Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
File: a3sSBFsa8JrPlmLuNbos1-HIW60.mft (raw, json)
Hash identifier: u05PvOaZP4DhuvLZyTb7xEByBvclYtSvgjCGLHq/D0U=
Subject key identifier: 3E:AD:EB:C3:93:E9:CD:1E:4A:AB:25:52:34:81:B4:BE:5D:D7:61:F4
Authority key identifier: 6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
Certificate issuer: /CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Certificate serial: 019D3AC10A10BFA0749E141489FA37958A59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
Manifest number: 083C
Signing time: Sun 29 Mar 2026 18:00:22 +0000
Manifest this update: Sun 29 Mar 2026 18:00:22 +0000
Manifest next update: Mon 30 Mar 2026 18:00:22 +0000
Files and hashes: 1: 6ay0wHDiAgZDJPmL-UcgJsFPARM.roa (hash: pRBfANPJG+/QAyrSHAeenbhDDnLtn2aB52e6eqKhKNI=)
2: a3sSBFsa8JrPlmLuNbos1-HIW60.crl (hash: wa4+1ATKWsVXfPWZg06YkwIaCiQy/Xl9l1NM0UiEsPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:c1:0a:10:bf:a0:74:9e:14:14:89:fa:37:95:8a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Validity
Not Before: Mar 29 18:00:22 2026 GMT
Not After : Mar 30 18:00:22 2026 GMT
Subject: CN=3eadebc393e9cd1e4aab25523481b4be5dd761f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2d:ef:6e:8a:d7:33:95:56:a1:6e:d1:8b:e1:
03:6a:9a:eb:16:c6:b8:f9:96:3b:e6:fe:6f:f2:c1:
88:a3:5e:36:d0:1c:b5:07:fe:b3:ce:c0:a1:af:c9:
23:0f:e9:7a:25:73:a5:a7:74:a6:ee:9f:09:fd:c4:
62:fa:c2:8b:4b:5f:26:27:93:fb:84:a0:ff:23:d0:
d6:8e:95:d5:d0:bc:e4:94:b8:2d:cc:09:47:7a:c0:
1a:8f:d5:71:94:54:dd:cc:51:eb:59:76:d8:f3:b8:
5b:1f:bc:2b:00:c5:fd:5f:05:83:09:e7:12:3e:cb:
33:eb:e6:98:ab:49:5a:16:b2:c3:3c:5a:fe:2a:fd:
0e:6c:03:50:92:45:ef:7d:80:08:c0:da:6a:a8:64:
5d:c7:13:cd:82:c9:9f:70:cf:c0:80:39:0e:5f:02:
9b:ee:bd:f1:6e:4c:fe:4b:81:cd:a8:ad:3a:22:bd:
68:80:01:0a:12:e9:ec:07:04:8d:59:7d:65:c3:2e:
b2:f9:2c:4f:3c:1a:e4:2e:25:c0:42:7a:c5:29:0b:
76:1c:ef:61:f0:15:c2:5b:01:65:e7:9e:6f:51:6a:
62:70:25:8c:ba:08:56:ba:55:6d:29:8c:5d:42:e9:
72:83:f6:32:49:df:9f:d6:ee:1e:71:e0:01:03:df:
ac:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AD:EB:C3:93:E9:CD:1E:4A:AB:25:52:34:81:B4:BE:5D:D7:61:F4
X509v3 Authority Key Identifier:
keyid:6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:74:98:9c:64:3c:14:f9:09:25:da:05:5e:27:09:eb:35:e9:
ef:7d:9b:f6:fa:93:d1:80:ca:6c:41:d5:bc:62:7b:48:0f:0f:
cf:cd:0f:01:88:66:16:89:36:2b:98:81:bc:b0:61:42:27:bb:
41:68:5a:b9:dc:f3:81:78:f6:5f:27:6b:72:3e:75:3a:a4:90:
3a:39:bd:ec:ed:00:e8:3e:9b:5c:98:26:1f:8c:47:b6:35:a6:
a0:dc:ed:46:06:44:07:d2:e8:47:ee:18:d1:48:82:45:82:d0:
93:23:80:1e:f7:06:18:3b:d3:97:97:31:71:c4:4a:5e:94:55:
d3:46:28:0e:11:42:df:d5:dd:a7:5d:5e:83:db:3d:27:d8:96:
46:fb:0c:89:d6:b6:30:ec:5f:fd:90:82:80:97:ec:d4:1e:ee:
28:87:a2:ae:cb:12:33:49:38:be:b0:9e:23:aa:75:ad:df:61:
92:30:4c:0c:46:09:f5:18:26:45:f4:f4:6d:b2:cd:64:11:d5:
70:9a:81:2c:d3:01:b6:7b:3a:5e:66:d4:2c:cf:a2:eb:44:cb:
e2:dd:2d:0e:1a:44:9c:3d:8e:23:e4:f5:a4:c6:3f:41:d7:fb:
dc:e7:da:e0:c1:33:39:24:09:4b:ad:ef:59:8d:a9:c0:34:c0:
78:b7:46:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:48:25 2026 by rpki-client