Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
File: _e3ZOtbKqmCtSfD5N32Kq_h34ts.mft (raw, json)
Hash identifier: 872xExC04RvsFJ2H4oX8RPlk5HLxdb1iDJK3HqZcCNA=
Subject key identifier: FF:81:C1:16:58:37:8A:81:5E:75:31:20:47:96:6C:C5:4D:04:A9:A0
Authority key identifier: FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB
Certificate issuer: /CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db
Certificate serial: 019D3865696E5955A8CA340F72BB3D6488E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
Manifest number: 0A0E
Signing time: Sun 29 Mar 2026 07:01:03 +0000
Manifest this update: Sun 29 Mar 2026 07:01:03 +0000
Manifest next update: Mon 30 Mar 2026 07:01:03 +0000
Files and hashes: 1: _e3ZOtbKqmCtSfD5N32Kq_h34ts.crl (hash: MWE9qRaziy7xZSPgIVZBQlA0vQRFExDv93YQySUXeLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:69:6e:59:55:a8:ca:34:0f:72:bb:3d:64:88:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db
Validity
Not Before: Mar 29 07:01:03 2026 GMT
Not After : Mar 30 07:01:03 2026 GMT
Subject: CN=ff81c11658378a815e75312047966cc54d04a9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:69:30:1a:44:a6:04:33:f6:c2:ea:22:a4:d2:
73:23:5b:8d:a8:bb:0a:28:7d:bd:0f:dc:6a:25:2d:
ac:c7:d6:82:fa:3a:86:03:dc:d2:7e:ef:ec:24:ec:
e6:43:11:30:f6:56:8b:77:d3:18:e1:48:05:43:af:
21:ed:6c:16:7a:5c:92:8e:d5:56:e8:87:c8:55:31:
65:00:46:6e:18:7b:9b:f6:3f:33:22:d7:49:f9:1f:
71:bb:2b:2a:dd:e6:56:2d:32:9e:78:e4:ab:78:3c:
33:d6:2d:d1:90:31:23:c3:9f:a6:cb:54:fd:63:a6:
a7:36:b3:14:4d:aa:6c:9d:7c:c2:47:d4:19:1d:5d:
b2:59:8c:89:ad:74:67:4c:64:ba:a5:28:cd:bd:09:
48:31:1e:84:2c:69:7e:03:8b:fb:d6:40:37:61:b8:
89:84:47:02:3f:14:03:59:43:0e:16:ac:e2:69:34:
d3:86:b3:46:b6:54:03:2c:23:3a:0b:e0:63:a5:d4:
8f:b3:83:29:e3:08:3e:22:a0:bd:97:80:d2:b6:6d:
2e:5d:ec:5a:0d:8d:50:6b:6a:89:f8:5e:42:39:75:
c9:d6:28:74:a3:75:57:71:e5:3a:0a:52:51:65:b8:
68:2f:2e:b1:23:53:7d:75:f9:e4:1f:a9:cd:02:61:
ae:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:81:C1:16:58:37:8A:81:5E:75:31:20:47:96:6C:C5:4D:04:A9:A0
X509v3 Authority Key Identifier:
keyid:FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:88:da:6b:76:2a:63:e1:32:fb:bb:8d:7c:be:44:1a:aa:e4:
02:af:9b:af:a3:51:b6:6d:3d:5c:09:d3:17:83:a1:81:8d:fa:
0d:66:c0:f1:15:70:60:c7:a5:eb:73:4c:df:fe:47:6a:2f:4a:
33:c2:27:a8:9d:a3:74:12:8b:71:17:9e:c0:e9:61:51:20:62:
d3:25:86:f2:8e:42:73:97:8c:a4:50:3e:2e:d8:2f:e7:a0:2e:
6c:b9:f4:b4:89:55:cc:42:e0:36:6b:1e:5f:81:cc:c0:e7:3c:
08:1d:c1:b6:f0:53:7a:56:9e:de:ce:2a:f7:a6:b6:ce:e9:1e:
34:37:4f:8e:92:d3:c1:8b:0f:91:da:cc:40:71:bc:e8:23:9b:
8c:0f:bd:74:81:26:8a:09:cb:1b:83:3a:9f:4c:c3:10:a5:4a:
e4:5e:5f:93:57:97:c8:33:97:28:7b:f3:47:cf:2c:82:78:88:
36:a9:be:57:72:97:1b:12:56:72:03:7a:50:69:17:e8:39:4e:
83:26:04:a2:ef:eb:6b:98:33:74:07:87:12:47:3c:f5:e5:64:
83:e6:ea:4c:a6:99:fa:33:06:2a:51:fc:ed:aa:e5:8a:84:ed:
08:6a:e5:42:c8:5a:e7:2d:fc:0e:6b:6b:40:9a:e2:09:2f:31:
f5:95:6a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:59:14 2026 by rpki-client