Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft
File: 3fCc-W5fyHTuk5CXxWUci9hC5q0.mft (raw, json)
Hash identifier: xJzrSwDHXOZg+gzXCpbbSa40q4LeLpVXRsyJxQVKQ2Y=
Subject key identifier: 29:07:0C:68:AD:9F:46:62:BC:5F:80:73:97:28:55:9F:96:F6:98:1C
Authority key identifier: DD:F0:9C:F9:6E:5F:C8:74:EE:93:90:97:C5:65:1C:8B:D8:42:E6:AD
Certificate issuer: /CN=ddf09cf96e5fc874ee939097c5651c8bd842e6ad
Certificate serial: 019EB6FC02196D20A6466506CE7E00CCF66F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft
Manifest number: 0688
Signing time: Thu 11 Jun 2026 14:00:29 +0000
Manifest this update: Thu 11 Jun 2026 14:00:29 +0000
Manifest next update: Fri 12 Jun 2026 14:00:29 +0000
Files and hashes: 1: 3fCc-W5fyHTuk5CXxWUci9hC5q0.crl (hash: I3MVITdReiLAzixJHge96PgdY292L0ky+iTOup3iyQQ=)
2: C60VxSBJDSdFCd1k1UlGSCrwJvY.roa (hash: KibtnUkNqe/Q4+yRw8o2hlvC70cIKXb1SxvsmfXdEPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:fc:02:19:6d:20:a6:46:65:06:ce:7e:00:cc:f6:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf09cf96e5fc874ee939097c5651c8bd842e6ad
Validity
Not Before: Jun 11 14:00:29 2026 GMT
Not After : Jun 12 14:00:29 2026 GMT
Subject: CN=29070c68ad9f4662bc5f80739728559f96f6981c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:35:44:19:85:c9:c7:6f:ba:3b:9d:40:dd:cc:
53:82:fe:3f:29:00:43:9c:56:2d:e7:c0:9d:e9:f0:
f8:c1:fc:61:f2:60:61:32:71:b9:ed:cf:b5:a3:7e:
a1:2b:b9:b3:59:29:28:c6:08:10:3b:55:25:cc:52:
a7:2f:68:50:b4:72:de:21:1b:b5:5f:c1:94:5d:73:
70:b6:ac:e1:f9:5e:be:2f:51:00:c2:c6:3a:98:cc:
bc:d1:97:04:bc:04:b4:d0:95:af:b7:5c:da:08:8e:
5f:1c:d5:ee:ad:fa:7e:c6:e1:6b:10:b4:d4:0e:05:
ea:ff:70:b7:78:09:e7:9f:2c:80:aa:66:90:f3:2d:
96:d7:ba:48:6d:35:01:c8:06:ef:2a:09:da:ac:b3:
a2:8b:35:de:b2:d3:d0:b0:bf:56:d0:35:33:80:4c:
9a:58:2e:50:be:f5:d3:18:fc:57:e3:73:7d:32:81:
62:a8:bb:10:7b:a9:58:c4:93:18:28:1e:e0:b7:34:
0d:67:83:80:f7:01:df:3e:5f:8d:c9:33:63:d8:c8:
3b:27:d0:8b:ce:27:df:53:18:31:19:0b:8d:ab:f7:
9b:2b:f9:a1:5a:b2:60:41:65:11:51:1b:25:cc:80:
38:f9:51:65:b4:4e:06:25:53:b3:e8:b0:6b:01:7d:
7d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:07:0C:68:AD:9F:46:62:BC:5F:80:73:97:28:55:9F:96:F6:98:1C
X509v3 Authority Key Identifier:
keyid:DD:F0:9C:F9:6E:5F:C8:74:EE:93:90:97:C5:65:1C:8B:D8:42:E6:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:c9:55:24:9c:4a:a5:70:d8:54:33:94:0e:f1:17:47:0e:45:
b7:d8:2a:25:cf:37:17:65:dc:91:78:36:92:b2:bf:b8:db:c6:
ca:7f:81:ea:d6:35:10:06:56:64:5c:07:85:67:05:42:a8:df:
25:1e:23:52:8b:ff:37:84:42:a7:c1:cb:37:d8:fd:3d:dc:2d:
0e:6d:19:27:b1:d1:54:c8:99:f5:d7:61:a2:5d:d7:51:94:f1:
ca:3d:03:d3:c1:7e:d3:59:13:92:7b:71:47:e1:ac:d7:42:5e:
e5:ba:9b:9e:7a:4a:71:7e:32:b5:1c:b6:ab:b9:fa:41:0a:43:
82:c3:12:41:a4:dc:84:e2:0d:77:75:91:e7:9b:e2:6f:dd:a1:
ef:95:17:d6:de:d8:2f:c6:f4:84:4e:c5:5e:9b:ec:af:4a:46:
14:05:d2:60:fc:44:11:e7:a5:05:ba:34:55:6c:76:72:a8:78:
dd:d0:cd:81:0a:5f:4d:eb:08:03:7b:07:a3:4f:ef:d0:93:cb:
46:6f:39:1d:13:8e:15:db:5b:dc:fb:fb:2a:a4:02:c0:89:36:
a5:0e:ef:05:b6:5c:b4:5f:71:f9:14:45:1a:03:84:9c:7e:19:
a8:d5:85:5d:98:d5:47:d0:cd:ab:fe:96:9d:a2:8e:48:f5:93:
83:6a:b0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 22:42:13 2026 by rpki-client