Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
File: 3-ytVuquEjX6eI5OrTkiwpbig6U.mft (raw, json)
Hash identifier: BGvYsc36xCAcOTBQxDPpxCRP2t0wZyHj9ND+Th2QCKQ=
Subject key identifier: 06:A7:F3:93:9F:81:26:4D:C5:BD:73:83:43:EE:8D:BA:75:50:94:B7
Authority key identifier: DF:EC:AD:56:EA:AE:12:35:FA:78:8E:4E:AD:39:22:C2:96:E2:83:A5
Certificate issuer: /CN=dfecad56eaae1235fa788e4ead3922c296e283a5
Certificate serial: 019D25BA9DF27E2E32A607E5DC7A5995186C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
Manifest number: 03BF
Signing time: Wed 25 Mar 2026 16:01:20 +0000
Manifest this update: Wed 25 Mar 2026 16:01:20 +0000
Manifest next update: Thu 26 Mar 2026 16:01:20 +0000
Files and hashes: 1: 3-ytVuquEjX6eI5OrTkiwpbig6U.crl (hash: PeDiz9+tWYh2uPrsno9+W7bvc7UGvVAnheTdPuVWA2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:9d:f2:7e:2e:32:a6:07:e5:dc:7a:59:95:18:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfecad56eaae1235fa788e4ead3922c296e283a5
Validity
Not Before: Mar 25 16:01:20 2026 GMT
Not After : Mar 26 16:01:20 2026 GMT
Subject: CN=06a7f3939f81264dc5bd738343ee8dba755094b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:90:e4:2a:cf:26:2e:7e:0b:f1:77:dc:bb:b3:
60:91:27:51:45:f5:4e:62:d5:2a:cf:a9:ca:2d:b1:
7e:68:47:06:e9:b1:12:47:e8:10:73:f6:a7:65:fb:
b7:c9:42:86:79:df:24:72:60:1f:5e:11:56:b7:2d:
e4:84:8f:f6:6a:d0:e1:67:c2:59:9c:07:4e:1b:d0:
7d:b7:bc:cf:73:31:09:c5:11:66:95:5f:a8:fd:03:
f5:64:8c:09:54:27:f3:6a:5a:8b:1a:3a:ba:d1:4b:
55:55:46:9f:b1:ef:79:29:51:fc:b2:eb:37:fe:09:
05:50:a5:9b:4b:bf:ae:44:3a:70:b3:12:08:76:9e:
2a:dc:eb:ce:8d:df:01:d1:08:78:0d:44:ce:da:6b:
36:1c:79:8e:ec:5d:99:d9:3b:e8:41:1f:82:bd:22:
1f:ef:60:5d:51:c3:9a:49:80:74:d3:44:03:bf:7d:
04:de:1d:70:0f:a8:41:d1:c4:0a:9c:9c:54:e6:46:
c0:8d:99:11:c7:d6:81:9c:5e:77:2d:d8:d5:e0:ff:
82:d7:ab:50:7b:11:a9:bf:63:a2:5c:84:93:71:1f:
62:e8:81:ea:c6:a8:c4:6b:96:18:2e:cc:ee:07:f5:
19:77:64:7d:71:6e:d8:ce:a2:bc:49:ad:dc:41:33:
df:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A7:F3:93:9F:81:26:4D:C5:BD:73:83:43:EE:8D:BA:75:50:94:B7
X509v3 Authority Key Identifier:
keyid:DF:EC:AD:56:EA:AE:12:35:FA:78:8E:4E:AD:39:22:C2:96:E2:83:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:46:ce:80:12:a1:c6:7c:61:7c:d1:d6:db:fb:a8:12:00:4f:
40:98:a8:dd:89:47:a1:4d:9d:88:2d:a2:08:e2:f5:48:7d:58:
b2:44:f3:69:ef:c7:e2:e5:3a:c0:8b:cf:ac:d7:3e:93:b4:7b:
14:a5:52:fe:0a:42:73:72:35:32:7a:27:58:35:71:c9:97:57:
81:d2:c8:a1:d6:56:85:9e:d4:de:8b:9d:de:4a:46:73:24:49:
bc:6b:bd:41:aa:79:90:17:53:04:ab:8e:55:4c:5c:b9:61:78:
26:2a:64:04:6a:c9:a2:6c:6a:77:51:bb:27:30:59:87:b2:55:
40:9f:2f:68:a6:e0:e3:5c:a9:1b:88:12:d5:d6:6b:36:97:c7:
da:1f:cb:8c:55:de:6c:dd:28:6e:9d:d8:39:a9:05:13:1f:2e:
64:b5:a5:5d:79:79:69:08:d1:14:61:bf:0f:4d:bd:db:1c:c0:
a8:e8:62:ff:8a:c3:3c:ce:60:f9:ab:af:94:cb:41:31:3b:f5:
5e:54:be:24:e2:57:73:c1:ac:ef:b4:6f:19:6a:69:5b:68:ff:
c5:cc:2f:8a:6b:75:a4:02:3f:60:45:dd:cb:f0:d6:3f:c0:6a:
93:45:4a:ee:a9:b4:6c:7a:37:b0:74:06:18:c4:95:94:95:a8:
b9:6f:70:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:20 2026 by rpki-client