Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
File: 3YqroPRrqhRP2wk46RwU-UxhZQw.mft (raw, json)
Hash identifier: wawyvJ+QpToYiyTyMloekSJfaz/wMUtsCzMnlQSuweM=
Subject key identifier: 72:08:B4:F6:6C:01:54:FD:3D:E3:BF:B1:47:A4:63:F3:A5:87:C8:FE
Authority key identifier: DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
Certificate issuer: /CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Certificate serial: 019D38D2ABAB04C7E47D9FBE6B9F11CBD9C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
Manifest number: 0FF0
Signing time: Sun 29 Mar 2026 09:00:23 +0000
Manifest this update: Sun 29 Mar 2026 09:00:23 +0000
Manifest next update: Mon 30 Mar 2026 09:00:23 +0000
Files and hashes: 1: 3YqroPRrqhRP2wk46RwU-UxhZQw.crl (hash: tynFMgySLNQf2oUAKM4P/QBc59WCOd1oEEycNDzVrZU=)
2: ipwbth9z_kAmFFiQQC69LkO_nQw.roa (hash: NejJVwemsx7RaWRb+qhN37iXZFwIo50zil0wLKpDlFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:ab:ab:04:c7:e4:7d:9f:be:6b:9f:11:cb:d9:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Validity
Not Before: Mar 29 09:00:23 2026 GMT
Not After : Mar 30 09:00:23 2026 GMT
Subject: CN=7208b4f66c0154fd3de3bfb147a463f3a587c8fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:50:d0:c8:6e:8d:36:cf:f5:75:78:24:a4:d2:
6f:95:21:04:62:8d:28:9d:95:98:b5:6b:2a:0b:bb:
14:75:e5:9d:00:5e:25:ae:70:4e:8e:4c:b7:0e:8c:
c0:1c:d5:fc:fb:fc:b6:27:fd:9e:d8:69:98:df:bc:
ab:fe:ea:37:a1:15:80:37:9c:97:6c:7c:51:6b:17:
15:a7:1d:8d:1f:ff:2e:c7:20:48:eb:8f:80:1a:d5:
35:5a:cf:3c:b2:ca:8b:67:c5:11:3e:ef:09:01:fb:
32:8e:8e:3c:e9:e9:80:ba:f8:35:30:7a:50:df:fa:
06:ba:90:da:26:84:30:24:04:49:9e:05:aa:5d:38:
f7:a9:29:dc:29:53:c8:37:0f:d5:42:cd:60:63:04:
98:d4:93:47:65:b3:55:b8:0f:87:39:54:49:97:d9:
82:09:cd:f4:6c:cb:25:b1:4a:28:fd:a2:9b:23:57:
14:09:ea:7b:86:e3:40:0e:39:5a:17:76:d4:18:b1:
f1:79:3a:57:27:fc:24:9b:69:b7:5d:28:61:0f:24:
0c:1d:1d:78:a2:b9:a1:d5:6b:d5:55:b5:f3:d6:0b:
43:e1:15:e3:26:c1:57:f7:55:ca:1f:78:2a:f5:8f:
db:74:89:7d:ec:15:63:86:24:b6:31:88:a7:96:64:
b7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:08:B4:F6:6C:01:54:FD:3D:E3:BF:B1:47:A4:63:F3:A5:87:C8:FE
X509v3 Authority Key Identifier:
keyid:DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:2d:23:83:98:5c:8e:08:e3:37:9e:fa:a9:04:7d:72:b9:9c:
90:ca:9e:33:aa:3a:bc:73:9c:7e:b7:76:00:9b:c3:fb:02:64:
63:84:e7:76:a1:5d:25:ee:8a:8f:5c:2a:97:b3:5a:49:87:14:
17:0e:b9:e2:aa:bd:65:66:3a:c6:10:c1:d3:e1:ed:b1:7c:aa:
16:5c:a6:ca:97:6e:53:2e:5b:8a:a1:d4:34:91:5c:51:44:49:
4f:1c:cc:36:75:23:f1:cb:7b:e6:a5:d6:3f:8f:02:40:13:07:
1d:94:6b:4d:f3:86:41:e1:dc:63:c1:e9:03:35:3d:78:09:f6:
f3:85:4b:d9:61:c6:ad:6f:f3:2a:bb:cc:54:22:e7:09:e0:c3:
9b:6e:ef:e9:a5:35:fe:25:30:73:1f:03:70:01:36:11:6b:4d:
ca:d1:0b:5e:14:10:fe:d0:c0:18:60:26:fb:e4:dc:51:17:e2:
56:db:89:23:90:dc:1b:d1:79:4a:d4:cd:05:e2:a1:75:81:83:
84:19:88:62:14:1b:28:64:a2:ee:38:37:14:5e:1d:d2:43:05:
27:da:92:6a:c7:79:1c:15:17:b5:f1:2b:a1:81:1f:f2:4f:97:
d8:dd:65:e4:44:c4:21:ff:0c:4a:62:8e:45:a9:c2:0f:4b:00:
4c:87:75:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:09:39 2026 by rpki-client