Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: J/cdnPI1yQ/3RbMBMeKd4TdmV02WzF/gi4cm2dWlmP0=
Subject key identifier: C5:B1:39:75:63:6F:47:D8:6A:29:FE:E6:0F:9B:37:5A:CB:CF:D3:6B
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019D37C0A86B4C3010A61AF301227E18B1C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 1820
Signing time: Sun 29 Mar 2026 04:01:06 +0000
Manifest this update: Sun 29 Mar 2026 04:01:06 +0000
Manifest next update: Mon 30 Mar 2026 04:01:06 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: pc9DHeiytP1b42rYD3+JAlRGW56Gkz9w54zB8EqO86M=)
2: FFrrJg1f7sBn9CMNkWOHWkncPKA.roa (hash: RRbiIEi7LB7ItO/8kZqYNCorz0xLwEEZeK7jHRHtAV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a8:6b:4c:30:10:a6:1a:f3:01:22:7e:18:b1:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Mar 29 04:01:06 2026 GMT
Not After : Mar 30 04:01:06 2026 GMT
Subject: CN=c5b13975636f47d86a29fee60f9b375acbcfd36b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0f:d8:bc:a0:cd:0a:99:e8:bd:f4:8d:27:6d:
e6:fb:61:13:7b:9d:14:82:fe:b9:bf:27:e1:04:5a:
e1:d3:91:ec:0e:82:e9:0c:51:d5:db:ea:78:e0:b1:
5f:6d:21:63:e0:69:8a:d6:98:84:05:c2:98:5d:8d:
2d:35:33:e9:dd:83:81:86:e9:be:26:1e:66:2e:8f:
f8:35:3b:6a:8e:5e:8a:9b:3f:25:d0:2f:8a:ed:33:
0f:b4:03:53:5e:4f:43:14:19:26:92:94:6c:54:81:
9b:b7:d8:46:dc:53:5d:1b:40:58:2c:3e:8f:ed:bd:
7e:fc:cd:ab:2e:f9:93:e5:98:bc:82:38:b5:61:b1:
96:c1:41:6f:e3:d3:1e:88:de:74:b7:71:4e:c8:31:
6a:be:ca:19:46:68:b9:23:08:ea:ed:58:ba:e5:14:
03:6f:96:71:b3:91:d4:6c:11:8c:b9:34:2e:12:19:
2e:25:b2:fc:d2:e4:11:4d:26:ca:3c:06:66:43:90:
81:2f:e3:3d:18:60:46:4d:7f:1e:0d:99:e8:92:92:
e3:89:3a:83:a5:57:f9:b2:c2:69:e6:c1:54:1d:c2:
73:bd:be:ae:7c:a0:c5:6f:1a:f9:4b:a6:db:0f:a7:
0b:a5:f0:cf:7d:8f:41:00:3e:1d:cf:07:2c:74:ec:
55:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B1:39:75:63:6F:47:D8:6A:29:FE:E6:0F:9B:37:5A:CB:CF:D3:6B
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:40:6f:05:8a:5b:0c:6a:e5:73:5e:b8:5a:92:88:59:ae:67:
77:6a:dd:d4:33:65:b0:ca:75:2d:90:80:f5:ca:3c:6d:8f:50:
4f:52:ba:d8:30:54:fb:44:55:e3:9f:b8:a9:4a:d2:7c:08:a8:
d9:d5:4b:b6:35:8e:1e:82:36:ae:80:49:2d:76:4b:30:29:7b:
8b:73:c7:f7:5d:ba:59:2a:67:5b:7d:72:1b:69:e0:47:b2:66:
e8:3a:83:24:08:cc:69:e4:4e:45:cc:6d:25:e2:6f:af:ae:2c:
25:b5:6c:6c:e5:25:4b:e8:37:a1:71:75:3c:af:d0:a6:dd:e8:
63:ff:0e:17:26:a1:bf:40:db:84:fc:67:08:fb:f9:db:0c:97:
22:d8:22:7e:db:8b:20:de:e5:7e:b6:91:d3:90:5b:01:98:f5:
e4:0f:19:94:91:17:00:b0:8a:5a:95:25:c1:87:c0:21:55:e1:
19:18:8d:fc:63:54:d0:a8:88:c7:77:09:35:56:bb:3f:6a:6a:
4d:fb:1c:00:a6:98:cb:8f:57:04:cb:28:5e:2b:30:f0:cb:ea:
52:13:f2:3c:dd:0a:fc:23:fe:3e:2e:5f:2a:16:93:51:e9:29:
4b:b9:bb:00:ed:c4:32:62:68:54:3b:3d:c1:69:28:cd:4a:48:
a6:52:0e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:54 2026 by rpki-client