Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
File: r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft (raw, json)
Hash identifier: /KkgbutrQMOwKNHbNYSobtWE+g3MxKSwKA1vJ+q4PC0=
Subject key identifier: 96:BD:5D:E2:FC:D9:CB:86:7A:16:92:CB:A0:1B:41:18:D1:DD:8D:E2
Authority key identifier: AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33
Certificate issuer: /CN=af782dae3d40caf2223262541c4054e62945d933
Certificate serial: 019D394101C1943C805BF6BF36D0957DD985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 11:00:54 +0000
Manifest this update: Sun 29 Mar 2026 11:00:54 +0000
Manifest next update: Mon 30 Mar 2026 11:00:54 +0000
Files and hashes: 1: bWD35slaNU4G8WoJ3kljEx_CXmQ.roa (hash: CiE8YvQDdxY0SzfoYEi10FyebaWkuSk6ub1WO85b5Q8=)
2: r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl (hash: ARp+gXuOaMs0Ea2RBYpuReBQfBn324qpiuiuo4sjTsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:01:c1:94:3c:80:5b:f6:bf:36:d0:95:7d:d9:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af782dae3d40caf2223262541c4054e62945d933
Validity
Not Before: Mar 29 11:00:54 2026 GMT
Not After : Mar 30 11:00:54 2026 GMT
Subject: CN=96bd5de2fcd9cb867a1692cba01b4118d1dd8de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:21:5d:31:e4:07:15:2f:2f:df:c4:26:c7:8e:
8f:00:93:8b:5f:33:39:ed:1e:4a:15:e4:96:d0:7f:
d7:a1:cd:fb:83:0c:6d:84:04:fb:c3:66:b6:92:c7:
c4:98:b2:05:b7:e3:57:a6:d5:f4:21:76:be:eb:9a:
73:bb:7e:52:02:b0:0f:18:1c:cc:13:29:4d:36:66:
92:c3:84:3a:a8:e0:bf:75:17:0c:ef:f2:79:41:aa:
5b:bd:7c:73:df:f2:ed:b4:b8:0a:d8:3a:8b:6f:0c:
9f:84:12:2a:f7:ec:44:1c:00:2f:d9:70:23:c8:52:
68:ab:b6:53:b0:64:26:b7:7c:e4:3f:b8:5a:78:3d:
40:4a:2f:3a:b6:e6:2d:12:91:5f:4c:67:e4:cf:c7:
24:15:f0:9f:b3:71:4d:aa:62:b3:b0:dd:ba:5f:8b:
f8:68:7d:0f:40:9f:89:5b:63:f4:fb:8e:65:14:39:
19:bd:cc:ce:fa:da:a5:1d:52:12:9d:2d:07:29:b9:
5e:6a:f1:10:9c:87:ee:e1:af:47:1b:99:8f:be:4e:
a5:da:2a:5e:1f:cf:60:57:71:ff:c7:45:aa:17:cb:
2a:95:d1:4c:bb:21:68:fd:57:dd:11:7d:01:14:33:
b7:47:96:e5:c5:00:3a:97:01:ef:6b:66:e7:c9:77:
a5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BD:5D:E2:FC:D9:CB:86:7A:16:92:CB:A0:1B:41:18:D1:DD:8D:E2
X509v3 Authority Key Identifier:
keyid:AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:31:82:be:d2:6a:fe:70:5d:05:a2:33:97:26:a4:a0:63:15:
70:55:86:ce:12:05:b6:c1:24:8e:9f:0f:de:17:ba:9a:50:3e:
4e:ca:9d:8f:76:72:ee:b9:5e:7d:65:b1:85:c8:95:70:22:a4:
73:5e:c4:8a:1d:35:86:58:15:5c:2a:81:e2:e8:9f:f9:bb:56:
fe:ab:20:b8:7f:d1:27:d0:99:58:b6:f9:4f:fa:38:c7:d2:13:
c0:5f:f9:9f:89:d7:4d:4b:cf:5b:9a:cf:0b:5f:81:74:f4:93:
bf:6a:16:d8:f5:b0:d2:a8:ad:09:c4:b9:75:db:af:fe:6b:2e:
e0:cd:30:d6:6b:9f:8e:93:65:c8:00:12:d6:21:0f:d5:c9:3c:
ce:71:4a:b2:99:da:9e:4f:82:aa:79:5a:6f:8e:ef:6b:05:bd:
1a:34:cc:47:5d:cd:a7:57:3a:dc:32:6d:52:f8:75:54:c9:ed:
06:46:85:02:42:8f:51:73:8d:f3:48:db:84:ce:6b:3b:10:41:
4d:cb:6b:81:21:97:4b:7b:c8:44:38:16:7e:59:04:20:10:d0:
dd:c9:ac:4f:f0:e5:30:ee:74:b0:ef:9a:b3:54:d7:b6:69:30:
39:4e:5c:b8:77:14:d2:39:b0:c5:6a:a5:29:4d:1a:51:5e:53:
33:ef:e1:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:55 2026 by rpki-client