Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
File: 3c6wiktA8fheTroXzcfIPke7WX0.mft (raw, json)
Hash identifier: WgsbkB0EznB/VEknKRkNyBHuWc81kXPomnLwuAoEQ/4=
Subject key identifier: 3D:9B:83:A9:62:4E:7B:7C:F7:0C:D5:F5:A9:3D:4C:85:AB:A1:6B:70
Authority key identifier: DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D
Certificate issuer: /CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d
Certificate serial: 019CAAFD6A268BD14A9BB21BE585DC1E295C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
Manifest number: 0DBB
Signing time: Sun 01 Mar 2026 20:01:00 +0000
Manifest this update: Sun 01 Mar 2026 20:01:00 +0000
Manifest next update: Mon 02 Mar 2026 20:01:00 +0000
Files and hashes: 1: 3c6wiktA8fheTroXzcfIPke7WX0.crl (hash: bGGwIggvUyJBnRiB/1oWNX/KxZhpNFAFhXPKP/FNkCs=)
2: beU-evce9w8RpnlnhExOwqlTqVk.roa (hash: CxYZfkZx1/BXf+X3x5D+cUabOXDyrgunzk0Oi/R5nlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 20:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:6a:26:8b:d1:4a:9b:b2:1b:e5:85:dc:1e:29:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d
Validity
Not Before: Mar 1 20:01:00 2026 GMT
Not After : Mar 2 20:01:00 2026 GMT
Subject: CN=3d9b83a9624e7b7cf70cd5f5a93d4c85aba16b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:08:88:5b:ee:14:c7:6d:ce:2b:83:4f:16:fd:
74:3f:c2:ce:09:15:70:a4:52:e4:7d:3b:3c:6f:1d:
1d:9b:5d:cc:52:7e:44:c4:81:29:1f:0b:5c:7c:8a:
b2:dc:92:73:da:76:ca:cf:f6:b5:3b:62:f2:bb:53:
5e:95:39:57:b1:67:3b:5f:5a:3b:73:b1:df:3d:b9:
ab:73:4c:aa:35:52:35:d2:c0:1a:98:69:4d:9c:eb:
d2:6c:f3:49:f3:a8:89:49:d1:c5:d9:32:6d:42:04:
84:8a:b8:e5:e0:80:20:77:26:53:76:a3:bf:9f:17:
a2:75:a8:14:67:a9:14:14:ce:ea:b7:cb:1e:9b:19:
54:5b:c8:d2:79:a8:2e:45:53:1e:65:e5:b8:3c:9d:
63:db:ed:e3:da:e4:8e:02:dd:96:84:3d:7f:ad:c8:
6c:17:66:39:72:0c:ae:a0:1d:b4:22:10:94:46:7a:
4a:bc:d3:ff:77:0a:35:3d:a2:94:63:7f:88:15:b8:
99:65:25:91:8a:9f:27:59:39:30:04:d3:11:48:59:
2d:91:2c:41:ff:9d:ff:5b:f8:74:14:f7:c7:a6:a0:
fa:a9:75:1c:57:5c:94:0c:f3:da:07:62:76:cc:10:
0d:3c:9d:7c:a9:00:3e:27:82:73:73:52:fb:23:96:
a0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:9B:83:A9:62:4E:7B:7C:F7:0C:D5:F5:A9:3D:4C:85:AB:A1:6B:70
X509v3 Authority Key Identifier:
keyid:DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:2b:a2:02:88:95:cf:d6:17:77:85:15:f8:e0:b8:a8:15:0c:
4b:b6:ec:b2:74:a8:17:58:ee:c6:65:7b:43:5a:d0:5d:36:16:
37:51:56:99:7c:c8:39:97:2d:b7:a6:31:06:81:eb:3a:26:f5:
bb:80:ad:e9:27:1d:31:f4:a9:91:04:58:7e:b6:52:28:d4:45:
5c:b8:50:72:d5:02:01:76:72:9b:9a:de:d4:d2:e0:3d:b6:20:
a8:65:1b:ab:69:e4:a8:4b:82:07:8b:2c:da:fb:35:f5:3f:44:
90:7b:6a:16:b5:71:b0:76:76:c8:9a:54:20:f7:81:3b:14:d1:
10:f3:3a:3c:39:9a:7b:78:48:4d:42:9b:20:02:94:88:a2:a2:
2f:d5:cd:52:94:5b:4f:c5:ea:9a:b3:61:66:87:97:11:c9:a0:
e5:a1:52:5d:58:9e:9a:0d:85:82:1a:d6:a3:0c:ae:23:8c:aa:
47:cd:9a:ed:af:3a:a8:bb:c9:0b:b7:a4:71:80:6e:42:ba:2b:
4e:f2:a4:65:c7:92:58:49:ad:28:75:5d:09:19:a6:0d:12:77:
f7:db:21:03:de:a6:d5:6a:03:c7:7b:53:18:7e:a9:6e:61:7b:
a9:f8:bc:d0:a1:29:9a:a5:60:46:16:94:f9:87:68:de:44:84:
38:26:94:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:15:28 2026 by rpki-client