Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: bdvzHxJ1SdJL2pYZwvIbhonTBiS/9hiECVXA7DnYPyg=
Subject key identifier: F6:14:18:44:AF:F1:25:0B:C9:5C:91:0A:60:23:0F:54:D6:3A:8E:6D
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019CACB4E60FB89D01F9073D0C66A5DDB807
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 17D8
Signing time: Mon 02 Mar 2026 04:01:02 +0000
Manifest this update: Mon 02 Mar 2026 04:01:02 +0000
Manifest next update: Tue 03 Mar 2026 04:01:02 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: c3U5+CHWeTXmuy14NgJSgJPhGQp7qzVOgb9PrtIXnLk=)
2: FFrrJg1f7sBn9CMNkWOHWkncPKA.roa (hash: RRbiIEi7LB7ItO/8kZqYNCorz0xLwEEZeK7jHRHtAV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:e6:0f:b8:9d:01:f9:07:3d:0c:66:a5:dd:b8:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Mar 2 04:01:02 2026 GMT
Not After : Mar 3 04:01:02 2026 GMT
Subject: CN=f6141844aff1250bc95c910a60230f54d63a8e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ce:7e:d6:f2:1e:5e:29:65:29:b5:02:f5:91:
3c:40:f5:74:ec:73:85:b0:30:2d:d1:7d:67:04:a9:
6b:9f:6d:4b:be:6e:02:af:9a:d9:10:09:9d:a0:9a:
c7:ac:cc:b9:d9:a7:3c:99:a6:e6:d0:4f:6e:04:56:
2c:df:cd:e2:07:a5:db:f9:a3:2a:7c:16:2c:cb:86:
65:61:d4:81:6c:cf:54:ac:99:94:77:e1:6e:eb:fd:
e2:ea:a2:1c:b3:9a:a2:73:2b:1f:c1:f4:be:04:e5:
78:3c:69:7f:1b:eb:32:7f:80:78:fd:4b:10:57:25:
e3:53:19:4f:4a:6a:2a:b9:46:5a:5c:7b:47:25:c6:
1d:ad:53:a1:16:34:ed:6f:52:02:1f:ed:31:c2:ca:
32:e1:f4:2a:a1:8f:c3:99:7e:1c:94:56:e9:20:28:
fc:ce:b4:d7:99:ce:a7:a5:54:f1:72:57:04:ae:d2:
50:55:e0:82:8e:ce:1c:06:b5:6f:16:23:1b:13:0b:
f5:2e:86:c8:9c:f2:90:c9:12:57:7f:b0:26:a3:ce:
f6:fd:92:73:b4:a3:52:af:54:cb:3e:f5:c3:a9:a6:
05:63:95:da:bb:96:e1:a9:a9:03:4d:26:65:9a:cc:
c8:fe:10:a3:06:df:70:0c:42:fe:b8:b8:d1:4e:24:
16:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:14:18:44:AF:F1:25:0B:C9:5C:91:0A:60:23:0F:54:D6:3A:8E:6D
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:18:dd:82:54:8f:49:1d:d6:e0:9b:88:6d:cf:57:ce:87:dd:
a9:2a:a7:ba:a6:19:1f:8e:71:0c:62:6a:e5:a5:ea:ed:02:27:
26:38:a3:1c:99:14:8b:fc:66:6e:90:c8:75:dd:d5:f1:f2:ac:
0a:3f:db:bf:a2:72:fc:37:28:be:e4:d7:1b:54:e0:c5:17:a8:
4b:8e:f3:84:9b:c3:28:a8:8a:66:98:d4:f0:5b:8f:11:9b:55:
79:77:7f:1a:db:d3:d6:d1:48:b6:08:2b:9d:5d:1e:72:c6:a0:
38:2a:22:8d:73:85:5c:b7:62:df:de:fd:10:87:bc:16:62:ed:
02:11:e3:6d:e8:c2:4e:96:6e:85:1f:4e:47:a5:c3:1d:14:ff:
39:d3:a1:de:ac:01:57:9f:be:00:69:fa:4c:52:7f:39:76:36:
68:7c:3d:b4:7b:6a:74:88:82:8c:17:bb:b1:96:c4:42:30:34:
e6:15:26:4a:fe:45:d9:37:bd:f8:ee:80:26:e5:56:2a:be:2d:
8b:4f:13:55:ba:84:90:a2:6a:47:1d:65:fb:8c:21:1a:92:9a:
51:25:73:3b:6b:9b:e0:5b:e9:f0:68:e3:21:36:00:73:56:51:
cb:3e:4e:3e:42:05:5a:cb:92:d6:02:ae:c8:e8:23:82:14:5a:
00:d1:87:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:42:39 2026 by rpki-client