Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
File: 3AOqmk_p1gxc-FOpJIIiafHMdFI.mft (raw, json)
Hash identifier: YYw/39glRCKzM7lqZd9XgphNcMQScHC7huhMpUnwUBc=
Subject key identifier: DC:1A:29:0D:9F:8C:4E:19:75:AB:19:F6:9B:B3:0F:E5:72:37:0D:F0
Authority key identifier: DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
Certificate issuer: /CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Certificate serial: 019D3A8A66489C7A18AAD10F33FFF3DF2262
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
Manifest number: 0E3C
Signing time: Sun 29 Mar 2026 17:00:41 +0000
Manifest this update: Sun 29 Mar 2026 17:00:41 +0000
Manifest next update: Mon 30 Mar 2026 17:00:41 +0000
Files and hashes: 1: 3AOqmk_p1gxc-FOpJIIiafHMdFI.crl (hash: kZCGpUgRMF4Mz9xRfVzigM7YiPBrebnNfHFMve5ReIE=)
2: 7TZLT2P2zuuPjzUmClw3kX64yXM.roa (hash: fnAcb1tn2nnIoVX24Iibq3Ab9gwSJ7WX+AekjhFSNg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:8a:66:48:9c:7a:18:aa:d1:0f:33:ff:f3:df:22:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Validity
Not Before: Mar 29 17:00:41 2026 GMT
Not After : Mar 30 17:00:41 2026 GMT
Subject: CN=dc1a290d9f8c4e1975ab19f69bb30fe572370df0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:88:01:23:66:01:41:35:f1:b5:2f:5a:70:cc:
6f:02:9e:68:d3:2d:6d:41:16:c0:07:ea:ac:0f:5c:
20:e5:75:a1:02:31:7f:4b:2e:6c:30:44:e8:0b:2d:
95:64:0e:1c:64:56:1d:20:91:8d:02:44:bd:8d:a1:
12:19:86:d2:d5:39:da:36:79:64:11:f6:72:f7:c0:
e4:8e:c9:08:e4:eb:20:b9:ba:3e:4c:0d:22:a1:39:
49:96:0a:5d:a1:32:dd:47:a7:6e:9c:f4:f5:3f:3e:
31:48:02:19:44:cb:af:50:fc:bf:66:2e:ad:c9:e2:
d8:1c:ba:a4:b6:6e:93:63:19:0c:37:10:ed:4d:38:
a8:2f:c0:67:c5:0c:bf:49:78:2b:90:7e:4f:8d:3a:
51:12:9b:1b:3f:cc:67:f5:c0:89:3b:14:33:08:08:
6e:4d:d4:ec:66:3c:b0:0c:10:04:46:31:27:47:d1:
6d:27:01:68:f0:a2:aa:44:7a:d3:4f:d9:45:c8:82:
71:ea:8d:1b:88:b5:85:95:32:5b:07:ab:bf:07:09:
0e:2a:79:f7:c2:7c:55:33:9c:71:4d:82:8b:33:42:
8e:1f:3f:93:f4:f6:02:a7:96:8a:e3:c9:bc:2f:cf:
ff:03:e5:28:0e:6f:c6:e5:ae:6b:ff:47:43:6a:90:
49:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:1A:29:0D:9F:8C:4E:19:75:AB:19:F6:9B:B3:0F:E5:72:37:0D:F0
X509v3 Authority Key Identifier:
keyid:DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:2c:a1:ad:84:2a:b9:89:22:4f:50:3b:9e:bb:cc:a0:ec:f0:
01:c7:2d:47:21:14:8b:8b:f2:ed:7d:fb:93:e8:e8:fa:8a:ed:
5a:92:87:21:aa:ce:dc:07:6a:8f:f5:18:7f:72:0c:2d:2e:09:
fd:13:78:ae:0f:c3:94:67:0a:20:41:96:08:7c:de:94:9b:9e:
12:ab:3b:8c:77:42:5c:74:7b:6c:cd:fa:5e:79:06:58:67:4e:
36:60:80:ef:90:e7:88:ae:c1:c8:2e:20:9c:d8:10:0a:88:41:
77:37:a6:dc:8f:b9:70:d2:4c:d9:7b:3b:9c:5a:35:04:99:a7:
43:88:b6:dc:7b:47:c0:47:e5:bb:5d:1f:0d:fc:17:63:0b:23:
5c:ec:fe:9f:37:8d:95:4b:d5:81:d5:47:0e:3f:76:96:e3:77:
fa:d1:55:bf:a5:ed:38:df:bb:69:c6:57:51:6b:eb:a7:43:ac:
09:c4:b7:0e:c6:10:e5:ed:cc:49:b2:d7:32:c5:a5:d5:c1:9c:
2b:fd:12:15:23:c2:fd:68:e7:e8:28:78:a1:eb:8f:d0:bf:08:
92:6f:e3:d0:59:ed:0a:fd:c0:6a:3d:00:46:fd:66:b1:76:5a:
58:2e:54:25:73:11:e0:06:bf:a1:8a:f1:12:4b:7a:8b:d3:2d:
28:e6:4f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:49:11 2026 by rpki-client