Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
File: 3KLzDk5paSsbT-zrrpH9VgS97JM.mft (raw, json)
Hash identifier: 4E11Yai4NnGQzPWznOQomAhEEWaTkLkN5aIgNdWLLqM=
Subject key identifier: 59:5F:BF:D0:39:6A:13:21:EC:BD:48:65:C6:CF:40:2A:8C:16:1A:F4
Authority key identifier: DC:A2:F3:0E:4E:69:69:2B:1B:4F:EC:EB:AE:91:FD:56:04:BD:EC:93
Certificate issuer: /CN=dca2f30e4e69692b1b4fecebae91fd5604bdec93
Certificate serial: 019CEE94EB050E685A16AB4EF2C35C0CABC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
Manifest number: 0822
Signing time: Sat 14 Mar 2026 23:01:02 +0000
Manifest this update: Sat 14 Mar 2026 23:01:02 +0000
Manifest next update: Sun 15 Mar 2026 23:01:02 +0000
Files and hashes: 1: 3KLzDk5paSsbT-zrrpH9VgS97JM.crl (hash: HdAVD+V+3wyJMwJYpaU9oPiV4g+kBcgIpLLV5QHdrFs=)
2: xSDhChXyrgpPczPrq9N_lmr5FEw.roa (hash: f8x2Ffld+Joqpjyz5VMQ9d3wfsE4pU4+FNaMK65q5CE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 21:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ee:94:eb:05:0e:68:5a:16:ab:4e:f2:c3:5c:0c:ab:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca2f30e4e69692b1b4fecebae91fd5604bdec93
Validity
Not Before: Mar 14 23:01:02 2026 GMT
Not After : Mar 15 23:01:02 2026 GMT
Subject: CN=595fbfd0396a1321ecbd4865c6cf402a8c161af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:48:3e:d5:b9:fb:4a:0a:11:bc:ef:4d:16:ae:
32:42:75:42:df:92:c3:95:f0:12:3f:d0:98:f7:e7:
62:95:00:ef:39:33:ec:44:a5:36:47:95:94:08:eb:
68:9d:16:0e:6c:fb:ab:73:31:9c:b7:8c:fd:1c:7b:
ab:85:af:24:26:56:db:75:3a:2d:f6:86:b2:f1:da:
74:16:f9:6d:fe:e8:ee:3e:1c:00:49:ec:d1:72:91:
85:66:c3:29:34:d0:85:8a:63:9d:30:0b:4f:07:31:
12:5e:85:ad:0f:fb:9e:b2:1c:ac:e7:f4:95:c7:2d:
01:4c:d7:44:b9:92:f5:0c:08:7a:f4:39:1f:be:da:
fa:98:35:a7:2e:23:76:b7:5f:ec:e3:43:d5:60:40:
02:ea:dd:0b:d5:c8:05:2c:33:e0:86:00:55:bc:48:
8b:d5:a5:0b:84:1b:16:6d:c1:3d:35:b6:c9:f5:3f:
2c:b6:24:a8:71:47:dc:40:02:ce:ad:53:a4:80:31:
64:ca:3a:73:23:71:b2:28:13:3f:08:14:e8:0b:2f:
f6:2c:53:bb:3c:85:fd:17:b3:a9:7e:83:7c:3c:cd:
60:79:32:02:6c:ce:f0:5f:b6:7d:c5:df:32:43:99:
3d:fa:c2:14:53:07:e6:be:0c:8f:67:47:f2:5b:ff:
26:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:5F:BF:D0:39:6A:13:21:EC:BD:48:65:C6:CF:40:2A:8C:16:1A:F4
X509v3 Authority Key Identifier:
keyid:DC:A2:F3:0E:4E:69:69:2B:1B:4F:EC:EB:AE:91:FD:56:04:BD:EC:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:30:3f:69:cd:95:90:3a:ac:31:0c:32:bd:1e:7b:28:35:2b:
2e:43:9e:b4:a5:04:a8:77:43:18:21:0a:cd:e2:e4:9d:ad:8c:
06:98:60:ce:6c:82:c9:9c:6e:17:0a:63:1e:64:11:0f:62:37:
bf:06:5f:42:21:23:6b:28:2d:ef:27:64:6e:5f:80:48:07:57:
ce:60:92:42:00:ec:6f:f2:e5:f2:3b:3c:d1:0a:67:07:2f:67:
ec:91:8d:f2:ad:e2:0a:c5:41:16:81:c7:f4:fd:61:70:c5:e7:
f3:8c:71:26:e8:5d:c2:d5:4f:5b:63:bb:dd:b8:1d:37:00:e1:
56:fb:c6:70:0c:cb:8a:69:f9:54:dc:fa:fb:2f:bb:b9:34:7a:
b0:58:6e:3b:92:e9:61:0e:f8:d7:c7:1c:c1:f9:08:c0:48:a7:
e3:1d:ec:56:23:5d:e0:07:16:22:77:4e:2a:ff:b4:52:97:07:
72:58:d0:db:70:9f:54:23:c4:79:60:7f:b7:91:ed:e6:a8:fd:
92:a7:7f:ea:8d:29:c0:6c:a7:c2:b0:5c:9c:a8:cc:d7:ed:bf:
b8:4e:ec:39:18:61:31:74:eb:5c:7c:08:00:88:41:bd:15:a4:
f6:df:fb:7e:ff:a2:8d:2b:95:02:91:22:54:6f:f6:45:e3:8f:
3a:c8:78:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 15 04:19:48 2026 by rpki-client