Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/552b83-5b63-4923-b566-e6dcdf02aed1/1/3AfJUUDwvwptkU8oh4-HPKc-yvQ.mft
File: 3AfJUUDwvwptkU8oh4-HPKc-yvQ.mft (raw, json)
Hash identifier: fye62zQ+Bye1zVAGf7osjmxWPSFBLahuQQzJiba21as=
Subject key identifier: 7E:EC:B9:16:38:49:20:42:25:6C:C9:06:08:4D:28:C8:A8:0F:CC:CA
Authority key identifier: DC:07:C9:51:40:F0:BF:0A:6D:91:4F:28:87:8F:87:3C:A7:3E:CA:F4
Certificate issuer: /CN=dc07c95140f0bf0a6d914f28878f873ca73ecaf4
Certificate serial: 019CAF479F18F7BFE619149329BB92AB76F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AfJUUDwvwptkU8oh4-HPKc-yvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/552b83-5b63-4923-b566-e6dcdf02aed1/1/3AfJUUDwvwptkU8oh4-HPKc-yvQ.mft
Manifest number: 30
Signing time: Mon 02 Mar 2026 16:00:32 +0000
Manifest this update: Mon 02 Mar 2026 16:00:32 +0000
Manifest next update: Tue 03 Mar 2026 16:00:32 +0000
Files and hashes: 1: 3AfJUUDwvwptkU8oh4-HPKc-yvQ.crl (hash: W3EMd/EEnTFnQgVFcyR39X8TYON92LhtowWr1+aF5YQ=)
2: FiJY_f6GKm6veDvPVDNX9LWOSRU.roa (hash: SMTBlb+NpQPNeXGuJJJYcwSp8wfNIzukvM7Bw3VT8hg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/552b83-5b63-4923-b566-e6dcdf02aed1/1/3AfJUUDwvwptkU8oh4-HPKc-yvQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/552b83-5b63-4923-b566-e6dcdf02aed1/1/3AfJUUDwvwptkU8oh4-HPKc-yvQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AfJUUDwvwptkU8oh4-HPKc-yvQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 16:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:47:9f:18:f7:bf:e6:19:14:93:29:bb:92:ab:76:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc07c95140f0bf0a6d914f28878f873ca73ecaf4
Validity
Not Before: Mar 2 16:00:32 2026 GMT
Not After : Mar 3 16:00:32 2026 GMT
Subject: CN=7eecb91638492042256cc906084d28c8a80fccca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:24:d0:63:01:76:7f:dd:e7:27:28:0d:26:1d:
3c:29:07:7a:d4:71:95:7a:a2:b0:0f:df:6d:46:a1:
24:ad:db:28:05:f7:69:cb:e0:fb:ae:f6:11:c7:9b:
cc:c0:25:79:3f:d3:b0:14:40:8c:43:e3:ea:79:93:
9e:4f:67:4f:27:82:da:ee:f8:a8:65:2b:71:61:ef:
2e:24:da:ad:aa:55:df:bf:90:ed:6b:ea:dd:d0:34:
bc:83:84:e1:cb:1b:77:e7:8c:9a:1b:bd:fe:ea:4e:
93:33:82:d9:58:dd:f0:77:50:bd:86:95:99:4d:0a:
ec:07:d4:8d:d8:86:04:23:c1:49:9d:ee:a4:b4:f6:
b9:38:ed:2f:fd:7f:9f:3c:6d:95:b1:1d:12:c0:a7:
89:ea:8c:1e:ee:3c:7e:9a:c2:18:2d:5e:ae:64:d2:
c2:d7:d9:ec:36:79:c1:93:62:2a:24:7c:ae:82:b9:
68:c6:99:1f:67:e6:0a:b4:84:fd:68:32:c7:1f:4e:
3d:d0:f1:d7:93:6a:97:2a:a6:c0:c8:cc:ef:71:f4:
79:69:c5:33:80:2e:4a:f4:b2:e0:87:60:6f:72:58:
3e:74:f5:ff:f6:85:78:e1:34:c6:a7:0f:ad:b6:61:
b0:53:52:5a:60:7a:c0:1e:64:d7:1a:67:31:61:99:
76:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:EC:B9:16:38:49:20:42:25:6C:C9:06:08:4D:28:C8:A8:0F:CC:CA
X509v3 Authority Key Identifier:
keyid:DC:07:C9:51:40:F0:BF:0A:6D:91:4F:28:87:8F:87:3C:A7:3E:CA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AfJUUDwvwptkU8oh4-HPKc-yvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/552b83-5b63-4923-b566-e6dcdf02aed1/1/3AfJUUDwvwptkU8oh4-HPKc-yvQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/552b83-5b63-4923-b566-e6dcdf02aed1/1/3AfJUUDwvwptkU8oh4-HPKc-yvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:5e:a8:81:c7:8b:59:a9:e4:38:5b:33:15:02:69:ff:b9:30:
d6:2b:f1:0c:35:0c:f2:2c:d6:05:86:21:dd:da:e6:65:cc:fb:
19:17:43:bb:b0:d2:60:62:31:e9:c4:0d:ff:6f:c4:db:f8:01:
d9:c9:45:ee:18:1d:21:d2:a8:b0:13:ba:76:cf:73:4b:68:60:
d1:47:c8:08:30:87:47:01:58:78:31:9c:56:a9:83:89:7d:1e:
c0:0a:50:3e:ea:8a:af:cc:35:ed:43:a3:46:11:3e:8e:64:1b:
97:38:90:94:59:6f:4a:7a:04:0d:f0:90:99:20:0a:de:ad:9e:
25:f7:5c:99:c2:f0:8c:7a:59:3d:1e:16:4e:e7:09:7c:dc:9b:
dc:e6:03:08:65:b0:84:a9:2e:6e:32:d7:d0:58:bb:32:df:1b:
93:93:88:4c:13:68:8c:a7:15:e9:67:98:18:a4:02:a0:48:a9:
67:9f:4c:f3:c4:c9:d5:0c:16:d7:b8:17:d5:4b:5c:9c:ee:8f:
a5:3b:ab:b0:3c:7b:3d:80:3e:f3:e7:30:20:ff:51:ef:2b:ee:
6a:5d:a0:3c:24:1f:33:25:37:e2:20:b5:4b:a0:21:87:e2:e3:
20:ed:b9:f1:f2:12:3c:8b:2e:23:20:9f:82:93:2a:03:80:4e:
49:86:97:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 02:26:54 2026 by rpki-client