Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
File: 03h3GhBvaw0FSld4U1aSLK8C40M.mft (raw, json)
Hash identifier: B5NQkY+0H8L0EiMaTpY7/xI0caI0B7KjefCEfnAdR/M=
Subject key identifier: 08:D0:6D:91:2C:38:19:1A:54:F2:50:33:F9:50:9D:84:AE:C3:56:72
Authority key identifier: D3:78:77:1A:10:6F:6B:0D:05:4A:57:78:53:56:92:2C:AF:02:E3:43
Certificate issuer: /CN=d378771a106f6b0d054a57785356922caf02e343
Certificate serial: 019E3005818C3D4EFA565A38E244C4F033E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
Manifest number: 0CB9
Signing time: Sat 16 May 2026 09:02:07 +0000
Manifest this update: Sat 16 May 2026 09:02:07 +0000
Manifest next update: Sun 17 May 2026 09:02:07 +0000
Files and hashes: 1: 03h3GhBvaw0FSld4U1aSLK8C40M.crl (hash: FPK62zm1rJGJxGT2Yb3e70m4HKHu0DaO4txuhdaaFMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:02:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:81:8c:3d:4e:fa:56:5a:38:e2:44:c4:f0:33:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d378771a106f6b0d054a57785356922caf02e343
Validity
Not Before: May 16 09:02:07 2026 GMT
Not After : May 17 09:02:07 2026 GMT
Subject: CN=08d06d912c38191a54f25033f9509d84aec35672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2b:62:c0:f0:01:70:ea:c5:94:fa:03:91:7a:
97:15:25:f5:b2:2b:13:57:d5:c4:f4:46:14:f0:16:
ef:24:ad:c2:02:de:e9:99:4f:b4:be:81:89:24:53:
af:d5:f1:5f:2c:2b:f8:77:eb:3b:6a:8e:08:73:e2:
86:a3:92:35:9e:6b:e9:0c:23:62:16:b8:9e:f4:76:
e6:84:b2:ab:36:de:6c:2a:db:d0:50:7e:86:94:a2:
e3:44:23:f0:26:34:9b:6c:c3:36:2d:ff:49:5b:2d:
a3:df:0c:3c:5a:e1:33:8b:b7:77:9e:0b:b7:f7:b8:
da:92:ff:f6:81:c6:81:5a:76:91:a9:6c:29:52:f4:
2d:a6:2e:bb:9a:e3:68:72:93:9a:64:c7:9f:f7:82:
2b:25:5a:91:b6:c1:c5:29:72:5d:72:d5:d2:d8:de:
2a:23:58:7b:38:bb:f7:33:16:e8:c3:14:63:54:e8:
b8:10:00:51:31:1b:d7:a8:09:4e:79:a0:b6:f8:91:
dd:a3:95:22:6b:ad:b7:d9:95:1b:b3:71:ff:6e:6e:
16:92:87:e6:7a:4f:a3:5d:fc:ee:4c:bd:cc:17:92:
86:6a:c6:a2:fc:84:e1:da:f0:38:a1:8e:af:2c:48:
5d:b5:8f:fd:2b:a0:bb:62:f6:46:7c:2b:0a:74:42:
46:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:D0:6D:91:2C:38:19:1A:54:F2:50:33:F9:50:9D:84:AE:C3:56:72
X509v3 Authority Key Identifier:
keyid:D3:78:77:1A:10:6F:6B:0D:05:4A:57:78:53:56:92:2C:AF:02:E3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:03:4f:c0:41:4f:b9:34:69:57:b2:6c:63:8b:cc:0e:1d:cb:
0f:44:01:d2:df:a5:71:2d:e4:ba:19:12:f9:48:bb:0c:27:ae:
28:16:de:5e:93:ab:df:ff:65:db:7c:d7:16:91:e4:d6:27:0d:
83:35:27:f4:49:a4:9b:ef:5c:4b:53:46:20:b9:f1:a3:a1:3d:
c0:8f:0f:3f:f1:82:ae:57:01:3f:b1:f9:4b:8a:4d:11:96:94:
6b:40:7f:1e:f6:9b:bf:0b:ba:e9:42:e3:b7:6d:a6:a4:6c:fc:
54:ff:c9:b7:b2:de:0f:72:b9:ec:c4:a0:58:f3:08:27:85:dd:
1e:d3:ef:b6:49:79:5e:c7:bc:9e:42:49:46:0c:53:4f:d7:6b:
8f:1f:95:76:07:0d:8e:12:df:b5:e7:64:4c:6a:1e:60:3e:25:
01:43:70:a8:8c:0d:10:a3:61:e9:96:9f:29:e7:d3:51:97:7e:
61:ad:16:db:88:85:ce:b7:60:8c:d9:31:fd:4c:63:96:c4:80:
7f:57:62:0b:cf:1f:4a:02:08:43:80:53:7c:5d:d9:fd:78:8e:
e2:a7:51:1a:6c:04:c0:28:00:b0:de:70:2a:43:0f:a8:71:27:
7a:65:6d:9e:e7:c4:80:41:66:3e:85:f0:c1:dd:24:fc:27:64:
9a:af:36:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:12:17 2026 by rpki-client