Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: u7L63sI5x55S8y+gmKtQKnxPqXKzev5I4MeItpPII58=
Subject key identifier: 5E:38:82:93:8C:F2:34:04:D5:01:B3:C5:66:4F:FB:3A:A9:B3:0B:6D
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 019D2704161A5BDEAA969A1F8C75D08928C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 106F
Signing time: Wed 25 Mar 2026 22:01:12 +0000
Manifest this update: Wed 25 Mar 2026 22:01:12 +0000
Manifest next update: Thu 26 Mar 2026 22:01:12 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: 1bSc5r62dq8OO/XNRzgrcmEqDEZj4o0A2lU4WQOlm9k=)
2: 41nL5ZV4qJFS5Q2xxQRuLMPoip0.roa (hash: BJiNQu65WQwhnTLfbv69MpyE5IwMrQPr3mJhDc7s1uM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:16:1a:5b:de:aa:96:9a:1f:8c:75:d0:89:28:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: Mar 25 22:01:12 2026 GMT
Not After : Mar 26 22:01:12 2026 GMT
Subject: CN=5e3882938cf23404d501b3c5664ffb3aa9b30b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:23:9c:b5:27:ec:a4:50:3f:ca:78:9f:76:f5:
e5:f6:fc:90:a6:83:2c:f0:94:8a:a2:58:95:8e:81:
f7:08:65:c7:b5:06:d5:19:8a:50:0c:03:26:40:eb:
72:1f:08:03:53:47:b7:2b:0d:66:2c:1e:b5:39:eb:
51:eb:4d:d5:d2:16:57:dc:f9:21:1f:62:9e:b2:98:
2c:db:30:44:94:58:a2:f4:81:82:20:98:7c:be:9e:
23:59:e2:fb:35:fa:e2:4f:1e:fb:55:57:4a:81:d6:
7b:f4:83:db:c6:50:4c:1a:8e:a7:26:af:bf:fb:03:
94:6b:d6:92:50:f3:2f:08:a6:c0:0b:b8:7c:dd:37:
c3:83:50:08:d9:d3:ec:96:e7:89:fc:ae:f3:f4:ad:
20:4d:47:d9:ea:fa:4e:87:46:7a:3b:fd:5f:39:d2:
7f:f4:64:c6:34:85:b9:a8:a7:e8:63:2b:30:68:30:
f4:ce:e8:7d:2c:b2:bb:36:0b:64:37:d2:f3:1f:57:
21:e3:e0:d6:73:ee:1d:27:6f:96:4a:bf:71:5e:b7:
85:33:87:b9:8c:33:ab:44:97:bf:52:f7:26:15:ff:
e1:4e:1b:79:ff:6b:f5:86:6c:84:b0:6b:8e:db:a9:
ea:3d:91:6a:1c:14:0d:59:21:53:20:da:62:5e:c7:
c4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:38:82:93:8C:F2:34:04:D5:01:B3:C5:66:4F:FB:3A:A9:B3:0B:6D
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:28:76:f5:e0:48:09:ff:c3:8e:87:05:7c:4a:a5:98:b5:c4:
c8:0c:85:59:27:05:35:d4:99:93:18:93:e5:16:cf:9e:60:2e:
fe:0a:2d:ea:98:ac:d5:36:79:1e:46:21:d2:9a:d1:d0:c4:21:
74:95:c0:6d:aa:ce:9b:bd:64:67:a9:fe:69:a4:34:76:c2:ea:
fc:1c:e9:72:d9:c4:0b:dc:16:7b:13:76:43:e5:87:de:d6:3b:
12:65:c4:f6:c7:a6:bd:d5:fc:fb:51:d4:ca:1e:87:32:8c:23:
92:51:80:ac:10:34:48:e5:54:25:97:12:ab:21:3d:ba:86:c7:
b0:e2:83:92:10:c5:7e:66:6b:ab:f0:7d:05:c4:51:9d:6a:e6:
da:11:93:ac:3a:e3:55:9c:8a:0d:ee:ac:23:27:bf:99:2a:21:
c7:a9:74:37:e1:11:67:e5:92:64:42:d1:a0:cd:5c:5c:ac:0a:
e6:5e:b7:34:23:38:88:a9:30:73:eb:e6:2b:9f:db:3f:04:51:
70:5f:39:e3:b3:98:c0:fd:1c:f8:f9:8d:f2:26:88:26:d3:b1:
0f:68:11:02:b7:3b:d1:72:a4:d0:be:1b:cb:9a:7b:90:4a:b9:
40:7a:da:64:e0:de:7b:86:93:28:d7:43:30:9d:a3:b3:2a:e3:
6b:d2:1c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:10:22 2026 by rpki-client