Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json)
Hash identifier: Io+AYpmT2X97TN/BKidXwQg6xjH9HSgKMRfNuEZ6j00=
Subject key identifier: B7:66:FE:91:C0:98:CE:43:CD:DA:E0:3F:E2:39:11:33:8A:ED:DB:71
Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b
Certificate serial: 019D98186F5F25647134DC399E5A241878F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
Manifest number: 0854
Signing time: Thu 16 Apr 2026 21:00:31 +0000
Manifest this update: Thu 16 Apr 2026 21:00:31 +0000
Manifest next update: Fri 17 Apr 2026 21:00:31 +0000
Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: /1KZb15bARjtSaunPMEXGuW40PmyUWzFayKmWkhVuX8=)
2: hBUefaIMV4VxrEK-fm1hTMzaWD8.roa (hash: ULTyVqCoLmJTp6EzOZiZ2uvQqGHDruUXv80DgFEK1ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:6f:5f:25:64:71:34:dc:39:9e:5a:24:18:78:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b
Validity
Not Before: Apr 16 21:00:31 2026 GMT
Not After : Apr 17 21:00:31 2026 GMT
Subject: CN=b766fe91c098ce43cddae03fe23911338aeddb71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9f:cb:9a:3a:e9:6c:e5:e9:bb:ba:47:55:61:
e5:dd:9d:48:e3:b9:e1:90:e6:0e:bf:e0:0f:5f:83:
74:29:ce:e1:c6:6c:5f:62:1a:1c:f6:27:6e:e0:1a:
a0:46:87:67:4f:a1:c4:50:fd:3e:22:24:3b:c7:ed:
be:db:44:d3:f1:e3:76:fb:df:54:a2:bf:2f:9d:49:
6b:cb:ab:4d:c1:c3:48:c2:4e:03:9d:6d:d5:4d:7f:
24:69:84:1e:53:0e:d5:24:22:a7:33:59:5e:41:90:
41:55:25:58:68:aa:b5:4e:f4:a0:6e:8b:62:1f:06:
c6:fe:5f:5b:10:31:b0:65:1d:48:e6:b4:56:23:2d:
06:7f:55:ab:90:e9:91:df:c1:da:37:f6:7b:30:6d:
5f:26:40:ed:40:24:f4:a9:42:1f:55:3f:bb:50:5c:
62:65:76:ea:93:10:30:40:c8:1e:e9:86:5c:b6:64:
b5:8f:14:26:18:37:83:37:f2:13:d7:87:81:45:a7:
d4:53:45:63:30:9c:5e:ea:37:a2:19:67:e2:ce:96:
de:bd:d8:5e:4b:41:3a:53:75:6c:63:d6:ed:43:2e:
57:20:7b:35:67:82:9d:57:f8:d2:a0:bf:ad:4f:af:
e5:9b:7a:a4:db:ad:47:56:64:df:d7:5b:33:9e:a9:
85:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:66:FE:91:C0:98:CE:43:CD:DA:E0:3F:E2:39:11:33:8A:ED:DB:71
X509v3 Authority Key Identifier:
keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:59:8a:a7:e9:61:cd:29:3b:c4:63:c3:ea:4a:34:f6:40:cf:
08:67:be:de:f0:50:bd:d5:09:f6:f7:f4:97:53:8d:76:92:6b:
3a:03:f3:0d:08:8d:b1:f7:6a:6a:f6:7e:e6:b4:f3:ba:fc:34:
6d:fe:c6:8a:cf:b4:87:a7:0b:84:66:3f:d9:65:d1:ad:c3:a7:
8d:3b:3c:8d:04:72:24:98:f9:a0:5b:e6:9d:53:0f:87:fb:ea:
9f:10:d4:e0:f1:e2:65:17:81:ca:59:db:1d:5d:10:33:aa:12:
ea:dd:92:6f:e5:48:84:6c:84:1b:aa:3c:9a:31:50:13:13:63:
f7:cd:51:e7:87:f9:3d:23:bc:ca:db:b2:eb:b9:91:be:6d:a4:
82:05:33:61:70:b6:43:6a:68:61:dd:4b:03:7b:87:52:f2:a0:
f7:4f:15:a8:03:72:7a:a3:f3:31:75:24:0e:5b:be:42:36:3f:
53:37:75:ca:28:bd:e5:e9:ff:c5:8b:12:32:a9:22:cc:33:1c:
81:f3:ef:40:5e:25:e5:11:f8:e6:7b:84:43:20:51:cb:22:c9:
ed:d9:ba:e7:01:8e:9f:5e:94:85:4d:68:6f:b8:5e:41:c8:16:
b5:e4:71:95:4c:22:b1:89:9b:33:21:dd:fc:db:38:3a:a2:0a:
b3:43:ca:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:02:28 2026 by rpki-client