Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
File: 3QtmPEXXvCck0WhIUIdYHhREj7Y.mft (raw, json)
Hash identifier: AHONby8szLDCUB/rvmrCRtHlALV1rj3padt0MYxljUQ=
Subject key identifier: 2A:E1:C8:64:9A:40:CD:8F:F5:B1:BD:C1:1C:49:8C:63:63:F2:BE:1B
Authority key identifier: DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
Certificate issuer: /CN=dd0b663c45d7bc2724d168485087581e14448fb6
Certificate serial: 019D382E4432AAD3808203DF748CB7356AD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 06:00:49 +0000
Manifest this update: Sun 29 Mar 2026 06:00:49 +0000
Manifest next update: Mon 30 Mar 2026 06:00:49 +0000
Files and hashes: 1: 0zAvG8q_rQz542VLQHfI3pwn2hU.roa (hash: EpeZpmHs3b50RgbC9T7I86EOA85BMvieUCH/Qo6Mt6U=)
2: 3QtmPEXXvCck0WhIUIdYHhREj7Y.crl (hash: BeeLHSN6kqeEZle/u0jXR9eINZP1b0XegOdZPWTCS70=)
3: gozTMRP9KybW0YQlfst5QWvJTAc.roa (hash: 1fB1QbWdo2Si+L9RD7xiEIKgMl1IQRY1BWEJBSr6TVA=)
4: nCAbVn_gsNs4x4asBKyazyvKXR0.roa (hash: Ir2ZDg7CX0Hx7nK6/8SSzS9hwNZYvwP7LhXhdGV2tlA=)
5: s5RTg8fa0nQHIcIumLzUhuAAt24.roa (hash: cqMD2IDYqFBpxsaJVxm5d2TxnTtqRKRBltHR4geFTsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:44:32:aa:d3:80:82:03:df:74:8c:b7:35:6a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd0b663c45d7bc2724d168485087581e14448fb6
Validity
Not Before: Mar 29 06:00:49 2026 GMT
Not After : Mar 30 06:00:49 2026 GMT
Subject: CN=2ae1c8649a40cd8ff5b1bdc11c498c6363f2be1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f3:5d:58:17:9f:dc:7f:97:a6:3a:3e:f8:e4:
a3:34:c3:23:07:32:3f:a0:01:fa:30:e1:4a:c6:22:
ec:be:1c:7d:ac:c0:6c:f7:11:6b:77:b1:2a:29:ea:
36:c3:ed:e7:36:7c:1f:6b:c8:20:b5:11:fe:3b:13:
08:26:8c:4a:a3:82:42:6f:e5:c5:8f:7f:46:46:16:
b8:cc:53:8f:79:e9:7c:68:25:fc:4e:df:76:43:62:
76:ec:ed:3c:20:e6:9d:75:cb:db:5d:c9:59:61:51:
87:64:cb:e6:dc:9a:98:71:9f:06:9c:de:98:b1:c3:
e3:16:da:52:74:3c:66:33:26:df:28:ae:e5:53:9d:
13:b5:ed:41:7f:54:94:eb:ce:07:41:dd:77:25:41:
64:0b:9e:ba:3b:fc:92:8e:d9:1e:5f:37:a8:a1:fd:
11:9e:8f:7c:b4:7c:2f:94:8c:f7:09:9d:a4:2d:9d:
9c:d0:15:79:e6:e5:00:59:33:2b:d1:71:43:4a:2e:
63:8d:3e:92:1e:0e:d8:12:73:80:b1:41:1d:72:3a:
ba:ec:72:39:b5:de:c2:a2:e5:31:fd:0f:a0:2a:d6:
48:8e:98:0e:86:41:bb:29:3b:92:8c:f6:c5:68:b2:
1a:e5:7d:c7:87:8d:eb:59:2f:14:17:35:f6:de:60:
38:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E1:C8:64:9A:40:CD:8F:F5:B1:BD:C1:1C:49:8C:63:63:F2:BE:1B
X509v3 Authority Key Identifier:
keyid:DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:21:20:a8:a6:99:37:f1:c6:af:4d:41:9f:5f:b5:0d:5a:d2:
33:08:3b:45:15:90:2d:4f:bd:8e:80:24:d1:f0:c9:ea:5a:a5:
53:a3:a5:bb:b5:87:72:2c:fe:6b:98:5e:4a:29:22:4a:e7:0f:
f4:15:dc:c5:d0:76:39:11:37:7e:25:95:6c:e1:92:c9:9b:f1:
c2:1b:79:f4:79:70:ea:f7:51:1b:10:d4:29:e7:15:62:8e:f7:
d8:e8:02:d7:ad:12:ec:c8:80:9a:95:3b:4e:cc:4e:e4:c3:37:
2a:97:c0:90:3f:ce:78:30:8b:b1:55:01:05:94:f2:4f:f3:e1:
9a:da:d2:bb:b6:65:35:41:f6:65:5f:4e:03:96:c0:65:74:8a:
c7:48:ad:18:22:13:0c:d9:43:81:82:a5:dd:5c:61:af:de:b6:
78:83:5b:7f:56:6b:6d:ef:45:1d:42:32:10:fc:cc:29:f4:7b:
6b:ab:e5:3c:0e:c2:db:b3:48:58:85:0f:40:32:52:83:85:2c:
4b:27:67:05:f8:92:fb:c7:71:8a:c5:66:de:c5:82:a8:fc:05:
64:74:7a:33:b7:b1:6f:2a:fe:f2:74:b7:fc:1e:2c:be:ca:31:
48:49:18:0e:a8:6f:c3:95:04:ae:1d:6a:68:af:9e:b3:07:e1:
7a:3e:fd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:36 2026 by rpki-client