Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
File: 3YpOHe5bseZXmxFhypEsqcA7Ru0.mft (raw, json)
Hash identifier: sY099M6imDJbIvBD3LLKQysGmDrKtXBrK1YR6W3Wm4k=
Subject key identifier: 73:BC:C4:F5:CF:E3:51:2C:4B:9D:31:24:38:18:D7:7F:EE:49:18:D7
Authority key identifier: DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
Certificate issuer: /CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Certificate serial: 019D37C0A83B2F9EDAACB766DF9213FCADFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
Manifest number: 11E2
Signing time: Sun 29 Mar 2026 04:01:05 +0000
Manifest this update: Sun 29 Mar 2026 04:01:05 +0000
Manifest next update: Mon 30 Mar 2026 04:01:05 +0000
Files and hashes: 1: 3YpOHe5bseZXmxFhypEsqcA7Ru0.crl (hash: /Uu9qusi5RwHs3vxKwdfuislaqlPoLjaRjhWhlr+OXg=)
2: h3ZDg5youB0K7vntlWcD6_hznfg.roa (hash: 9Ot/r2EVZQa+csMn0s0+LAGhdTl5GbdXVa69dBPCmRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a8:3b:2f:9e:da:ac:b7:66:df:92:13:fc:ad:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Validity
Not Before: Mar 29 04:01:05 2026 GMT
Not After : Mar 30 04:01:05 2026 GMT
Subject: CN=73bcc4f5cfe3512c4b9d31243818d77fee4918d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0a:89:ad:1c:69:d5:a5:fe:7f:e5:36:78:7f:
fc:44:ed:2a:92:09:69:8c:44:36:c2:2b:ea:f4:20:
cd:17:84:9c:da:59:c2:fe:53:7e:19:9e:3e:21:47:
f7:e3:fe:15:f7:cb:0d:20:f8:f9:ab:04:e0:18:a0:
5f:87:a5:60:88:ae:7c:04:dd:e1:08:bd:68:88:7b:
52:0d:7d:b1:b5:98:9f:76:a5:09:cf:78:82:10:46:
4d:64:5c:17:80:46:78:25:60:17:ce:92:e9:e2:50:
d2:86:87:e3:c3:50:68:cd:49:52:d0:e7:e9:06:41:
a9:ec:1e:9b:34:dd:43:c7:36:6c:83:27:94:57:0f:
e5:91:32:10:bf:19:aa:ae:e1:fe:cf:4d:be:48:67:
94:0b:6a:bd:38:90:c7:a1:70:b0:a8:fa:c8:dd:d9:
51:16:aa:e9:81:7c:00:a9:5f:2b:77:53:97:03:13:
ec:8f:87:da:23:00:cb:aa:b5:1b:2b:d3:ce:14:32:
84:dc:ad:28:9a:6f:48:3f:dd:3b:db:9f:08:72:fc:
79:ae:c0:6b:07:6f:43:5c:de:c4:e0:4c:52:a7:14:
ae:1f:9b:aa:a1:6b:f6:08:76:00:43:f9:de:97:5f:
ee:9e:64:6e:73:01:39:41:62:2f:23:bd:0a:ff:45:
42:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:BC:C4:F5:CF:E3:51:2C:4B:9D:31:24:38:18:D7:7F:EE:49:18:D7
X509v3 Authority Key Identifier:
keyid:DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:69:30:64:e3:e9:a5:82:17:a8:f7:80:6d:bd:fb:4e:8e:7b:
9e:59:2b:d1:90:2d:a1:93:ae:87:8f:8b:6b:6d:d8:d2:3a:37:
2f:3f:3a:7d:dd:d3:16:f3:0b:f5:f8:93:37:00:fc:5f:f0:44:
fe:65:76:32:08:66:66:6c:47:fb:50:f2:c9:3d:36:76:75:26:
65:23:23:1c:eb:21:a8:f5:50:eb:70:71:c6:05:dc:65:73:6d:
d3:a0:26:86:4c:89:c6:0d:27:2a:be:5a:b1:eb:ef:69:4c:27:
3a:74:d3:50:43:4c:8c:ac:dc:45:8b:55:ba:ac:e1:17:0f:9a:
78:87:b4:14:67:86:e8:d7:32:93:6b:22:bf:e4:d0:0b:30:1e:
38:3a:11:d9:18:92:1c:1f:ab:d3:2b:73:8d:18:fd:7b:d2:6e:
1f:58:45:c9:af:95:01:17:8e:55:d9:27:51:e6:64:bd:7b:e2:
fe:61:eb:61:dd:19:fd:14:b6:ad:3d:d5:1d:ab:67:07:41:8f:
b7:ec:29:7b:42:f6:67:9c:aa:cd:17:1e:44:50:e8:82:66:48:
e4:6a:b6:86:07:7f:f2:e0:98:f0:d5:ae:4d:b1:77:c8:07:39:
38:cd:ad:6e:25:22:f8:30:21:3c:a3:f9:2f:f2:7e:85:06:c9:
c3:f8:1c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:13 2026 by rpki-client