Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
File: 3hgnB8REwxBksYmcWX6e_XNDj5I.mft (raw, json)
Hash identifier: fGeInydEhHAxE9vO6RRvT9DlBEWE9gN7oRMFj7+s1Wg=
Subject key identifier: 7D:E2:D9:30:9E:CB:C4:CA:B1:72:84:BA:A4:CE:D5:82:BA:CF:D4:C0
Authority key identifier: DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
Certificate issuer: /CN=de182707c444c31064b1899c597e9efd73438f92
Certificate serial: 019D3451E544CC76286564AD605B6F80760B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
Manifest number: 07F6
Signing time: Sat 28 Mar 2026 12:01:15 +0000
Manifest this update: Sat 28 Mar 2026 12:01:15 +0000
Manifest next update: Sun 29 Mar 2026 12:01:15 +0000
Files and hashes: 1: 3hgnB8REwxBksYmcWX6e_XNDj5I.crl (hash: 48Vp7i6sZzrTp8RrliCQEqxXFJ6WfYObMAVn8Ql4Qlc=)
2: _sKUqr_T2WU5wpJt5pENqGxaGNg.roa (hash: 26WyPtt0JWgZh/PV/eTd/0WIUbfzzYa6z8NjLk7cJ+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 12:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:51:e5:44:cc:76:28:65:64:ad:60:5b:6f:80:76:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de182707c444c31064b1899c597e9efd73438f92
Validity
Not Before: Mar 28 12:01:15 2026 GMT
Not After : Mar 29 12:01:15 2026 GMT
Subject: CN=7de2d9309ecbc4cab17284baa4ced582bacfd4c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:84:59:56:39:14:2e:cd:c6:79:5c:de:a3:dc:
e5:f7:a5:a0:40:81:f5:17:06:de:4b:ab:67:56:51:
49:56:0c:15:94:10:b9:bf:97:43:a3:dd:a1:30:60:
18:1a:ea:d6:a9:2e:bd:ce:88:53:86:19:d2:e5:63:
48:fe:27:a7:fd:95:87:df:af:13:d3:a5:54:6c:bf:
c8:7b:64:a2:9b:3c:c1:e8:42:98:ee:94:87:6e:59:
7f:d2:0c:79:dc:da:07:f1:28:3f:00:4f:d2:07:0e:
4e:7a:a7:a7:6b:ec:61:3a:2c:20:7f:44:3e:86:17:
7c:31:45:37:63:dd:0c:ff:04:db:d7:49:f1:09:0f:
23:8d:34:1c:6a:b7:ee:0d:af:e7:21:ce:d5:9d:0e:
76:c6:e1:db:04:17:ad:21:7a:30:ea:ae:01:5f:9a:
fa:09:ee:f5:a0:6e:56:fa:49:4c:f6:fc:cb:c1:c3:
73:0c:5b:dc:12:f1:35:67:cf:88:5f:db:a4:b9:a3:
10:62:e4:8c:cd:61:fa:d8:e1:5a:ff:67:26:f6:e5:
50:2c:03:e3:52:9b:37:e9:ee:f0:37:df:bf:4f:02:
21:4d:d6:6f:99:d5:ce:ca:9c:af:bc:26:30:5a:14:
3c:71:2e:af:82:86:37:c1:23:6e:9e:9d:4f:dc:f2:
36:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E2:D9:30:9E:CB:C4:CA:B1:72:84:BA:A4:CE:D5:82:BA:CF:D4:C0
X509v3 Authority Key Identifier:
keyid:DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c8:5c:51:bf:05:fe:dc:9b:d5:f8:8a:53:2d:db:54:5f:2c:
ca:ac:0c:f2:ae:e1:9b:dc:02:02:cb:46:d7:9a:ac:79:79:8b:
35:75:26:6c:f1:f5:39:20:ca:73:ca:da:31:9e:f7:71:33:b4:
a7:ce:b6:e7:06:57:15:4d:eb:3b:46:b9:30:fe:60:fc:d7:59:
f3:06:a2:f9:64:8f:fd:47:4f:3a:f1:3e:f2:16:7c:dd:6c:5e:
e8:93:ce:25:ad:7c:d9:6b:48:83:fd:7c:3a:1f:ce:cf:c6:c5:
48:3a:49:d6:5c:e7:59:3b:aa:03:75:51:23:6b:a4:60:0b:56:
79:0e:1e:4b:2a:77:7b:df:d6:10:a9:a8:55:33:4a:02:9f:d9:
a6:6a:21:ad:90:1a:36:2a:07:8a:e2:fd:75:00:13:9e:f2:3f:
f0:18:b0:a6:81:a1:27:90:c2:fc:fb:89:a2:19:56:7d:63:69:
ab:36:83:95:0d:a2:f2:7c:c8:f6:0f:8a:e4:7f:4a:a0:e6:86:
29:e9:a6:aa:fa:97:05:56:81:de:87:01:41:81:aa:04:b4:83:
15:91:7b:66:e2:ec:56:c9:4c:6d:d3:c1:e6:b5:d9:a0:e9:88:
4f:0b:8b:5a:f3:6e:4c:53:ce:e8:b1:87:7e:ba:66:cb:4b:e4:
ac:2f:ed:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 20:09:36 2026 by rpki-client