Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft
File: 3ozUdpwybYRex1OmcNo6yptp7hU.mft (raw, json)
Hash identifier: wVXVKkgymEvBB+M2bYfcPao4xC1ulumkhqLHJVhC1cM=
Subject key identifier: 73:F3:A8:B1:9E:9D:B4:39:E2:5A:FD:64:C0:D2:CE:18:F1:52:50:27
Authority key identifier: DE:8C:D4:76:9C:32:6D:84:5E:C7:53:A6:70:DA:3A:CA:9B:69:EE:15
Certificate issuer: /CN=de8cd4769c326d845ec753a670da3aca9b69ee15
Certificate serial: 019D39AF23087F64155E687CF7F5A35A686B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ozUdpwybYRex1OmcNo6yptp7hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft
Manifest number: 02EC
Signing time: Sun 29 Mar 2026 13:01:12 +0000
Manifest this update: Sun 29 Mar 2026 13:01:12 +0000
Manifest next update: Mon 30 Mar 2026 13:01:12 +0000
Files and hashes: 1: 3ozUdpwybYRex1OmcNo6yptp7hU.crl (hash: lIk+wkBDT7o0wbYv53cwcJEvrxRjEZWux8yxfztFn28=)
2: BNslYYnyJbQUX-hm0CSR2lkEI-c.roa (hash: ccskpB9Iw7RlPpaSvm887XUkgOImLelHDmM6zJHbDaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ozUdpwybYRex1OmcNo6yptp7hU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:23:08:7f:64:15:5e:68:7c:f7:f5:a3:5a:68:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de8cd4769c326d845ec753a670da3aca9b69ee15
Validity
Not Before: Mar 29 13:01:12 2026 GMT
Not After : Mar 30 13:01:12 2026 GMT
Subject: CN=73f3a8b19e9db439e25afd64c0d2ce18f1525027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d0:3c:d6:25:76:26:aa:18:35:4a:93:4b:08:
4b:f3:f3:d0:8e:a2:fd:db:f2:dd:0e:f7:74:32:9d:
8f:99:4c:91:b0:99:ca:9a:aa:33:3b:fa:76:51:26:
d0:0b:43:7a:9f:9e:0d:fe:01:3a:6b:55:b0:26:5d:
34:07:b2:7c:46:80:89:2c:82:08:4c:92:ee:97:fc:
d6:e9:9a:c6:fc:65:b9:87:ae:cc:fa:a9:82:c5:20:
7e:0a:59:13:a7:f4:79:b1:c2:9a:a9:2d:b5:22:ce:
40:9c:99:2f:fc:27:81:2c:8f:0b:96:65:9f:3f:56:
b4:e3:a3:d5:49:df:a0:8f:cc:16:40:ae:fc:52:70:
ff:2e:f2:16:a0:ea:08:01:0c:6f:83:a5:88:ec:3b:
b4:a8:8c:4b:95:3d:be:e5:56:8d:58:d0:7e:5d:e1:
15:63:62:00:00:7e:4b:52:0d:b2:f9:17:17:48:6c:
67:91:71:01:2c:b7:60:10:0e:d6:33:08:91:08:3b:
bb:77:bd:5e:9b:ef:eb:37:a2:2a:d8:27:8f:43:6d:
b2:03:e3:6a:0d:12:26:a6:71:49:61:bf:94:f1:fd:
24:64:f5:1f:38:c6:05:6a:73:01:1d:db:03:19:72:
08:ef:01:1a:da:23:5d:ca:19:60:7a:40:f8:a5:f7:
90:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F3:A8:B1:9E:9D:B4:39:E2:5A:FD:64:C0:D2:CE:18:F1:52:50:27
X509v3 Authority Key Identifier:
keyid:DE:8C:D4:76:9C:32:6D:84:5E:C7:53:A6:70:DA:3A:CA:9B:69:EE:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ozUdpwybYRex1OmcNo6yptp7hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:6f:8d:0f:a3:f9:64:40:93:ce:e8:33:e8:ee:cb:ea:6d:d3:
76:11:a9:03:50:ca:01:b0:7e:ee:92:44:cf:64:07:e7:5b:5b:
36:c6:5c:da:56:2c:b9:f7:7b:9a:8e:6b:af:8f:1a:27:10:e9:
f5:40:40:d6:8b:d1:74:71:7a:b5:8c:05:82:d6:bf:01:51:51:
a3:fc:8e:2d:50:c4:72:e4:56:ce:7e:0e:00:84:1c:ff:ed:a5:
7b:f5:b2:fa:c3:06:18:27:5c:25:7b:86:0f:a4:4c:07:c4:9f:
99:b8:a9:23:b5:63:23:09:80:eb:3e:82:41:2b:f1:40:85:8e:
fb:b8:4a:87:5e:c9:09:fa:44:48:5f:5b:18:38:fb:fd:55:5d:
c3:d0:6c:53:92:28:e5:45:c7:65:6f:51:60:ad:4a:a2:b8:2a:
de:06:d4:34:5c:12:10:24:32:ba:83:5d:70:15:43:61:5e:ab:
11:f4:5e:34:fb:3c:5d:b9:4d:1c:a9:cd:bb:98:6a:c0:ab:62:
98:92:02:1a:5e:4f:93:fd:37:f9:e5:5e:32:07:c7:26:74:94:
b0:b2:bb:fc:be:9f:6d:44:6b:e4:82:8b:7b:e2:79:a2:d7:b2:
2e:f6:bc:21:7d:c1:06:c5:90:33:70:6d:65:7c:11:25:23:e5:
16:01:bc:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:53:06 2026 by rpki-client