Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
File: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft (raw, json)
Hash identifier: dSO6P1D+pFWNZYwwIWE10wq5BLCuxUXgG6C9/Tgd8tw=
Subject key identifier: 6F:3C:B2:7C:85:5B:2E:AC:11:F2:B9:B7:D1:94:E9:A5:B9:C1:3E:DF
Authority key identifier: DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
Certificate issuer: /CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Certificate serial: 019D3AC22B320AE5E22C72DA12842AFAA0D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 18:01:36 +0000
Manifest this update: Sun 29 Mar 2026 18:01:36 +0000
Manifest next update: Mon 30 Mar 2026 18:01:36 +0000
Files and hashes: 1: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl (hash: cT6ck+GhTXsyGPZAwZkhTwtXaLeJVFfTYCvcHqivy9A=)
2: QAWM0Lol009j6uKq6lsWaoRBKH0.roa (hash: lK/TjxV7zjq43eORaaonfTSL2oVI9tSkgfqFQO6a0ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:c2:2b:32:0a:e5:e2:2c:72:da:12:84:2a:fa:a0:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Validity
Not Before: Mar 29 18:01:36 2026 GMT
Not After : Mar 30 18:01:36 2026 GMT
Subject: CN=6f3cb27c855b2eac11f2b9b7d194e9a5b9c13edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7f:ec:22:92:c2:db:64:69:c9:3c:0c:d0:1f:
dc:a9:4d:aa:0b:2e:45:62:35:1f:b5:07:35:e0:03:
ee:3e:5c:9a:42:ff:a4:d8:5f:0c:0f:c8:2f:0c:05:
2e:f4:08:27:36:f6:88:d6:db:06:84:71:22:bb:7f:
84:84:b1:e1:33:e6:6f:67:af:09:be:e0:0f:f1:1e:
48:75:ce:9f:df:85:1e:1b:76:c8:a2:fe:a7:23:7e:
11:59:9b:e9:b0:c8:b4:09:25:d3:6b:3e:62:a3:0f:
31:f7:e2:b9:37:60:ea:e5:ea:d2:16:86:ff:f3:b6:
6e:5a:4c:b1:5e:36:87:21:ac:63:c1:2c:4b:9b:0a:
3c:99:d3:1a:b0:78:5c:98:9f:53:48:41:7f:bf:87:
6d:40:64:31:1b:ea:f6:6a:db:49:9c:d2:1d:31:2a:
60:05:c8:25:ba:75:ec:66:f7:19:5f:3c:49:1a:ef:
b2:51:45:a6:44:2c:00:c2:72:7c:34:3f:e7:6f:0e:
ce:ad:46:30:f1:e2:44:eb:b4:4e:97:8c:1a:6a:e4:
bf:39:0d:c8:9b:2c:f2:f4:3f:12:62:a7:7d:71:e1:
f3:77:ea:71:10:78:51:16:43:2e:3d:e9:9a:e6:47:
9f:c5:2f:ed:dc:0e:89:30:00:b8:65:29:d5:f2:9d:
c8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3C:B2:7C:85:5B:2E:AC:11:F2:B9:B7:D1:94:E9:A5:B9:C1:3E:DF
X509v3 Authority Key Identifier:
keyid:DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:50:7a:71:54:48:ca:5f:8f:e4:35:18:a6:43:93:10:e9:f6:
e8:db:8f:04:86:c1:41:d4:00:6e:e1:f1:95:e9:7d:2e:9c:c6:
0d:50:ad:a7:ec:16:39:b6:87:68:52:e4:03:1a:0b:ea:52:fa:
99:c7:61:3c:b2:28:ab:46:a3:ec:4a:fd:ff:3e:d7:cb:95:96:
c0:d5:e8:62:ce:e8:4e:f6:d2:9c:0a:3a:07:4d:25:f1:85:eb:
17:76:db:b3:38:f5:09:9c:1e:82:c1:4a:87:c0:f0:72:c2:d6:
88:bb:f4:61:80:80:e5:36:1f:4e:7f:e1:49:77:03:09:b6:83:
eb:3d:98:34:fe:c4:30:2b:a8:01:0e:37:e0:0f:35:ec:e0:16:
ef:8c:f4:20:0f:73:9b:72:ea:62:ca:5e:0d:1b:dd:ce:1b:40:
66:d0:d8:18:d3:d0:53:46:d7:e4:9f:eb:37:f1:03:8d:b3:51:
54:fe:1c:85:d5:86:07:aa:1e:02:98:10:04:56:64:15:f4:de:
b5:66:54:dd:82:93:f3:86:9c:f1:fe:ba:1a:d4:7b:63:05:25:
e5:6c:e1:b5:f8:19:65:6d:1c:af:3e:6d:61:7b:66:cc:ad:f2:
d1:f4:ec:f8:2b:bb:ee:14:bc:37:cc:8e:1c:e6:a7:97:f7:ce:
ca:19:83:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:57:45 2026 by rpki-client