7:07:e6:4d:b6:32:
66:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:5A:85:D5:E1:00:02:5C:77:62:DC:26:5E:16:2E:C5:DF:4E:3F:79
X509v3 Authority Key Identifier:
keyid:83:ED:E1:CA:7C:B3:5F:5D:61:F8:D5:9C:B5:03:6E:99:3E:A4:3B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-3hynyzX11h-NWctQNumT6kO3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:a5:69:59:d5:8f:07:ac:06:e3:7b:4d:46:e7:b7:a9:02:e3:
9e:a6:c4:a7:72:46:2e:d6:bf:73:06:aa:79:f7:74:ca:10:07:
a6:fd:4f:cb:2c:39:6d:78:87:1f:92:f2:d6:44:88:18:0c:1b:
2c:37:5a:c0:c9:d8:bf:fd:95:9d:86:b8:6a:69:67:23:04:73:
10:29:a2:38:1d:0e:e2:42:1f:48:38:f1:14:f2:b0:44:dd:33:
eb:22:c2:db:93:a2:36:50:23:0d:4f:d7:8b:8d:53:e9:b7:f5:
db:10:29:f2:fa:54:6b:3b:b8:f8:ef:59:c5:2c:63:77:b7:85:
95:83:25:fb:ad:50:6d:30:c5:b2:d6:12:f5:1d:72:7e:44:bc:
09:ba:b7:bc:64:b8:47:ca:36:06:e9:b4:4e:1b:d5:97:23:89:
e5:26:8a:18:35:55:1e:fc:95:a0:28:f6:1e:61:3a:d6:cb:6c:
0a:f0:21:60:ba:3b:bc:f9:2e:31:b1:29:8c:ff:41:ca:79:9b:
14:bf:c1:ae:d9:f5:3d:28:83:ed:1b:9e:5a:b4:15:a3:1c:4f:
a6:0b:01:b4:df:f9:fd:d4:0b:bd:64:ed:52:af:2a:73:2c:8d:
9d:be:b9:5e:51:d9:38:67:e9:89:b1:49:36:ac:8d:cc:25:25:
8b:38:4e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:34:31 2026 by rpki-client