Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
File: 3f20crHtWewvNw8g-rSHlDnFMY8.mft (raw, json)
Hash identifier: HnPDK85ZPchhhVxABjuIUOQH5wfyKPv4ZS9i2XVw7t0=
Subject key identifier: 18:7B:83:40:BB:24:EA:26:D8:ED:CE:5A:C4:91:B8:38:B8:16:E3:32
Authority key identifier: DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F
Certificate issuer: /CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f
Certificate serial: 019D386677F72C7C2E737FADA006C156BA44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
Manifest number: A7
Signing time: Sun 29 Mar 2026 07:02:12 +0000
Manifest this update: Sun 29 Mar 2026 07:02:12 +0000
Manifest next update: Mon 30 Mar 2026 07:02:12 +0000
Files and hashes: 1: 3f20crHtWewvNw8g-rSHlDnFMY8.crl (hash: sAhkmYCOUVS0cFerqb9CCcOwwuN4A3wWUEDx3NGGBM8=)
2: ZMQkud9K3mvXdpjh-yoqav-Fm2A.roa (hash: rezLl6nocyRRaT4FpZnJ5CHwHhiv5ot72qwHgOZEFQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:77:f7:2c:7c:2e:73:7f:ad:a0:06:c1:56:ba:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f
Validity
Not Before: Mar 29 07:02:12 2026 GMT
Not After : Mar 30 07:02:12 2026 GMT
Subject: CN=187b8340bb24ea26d8edce5ac491b838b816e332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:68:5d:8a:dd:8b:85:8e:8b:f5:83:b9:d6:bb:
53:d4:32:f6:12:a2:a7:b7:23:cc:2d:d6:cb:e2:a9:
15:2d:07:70:92:17:17:21:42:d0:6c:93:ee:55:70:
b4:96:c4:ad:bc:25:e6:2f:52:10:b1:b2:73:30:cf:
c5:ac:14:6c:bb:96:db:e8:f7:eb:82:85:0a:2d:64:
21:68:7e:50:0b:fd:9c:de:1c:57:09:4d:56:80:a2:
33:b0:e9:27:c5:5a:0a:23:55:79:5f:74:59:ae:d7:
4e:83:58:60:8e:a3:cf:5e:13:7f:fa:7e:ab:0b:f9:
b0:39:0f:bb:b8:06:d1:1f:ac:e8:de:f8:80:f2:91:
78:30:3f:7d:f1:de:66:9c:0d:a5:ee:39:fc:37:c7:
c5:78:16:9e:05:9b:ea:9c:e2:95:16:3b:af:d6:81:
0d:ef:61:57:44:5d:7d:48:7c:8e:80:51:a1:ec:be:
4a:af:8d:ec:b9:a5:23:3d:98:f2:f4:40:ff:da:0b:
71:d4:5f:d3:e4:11:74:55:b4:b1:48:92:4f:97:3d:
36:f0:5f:31:ef:e4:b5:0c:68:1c:7f:d1:11:e7:28:
69:ba:14:fb:58:10:ed:f9:68:eb:aa:54:69:78:ca:
75:44:67:0b:86:5d:fa:5b:76:47:2a:3d:ba:56:37:
fa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7B:83:40:BB:24:EA:26:D8:ED:CE:5A:C4:91:B8:38:B8:16:E3:32
X509v3 Authority Key Identifier:
keyid:DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:5b:11:9d:cc:a2:4b:72:1a:d8:fd:8a:80:3f:f7:ac:f2:58:
e4:33:1d:71:42:ad:93:f9:c2:77:c6:da:5d:eb:60:5a:70:1a:
66:93:2b:ec:0f:00:10:c6:a8:77:0b:86:92:94:c6:b9:04:8f:
6c:b2:22:6b:5d:39:26:e3:a1:21:b5:d3:0a:8d:ba:4f:b1:32:
26:ad:bb:e0:fb:87:ab:5c:2a:ef:90:b0:07:2a:7e:71:e5:13:
5e:2f:24:78:14:10:be:04:55:f6:6c:68:79:e9:26:72:5a:7b:
b4:90:96:c7:2c:cf:c0:c0:75:db:53:05:2a:8b:8f:45:3c:8b:
66:8d:17:ab:0e:ef:6b:de:b6:dd:8c:f2:ed:3e:ed:3e:73:19:
40:83:06:d7:5c:ac:79:a0:dd:fb:fa:41:50:b5:6d:01:46:5f:
e1:ad:2d:17:ea:9e:8d:5b:8e:3f:e7:c9:48:a4:0e:e6:85:85:
72:2e:fb:63:91:84:5a:e3:1c:44:f5:51:03:58:81:50:2f:54:
bb:60:08:b8:3b:6f:05:9b:a7:79:ce:2c:4d:01:1d:2d:0d:13:
d2:2f:c1:3f:3d:d9:57:0e:7f:ac:e4:36:0f:88:d6:53:ab:23:
b1:74:f7:55:df:14:a5:47:02:f0:0a:ef:ce:42:76:45:05:74:
fc:7b:95:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:29 2026 by rpki-client