Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: 1vrMxVFl6P+qsyhhN5JO6V2Tn1Y0YrU3tL0hcoYDOR0=
Subject key identifier: 4D:20:15:A0:26:29:CD:F3:0D:0F:05:89:81:C8:F0:9A:1F:AD:DC:88
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 019D37890D4318CE6A059D36435203B04F18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 189E
Signing time: Sun 29 Mar 2026 03:00:21 +0000
Manifest this update: Sun 29 Mar 2026 03:00:21 +0000
Manifest next update: Mon 30 Mar 2026 03:00:21 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: 59EQgfj8KIxu8i5HoPE0yZe76Wg1WDy4vjB5bmPOPWI=)
2: 9zaCEl1SgGOc-A7zIR9SmhOUbCA.roa (hash: eFtzjl4+/9tlA7bC6sKrJsHMLsAxLeLlfmditC5aZTs=)
3: _QaXkGOzguH_3SYFNe1d3y7B2Tw.roa (hash: KztSdz5ODte8K6guWxzrXZlYDG1F2rVO/Vqml3J+Q0o=)
4: fsnKswSMyeM4OK2o8J_ZzwwYiiI.roa (hash: tWk+nFmUcDykdNhoUyVPw1UFkRx/3AJQMBQrLxH1g5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:0d:43:18:ce:6a:05:9d:36:43:52:03:b0:4f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Mar 29 03:00:21 2026 GMT
Not After : Mar 30 03:00:21 2026 GMT
Subject: CN=4d2015a02629cdf30d0f058981c8f09a1faddc88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:14:5f:2a:5f:d8:bc:8a:a2:89:38:f7:24:37:
c8:4d:74:6c:9a:a9:5d:6f:43:ad:8b:a8:7c:ae:69:
8e:9b:b2:7d:74:7c:4b:9f:4b:27:07:e2:43:dd:bc:
3f:f3:95:a6:6a:76:7b:36:9e:27:0e:64:c2:71:19:
73:fd:46:55:9f:ee:02:bc:f8:e8:8f:d9:9f:a3:42:
5e:48:1a:5c:60:cb:fd:ba:03:bd:bd:43:32:c5:94:
da:f9:81:1e:a5:60:dc:49:fa:dd:22:db:69:a7:c2:
57:32:1e:ae:35:57:61:73:9e:5b:75:a7:09:13:dd:
e0:95:4f:94:d7:63:d1:64:22:c6:4a:66:95:e9:ea:
b0:34:18:65:52:87:17:e2:c6:47:3a:6e:03:d1:ae:
0c:16:0e:47:3e:fb:87:68:68:94:25:dc:19:26:32:
87:04:f1:4b:41:f3:73:50:fb:e0:93:d6:6d:a1:43:
27:a7:e3:f3:cf:f7:48:2a:10:fe:f6:eb:21:02:10:
f1:1f:ed:6b:4c:af:fe:42:41:8b:96:6a:35:bb:24:
6e:21:91:04:ab:16:da:11:64:3d:f9:04:2c:9f:fb:
53:34:ae:e5:d0:08:10:19:95:de:72:e5:ab:2e:9f:
f9:06:db:a5:a5:8d:c1:8f:da:bf:3f:e3:6f:af:d4:
72:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:20:15:A0:26:29:CD:F3:0D:0F:05:89:81:C8:F0:9A:1F:AD:DC:88
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:39:53:99:a9:27:c0:2d:5b:0c:32:ea:f3:d6:19:8a:de:3e:
f2:50:a6:ad:df:0e:fb:95:24:f6:2a:97:95:f7:a8:2c:d0:93:
e0:b1:c3:df:36:d8:70:5b:3f:d0:b1:5f:76:57:46:6e:b7:47:
bd:02:a9:b7:20:e3:f0:61:80:d5:bb:f1:0d:7a:ff:dd:30:9d:
cb:fc:38:6f:3b:b2:d6:61:b7:bb:0a:13:b0:18:54:5a:49:55:
82:15:b2:8b:71:36:42:ab:ec:a3:08:7f:6d:58:0a:e3:d3:d9:
aa:71:1a:87:db:c0:56:b6:2e:85:02:05:0b:ad:11:31:19:55:
08:88:73:49:4c:61:3b:85:c4:8b:79:2b:45:98:33:e0:f4:85:
d9:0f:8a:de:f6:72:1c:d7:75:a2:e3:dd:e7:6e:17:3c:11:82:
86:12:ab:03:72:0a:f0:ed:00:ae:20:66:01:d0:be:fa:ee:13:
01:d1:4d:cf:d3:ee:1f:5f:c8:70:98:0a:24:f8:1e:71:ea:0d:
e1:66:96:f1:b0:c6:42:67:74:df:b1:52:00:f7:c8:c2:94:c5:
5c:39:ce:70:c2:5c:ba:ba:61:31:e9:6e:0c:66:5f:df:e1:79:
2d:19:f3:3a:3e:f0:0e:06:21:cd:62:0f:fc:94:3f:fa:16:ba:
f0:08:a3:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:49:45 2026 by rpki-client