Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
File: 3xRM6OjkQV5chqCygEmaOFwU7_I.mft (raw, json)
Hash identifier: KjXdOMDa6/cG+ksQvnlctPtYF6xCFOh5HsLKSwaYNu0=
Subject key identifier: C8:1F:97:7E:E4:58:09:81:CD:20:C5:2E:98:55:8C:2B:75:41:AF:87
Authority key identifier: DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
Certificate issuer: /CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Certificate serial: 019D389C4C9C8BB62F40B22E4C07CB9D7C14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
Manifest number: 0F06
Signing time: Sun 29 Mar 2026 08:01:00 +0000
Manifest this update: Sun 29 Mar 2026 08:01:00 +0000
Manifest next update: Mon 30 Mar 2026 08:01:00 +0000
Files and hashes: 1: 3xRM6OjkQV5chqCygEmaOFwU7_I.crl (hash: jLR6suZ8PprageCveCf8ITHN9FNM5DRAfq5rxnQXJSg=)
2: mN6LPum92-oppYTfVnse9pFdGGY.roa (hash: Az1RSnzhomoH0PRWVFUSJEmI0WtwP1548LAxILCV7N4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:4c:9c:8b:b6:2f:40:b2:2e:4c:07:cb:9d:7c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Validity
Not Before: Mar 29 08:01:00 2026 GMT
Not After : Mar 30 08:01:00 2026 GMT
Subject: CN=c81f977ee4580981cd20c52e98558c2b7541af87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cd:34:ce:15:ef:15:e3:56:f8:82:05:29:2e:
e7:91:e1:34:28:5b:6a:77:1f:fd:08:86:1c:6f:8d:
48:29:c4:e0:54:bc:e1:43:ba:51:41:0c:69:00:a2:
d0:aa:03:f6:44:14:13:ec:73:3d:19:4a:8d:d2:4b:
47:07:6f:82:25:1b:d9:4b:36:a5:3c:78:c1:90:dd:
eb:aa:3b:b3:57:b9:ed:3d:32:72:83:3f:89:37:38:
a9:b5:09:32:bf:24:25:47:74:44:4c:9f:56:5f:8c:
3c:25:32:72:e6:46:ae:fa:89:56:0f:4f:a6:23:d8:
64:db:54:a9:67:42:fb:bd:08:be:a0:a1:99:cb:55:
61:ee:ac:62:8b:1c:19:be:d0:d5:d0:47:b2:42:d8:
4b:9c:c5:6d:bd:a6:7b:aa:21:67:27:01:be:28:cc:
79:18:13:49:28:4e:21:8b:cb:01:89:78:ef:d5:22:
5f:0f:40:48:03:76:7d:bb:47:20:cf:0a:30:5c:08:
16:76:cd:02:dd:1d:ed:0f:03:27:6a:0e:47:c1:e0:
94:a9:68:42:33:3a:7c:c1:40:39:22:ff:e4:8a:b5:
88:38:ac:1e:44:ca:0b:97:f4:37:59:ae:5e:60:c4:
15:5e:1d:a2:43:11:47:00:ba:a9:00:d6:96:95:0f:
5f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:1F:97:7E:E4:58:09:81:CD:20:C5:2E:98:55:8C:2B:75:41:AF:87
X509v3 Authority Key Identifier:
keyid:DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:92:02:18:80:1c:3d:17:16:64:fc:77:5d:19:4e:80:18:96:
b6:31:82:98:5a:9d:e5:03:0f:5f:d0:53:f3:20:16:c5:d7:85:
b7:19:97:77:08:ec:f9:84:b1:a7:d6:88:b8:15:7e:28:63:90:
32:83:25:e3:02:e2:80:42:5c:7e:80:cd:c9:33:56:cc:12:2d:
07:bd:eb:6f:9a:a0:ff:ad:0c:23:a2:01:40:34:94:0d:42:12:
19:1c:99:f5:7b:eb:b6:83:07:67:8a:ab:90:79:71:5c:23:7c:
cb:d4:4f:6d:1f:4b:ba:76:32:24:93:8f:1f:2b:b4:16:62:07:
cf:f6:c1:69:bf:2e:0c:f0:3b:34:32:59:a0:19:8b:34:47:d1:
ff:5f:42:a1:af:81:b2:25:f1:37:e2:8c:21:b0:04:1a:0d:e4:
8e:6b:5b:f3:7d:ed:b1:51:db:88:b4:43:9b:d3:1c:01:8a:f3:
9b:a6:a9:e3:c6:60:53:1a:05:ae:51:49:41:21:a1:30:01:ff:
81:75:9a:4c:46:2e:61:d5:90:e5:42:d9:9c:8e:f8:da:c9:c7:
5a:e1:2b:7c:30:a9:91:08:7a:c5:4e:a9:2d:1f:9d:0b:38:ab:
28:26:01:cb:1b:4b:2d:33:d5:34:cb:9d:38:ce:da:b0:0f:f1:
c2:5b:cc:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:46:58 2026 by rpki-client