Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: 54vCtEfgkeFfB+hvZJlgr2wVES9mpi6ifEzmnaUgshk=
Subject key identifier: E3:21:82:0E:48:9F:76:15:BE:A6:D8:8B:1F:97:66:D9:9C:BC:0C:4E
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019D9C2C54529B38BF8EB548CDBE35C1097F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 1854
Signing time: Fri 17 Apr 2026 16:00:43 +0000
Manifest this update: Fri 17 Apr 2026 16:00:43 +0000
Manifest next update: Sat 18 Apr 2026 16:00:43 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: 6vBWNaZFDkUvzSoUPUkPHlCFmF/UGBSmbZycsFXBaCY=)
2: FFrrJg1f7sBn9CMNkWOHWkncPKA.roa (hash: RRbiIEi7LB7ItO/8kZqYNCorz0xLwEEZeK7jHRHtAV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:54:52:9b:38:bf:8e:b5:48:cd:be:35:c1:09:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Apr 17 16:00:43 2026 GMT
Not After : Apr 18 16:00:43 2026 GMT
Subject: CN=e321820e489f7615bea6d88b1f9766d99cbc0c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:71:2a:e4:08:31:40:90:5d:be:63:8b:72:a8:
63:35:bf:6a:87:e6:58:0f:56:11:76:d9:fc:62:90:
42:17:25:ce:8f:65:99:5f:23:c8:83:4b:5d:a5:8e:
55:48:43:78:a3:a6:2f:93:88:69:fc:14:d8:62:72:
44:b9:aa:66:d0:48:3c:be:0d:88:48:15:49:64:ab:
d8:6d:d8:12:17:28:30:d0:de:e6:f4:1d:3e:e9:6e:
b5:51:33:04:d7:64:32:e5:37:e4:1c:68:f6:2a:7d:
39:10:aa:12:5c:6e:35:8c:29:11:62:01:4a:c4:fa:
52:a2:c1:79:55:bc:01:f6:1b:11:8f:29:f9:f2:87:
7c:51:a2:a2:c3:dc:41:b3:3d:b9:c3:54:c6:44:d9:
50:39:8d:69:b4:ec:82:1d:3f:60:b3:8a:db:24:3e:
31:01:b0:de:2e:8c:44:78:7a:30:81:5b:75:6b:45:
a1:be:08:c9:78:fe:ac:a4:96:6c:99:ce:ad:d5:57:
91:28:95:ce:f7:7b:84:88:5c:b3:81:b8:e7:1b:4e:
ce:1f:1a:5b:15:42:58:16:94:5f:f5:3a:55:53:36:
96:99:e2:fe:7d:1f:2e:99:06:5b:de:a2:74:78:b8:
a5:44:7e:36:b7:82:78:ea:e5:d6:b6:c4:4d:18:3b:
89:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:21:82:0E:48:9F:76:15:BE:A6:D8:8B:1F:97:66:D9:9C:BC:0C:4E
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:bc:9d:97:ae:37:1a:d1:47:9d:97:db:18:52:b9:dd:65:40:
7c:93:56:97:81:6d:7c:4d:8f:88:0b:a5:b6:f5:0e:2d:2f:ba:
59:d3:05:8a:fe:b1:68:86:13:ff:20:11:d3:ef:a8:4f:80:6c:
9d:d2:c7:3e:4e:58:f4:c0:84:6f:ac:fb:41:26:72:46:ad:4e:
d2:b9:0c:42:1f:e5:c9:40:da:e5:40:2a:d9:c8:03:2c:77:19:
b1:eb:a7:0b:81:b4:5e:00:7f:9c:2e:d8:fd:a6:ee:35:39:dd:
0d:04:ed:13:ba:43:86:c2:15:f5:6e:a4:19:f1:ab:85:33:e3:
23:1c:f1:6a:81:26:ea:8b:19:72:5f:6c:86:07:4d:23:17:43:
2b:ce:d3:3e:91:d4:16:00:58:8c:b4:4e:fc:22:2c:d3:55:62:
b5:fb:8c:ba:4f:97:3c:af:e5:d9:5b:3e:f4:33:5c:36:5a:a0:
7c:f2:7d:95:f8:a2:36:13:0a:65:f4:26:02:75:d7:c6:56:cc:
1d:2c:01:49:bf:cf:a2:7b:8c:c1:a8:f6:38:4e:03:56:24:ed:
15:04:28:6f:80:fa:90:f3:53:a5:44:5a:38:95:de:b9:05:f2:
69:31:ab:73:73:7b:22:1c:0c:07:8f:4d:98:cd:a1:a3:06:25:
c9:d7:cd:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:43:11 2026 by rpki-client