Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
File: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft (raw, json)
Hash identifier: v76aOna6YIO18hrUbdHEZnqJt15rjtqo5LPk8RcVS3A=
Subject key identifier: 32:A3:D5:65:E6:6E:78:46:93:60:1B:88:0C:80:54:4F:9B:DC:E0:98
Authority key identifier: FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
Certificate issuer: /CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Certificate serial: 019D3A540A50983A64A8242A2742DE982B66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
Manifest number: 12DC
Signing time: Sun 29 Mar 2026 16:01:19 +0000
Manifest this update: Sun 29 Mar 2026 16:01:19 +0000
Manifest next update: Mon 30 Mar 2026 16:01:19 +0000
Files and hashes: 1: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl (hash: 8WQmFZdn4y38TzlhZeTKYVODvF2IcSLwfirUYdVz0H4=)
2: 3WjchZn0ZaVWap-kBJDqG0_K268.roa (hash: mSek/wANUBuae6L6B5/5kvCQ+lsoN15OARfOIY4PvDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:54:0a:50:98:3a:64:a8:24:2a:27:42:de:98:2b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Validity
Not Before: Mar 29 16:01:19 2026 GMT
Not After : Mar 30 16:01:19 2026 GMT
Subject: CN=32a3d565e66e784693601b880c80544f9bdce098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:45:85:82:a1:c9:3b:96:6d:b4:37:bb:f7:ad:
03:9f:01:9c:fc:b2:05:c3:60:9f:dd:5f:62:06:33:
2c:b8:04:a9:20:00:a0:79:2c:73:9f:c1:8f:19:e8:
fb:79:34:fe:a6:dc:b1:a2:1e:03:0d:4e:6b:25:86:
af:69:d1:6e:86:b2:f6:f1:e4:ec:ac:0b:33:0d:b6:
33:8a:a6:ca:03:b2:7c:3a:34:f0:b9:b2:e6:ed:ac:
bf:50:00:25:c9:97:48:72:1c:db:fb:20:d9:79:c3:
32:95:e6:77:7c:d5:eb:9d:cd:1e:bb:e1:b8:5a:e7:
d9:94:8c:08:4a:d0:27:66:fb:fd:37:a0:1d:c2:ac:
83:dc:00:e5:fd:8b:3b:0f:b0:9b:a5:e3:f3:e9:d5:
c4:d0:5e:e7:7b:22:9f:88:c8:cc:2c:19:ce:b0:a1:
1c:f1:1c:b4:4d:d9:9e:4c:27:f3:e3:17:88:60:41:
de:5d:5b:fd:5f:e4:2f:41:0f:ee:27:03:ff:4a:e7:
24:0b:e9:07:e9:5b:52:1e:2b:36:a9:2f:37:08:19:
a1:7c:6b:ed:47:c9:11:06:fb:7f:1e:f2:58:1f:f5:
7a:a9:d3:16:84:72:b2:bd:fb:a8:df:97:b2:5d:41:
bb:91:65:9b:7c:93:6f:65:51:19:8d:38:02:47:0d:
98:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A3:D5:65:E6:6E:78:46:93:60:1B:88:0C:80:54:4F:9B:DC:E0:98
X509v3 Authority Key Identifier:
keyid:FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:d3:1f:e6:ee:61:c8:ec:d6:b6:00:b6:21:8e:33:63:d2:cb:
e1:8d:e6:f2:bb:a4:fe:b3:f8:c8:82:aa:79:d9:eb:fc:c1:4e:
ac:3f:f5:4e:56:9f:ee:e5:a8:d9:2a:27:f5:95:4c:01:66:fd:
e3:5c:d5:06:1b:b6:2c:75:73:74:40:2b:e5:43:c4:00:96:d6:
30:32:7a:e7:26:2a:1c:d6:6d:3f:14:49:ce:4f:62:7c:72:d1:
4e:c1:6b:d1:b2:cf:33:f4:f4:ee:14:6c:e1:1f:13:e7:58:e3:
cd:32:e5:ca:55:b7:56:c5:d3:66:0e:d7:9c:12:26:19:67:74:
76:e8:cd:77:7b:c5:bc:de:91:20:35:72:45:0e:fa:ca:6a:7e:
d9:b8:c8:00:e1:43:e4:eb:27:76:28:61:fd:80:b6:37:75:d7:
c9:e6:94:70:7c:05:5a:ee:9b:cd:14:9e:cb:f1:63:e2:40:8b:
55:6a:60:87:7a:ff:20:68:e7:fe:3e:46:0f:4b:25:37:34:5c:
48:c6:0e:2f:46:3d:a2:97:98:cb:99:c8:3c:74:cc:a7:8d:bc:
bd:14:4b:99:2b:3f:e2:64:f9:2c:c8:71:48:01:88:f9:17:70:
e8:af:8d:26:d1:b6:bd:c5:5a:93:f8:2e:6b:5b:6b:d6:dc:9a:
27:a9:0f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:50:15 2026 by rpki-client