Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: PLz7DTmPoUls70JdmsQ2GrAQE+Oi8igV0uRSQlOtZw0=
Subject key identifier: 3C:F6:B9:B6:B7:3B:F3:54:2B:7D:80:B2:28:54:21:6F:BA:0B:62:93
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 019D3909E283ABA93819A692AFA6E94F7665
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 0CFB
Signing time: Sun 29 Mar 2026 10:00:42 +0000
Manifest this update: Sun 29 Mar 2026 10:00:42 +0000
Manifest next update: Mon 30 Mar 2026 10:00:42 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: 7dy3yiNE+JtK3qeycPPuiMaLwcBYQ2ABTFp1GxnCgZw=)
2: c52XhO4YGCrU48r6aoFS0wJifx0.roa (hash: 4+paDSnGo7aoDvCfZSAugeN0kcY8+2h3yijdRS9k2EQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:e2:83:ab:a9:38:19:a6:92:af:a6:e9:4f:76:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Mar 29 10:00:42 2026 GMT
Not After : Mar 30 10:00:42 2026 GMT
Subject: CN=3cf6b9b6b73bf3542b7d80b22854216fba0b6293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cc:ab:df:04:db:5c:ff:25:bf:fb:1b:9c:79:
39:53:66:d6:5e:6f:2b:16:d2:31:08:23:bc:83:40:
78:94:4f:0f:8d:38:e4:7a:c6:99:76:ac:b1:e3:ba:
8c:dc:f7:f1:3a:c6:72:53:bf:40:10:b5:40:3e:15:
bc:11:a2:22:cb:05:03:c4:86:0f:7e:e3:35:eb:f0:
17:bd:54:06:17:04:ad:44:ad:9d:6e:08:cf:ba:46:
c7:c7:c2:52:ca:d1:d4:b1:ee:0d:9f:87:38:66:02:
66:ad:0d:96:a8:e8:e7:2b:d0:38:93:7a:53:c5:e2:
5c:2c:ca:d0:d2:1a:a4:8a:1c:87:5f:b0:96:d3:25:
dc:26:53:d7:89:46:d6:e0:51:12:96:ce:d4:5e:08:
b3:84:30:9e:49:c9:54:6b:53:71:8d:cc:6e:21:62:
a2:6a:53:b6:5b:7e:d2:70:b4:d7:f6:6d:7c:54:33:
38:94:d3:dc:29:00:5b:ed:6c:6c:13:ac:e9:5e:4a:
89:54:15:ef:21:85:8d:32:e0:85:fa:d2:0d:a6:90:
ae:81:7e:9a:9b:fe:27:74:81:c1:90:da:40:2f:30:
81:fa:86:c3:6e:34:0a:4e:f1:0e:45:78:6b:b0:f0:
3b:a3:25:d1:16:7c:ca:ff:23:64:88:df:c6:9a:06:
59:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F6:B9:B6:B7:3B:F3:54:2B:7D:80:B2:28:54:21:6F:BA:0B:62:93
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:c3:00:c0:4c:ab:65:4c:73:cd:23:0d:ae:dd:6e:08:83:62:
f6:45:16:6a:a9:d1:7e:58:b3:a2:f1:00:82:c7:9d:cb:e4:72:
1b:bf:8b:a4:e9:aa:af:16:11:be:c7:13:7c:b5:e5:a8:d2:2d:
90:2e:01:35:5a:ba:40:58:d6:3f:46:92:6b:f5:bc:c7:30:5f:
ad:b8:7e:00:c4:41:a6:86:82:05:1a:2b:d7:07:aa:64:3d:04:
90:19:c1:28:b5:6a:e0:7d:4c:b5:6c:bc:ac:c0:cb:36:31:ca:
60:ef:24:bd:fb:f7:0c:9e:10:24:95:0e:9c:3a:23:1b:90:8d:
78:c0:6d:79:14:d6:cc:bb:5c:2d:01:39:4c:fb:11:37:f5:83:
0e:05:d6:7f:ff:bc:2f:3c:c9:26:11:37:2c:77:d8:5e:eb:46:
9c:6a:38:bf:c9:c9:bb:14:b3:80:36:11:cc:60:a3:bb:eb:f0:
c8:78:5d:83:b0:47:8d:f6:fd:36:97:b4:8a:ce:9a:67:bb:51:
94:2b:48:98:76:8a:2f:e2:13:a1:78:8f:6e:21:16:88:0e:32:
40:2e:3a:ba:67:e3:9e:75:c6:70:34:6d:13:3f:1c:ee:70:aa:
b6:c9:18:29:aa:2e:db:3d:53:e8:36:5a:83:8c:2d:f6:c4:8a:
43:89:19:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:35:11 2026 by rpki-client