Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
File: 3OVg8OyFDainwPjW84JRAtTeSs4.mft (raw, json)
Hash identifier: QbD2VytUqQ1EGp2M9gs9q8bj3YUHPmm1+4Q0q080bvw=
Subject key identifier: 81:6B:39:B2:B9:30:30:B5:F1:A1:CE:E8:B0:6C:61:FC:68:9F:52:82
Authority key identifier: DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
Certificate issuer: /CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Certificate serial: 019D3752FEAF97915959FC8AEDDB25D92D9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 02:01:19 +0000
Manifest this update: Sun 29 Mar 2026 02:01:19 +0000
Manifest next update: Mon 30 Mar 2026 02:01:19 +0000
Files and hashes: 1: 3OVg8OyFDainwPjW84JRAtTeSs4.crl (hash: inh+eCZ83yRUdfbvZ1xR0g0ZhR6EHszr+w4eSkoznv0=)
2: 6K26AJnKFSRQ6qeqQiaBSR5tmsk.roa (hash: Uasee9UdIsrJgyTXIlKOU2BJMKL73nIUt5Ls4sJkN9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:fe:af:97:91:59:59:fc:8a:ed:db:25:d9:2d:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Validity
Not Before: Mar 29 02:01:19 2026 GMT
Not After : Mar 30 02:01:19 2026 GMT
Subject: CN=816b39b2b93030b5f1a1cee8b06c61fc689f5282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bd:78:fa:bc:8a:dd:3d:0f:f2:c5:ac:c3:3c:
17:57:88:6f:8a:9d:ea:b3:56:71:cf:6e:c7:db:86:
0f:a6:f8:95:61:83:3a:d5:b7:98:34:a2:8f:2f:6d:
37:46:6c:df:7c:ce:a5:08:18:04:91:f9:e4:90:6b:
d0:85:68:2b:8a:85:68:f6:d8:de:48:2d:67:aa:9c:
90:5b:44:76:87:8e:99:ce:a6:8c:18:b0:f9:4c:28:
ed:e6:08:66:b2:16:42:2f:98:87:ec:15:96:e8:a7:
51:f1:29:6e:c2:38:48:16:af:d8:fb:4b:ca:a2:e6:
63:d6:1f:35:2d:75:59:33:e4:17:f2:cb:75:37:3a:
cb:3b:45:92:2c:2e:28:07:83:b3:4b:b6:23:49:08:
bf:3b:4f:c2:68:62:a4:bc:11:fc:ca:8c:d9:82:a3:
13:2e:67:e6:24:4e:d0:f8:55:d2:7f:82:c3:84:04:
7f:d2:13:e2:03:8a:9c:61:b0:8a:d9:33:fb:9a:30:
81:c9:b9:d2:de:25:48:d9:1e:de:b8:1c:7a:a8:e9:
d4:10:3c:69:7d:49:91:c7:70:cd:02:9c:33:cb:b9:
23:c0:b7:a1:77:2f:02:45:70:9b:ad:9b:15:0b:58:
93:01:42:b8:a0:59:e9:e6:dd:7d:10:83:3e:2c:2a:
8f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6B:39:B2:B9:30:30:B5:F1:A1:CE:E8:B0:6C:61:FC:68:9F:52:82
X509v3 Authority Key Identifier:
keyid:DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:33:e3:71:a2:a3:a2:7f:79:38:a5:e9:03:9a:ea:38:fd:06:
41:e9:3f:c3:68:1f:33:98:21:6b:dd:e5:62:39:f5:36:ae:fa:
9e:3a:22:1b:21:fe:62:16:c0:55:9c:ee:ea:5d:c2:bd:e1:57:
59:e8:2e:78:ba:53:e4:65:d5:72:64:1f:97:a1:40:af:f2:3e:
87:9a:b8:97:b3:6c:df:31:92:d6:46:b4:49:e0:54:d5:cf:b4:
d7:9f:49:18:d0:27:4f:11:52:35:96:bf:c5:bf:11:2e:09:6c:
c5:29:be:b8:14:dc:59:f9:b2:ec:b7:b1:14:cd:0a:0d:81:98:
ca:55:b9:c7:f0:0a:87:89:3c:4e:e9:8d:55:9b:83:fa:76:30:
d2:d9:87:ae:4d:38:d3:46:07:50:a0:4f:91:51:b0:79:b9:f6:
ba:0a:3a:ad:f0:85:16:76:f3:24:ee:88:32:9e:fd:bc:1e:6d:
81:0d:ae:f5:08:33:4d:c7:f2:a1:13:e9:00:c1:0d:ec:98:97:
63:c7:3a:92:50:06:20:74:f6:20:e9:f7:81:14:df:8a:31:7c:
5b:80:cf:ba:a3:d8:e9:e7:f7:6c:9f:5f:97:be:7a:6d:1c:b5:
c7:ae:30:b7:7e:8c:36:7d:b7:77:f6:ec:66:97:13:54:61:da:
0e:eb:85:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:47 2026 by rpki-client