Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json)
Hash identifier: EMBGFIwkeDa61XIiIE80ZKprKA+mtWAfqXQr5zsvFCc=
Subject key identifier: 57:B8:9F:8F:3F:65:2F:7A:6C:02:AE:DA:FD:AB:C9:59:05:A4:EC:B8
Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Certificate serial: 019CADFE35C919149AB24CA8870F94D3E5AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
Manifest number: 17B7
Signing time: Mon 02 Mar 2026 10:00:44 +0000
Manifest this update: Mon 02 Mar 2026 10:00:44 +0000
Manifest next update: Tue 03 Mar 2026 10:00:44 +0000
Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: 3hJfWHGaJAa2Q3v6aGnOja5mE25stpzO3WRCwjOeZxU=)
2: TWjQ2gsQUU9MXDJP00l8lOI_i8I.roa (hash: PtqnNrTefbS8Cw3BlkL6LKO9S8DUkKbOBZ0zbUviWfs=)
3: WoaNei28YSaPDdcENSu3LjSXLKg.roa (hash: YXB0+7Vswy/qgNB0Agbnb+glIUAaceZRMWc/efKKqKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:35:c9:19:14:9a:b2:4c:a8:87:0f:94:d3:e5:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Validity
Not Before: Mar 2 10:00:44 2026 GMT
Not After : Mar 3 10:00:44 2026 GMT
Subject: CN=57b89f8f3f652f7a6c02aedafdabc95905a4ecb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0c:c9:70:d1:40:da:2d:97:75:ec:ca:bb:ee:
35:a3:95:f2:89:5a:2a:90:a4:fe:a4:ff:7e:dd:34:
58:85:cf:65:96:e8:53:3c:8d:62:21:46:59:0d:e8:
1b:6e:7d:84:d2:d2:7f:09:3a:c5:d2:50:f7:bd:65:
9a:7c:fc:e5:ba:e1:c7:25:a5:a4:0d:85:71:54:f3:
a9:8f:5c:6d:be:ec:e6:19:20:25:66:f8:a5:3a:57:
56:af:33:77:b9:ee:2f:69:e0:df:ea:b5:ed:12:73:
94:93:5b:95:18:f6:55:d8:67:2d:72:9b:28:fd:c9:
e0:f1:37:19:37:ac:00:99:15:38:27:c9:c2:b0:ab:
e5:58:57:f0:34:9f:fb:3a:48:63:c2:14:fa:dd:9c:
77:04:e7:ad:55:8f:7c:53:7c:b1:86:85:42:63:ec:
7e:00:5a:bc:73:74:7a:59:f1:43:3e:41:3d:6d:77:
c1:28:fd:f0:ab:9a:38:33:d0:5e:82:81:0d:12:49:
2f:2f:f4:46:15:c1:d8:8e:6f:ef:ad:0e:f1:98:5f:
44:c5:e1:77:57:1c:0d:db:6b:8c:7e:08:b5:6f:06:
4f:4c:3a:80:75:5d:37:3e:7f:3f:cc:ba:29:25:06:
80:6e:23:31:e9:05:db:56:59:fa:ee:a9:39:6a:26:
d4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B8:9F:8F:3F:65:2F:7A:6C:02:AE:DA:FD:AB:C9:59:05:A4:EC:B8
X509v3 Authority Key Identifier:
keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:1a:5e:59:d6:68:1a:9c:b6:59:a5:19:0c:d3:55:ec:3d:50:
a2:0c:a5:76:41:00:03:69:2c:06:39:00:dd:19:4e:77:49:fe:
6e:e6:96:bc:6b:f5:47:23:2b:db:92:b3:7c:0d:e5:be:9a:a7:
08:3d:99:bc:ff:82:12:9d:6b:6c:9a:5c:08:fa:fe:79:7e:db:
cf:b8:8e:4d:d6:c8:98:de:67:74:d0:a2:c6:65:fc:12:f8:f8:
48:32:c7:d9:d3:f6:14:17:22:76:78:92:7b:30:7e:ee:dc:23:
3f:19:ad:6a:27:18:74:ea:eb:fe:10:d0:c5:75:6a:46:82:39:
ff:16:cc:a8:9c:89:63:52:58:02:28:40:00:65:d8:5f:57:7d:
f3:bb:52:dd:18:a0:a4:9c:b6:ef:12:12:fe:01:77:52:5a:9a:
a7:92:a7:7a:6f:6a:50:3e:79:3c:93:39:eb:14:b1:a0:bd:8d:
87:53:6e:4d:77:08:13:d4:bb:06:3c:c8:55:ed:67:5c:80:99:
71:28:10:cc:9c:89:48:4e:ab:a2:6f:22:60:99:62:5f:89:bf:
85:1c:19:6b:b6:1f:4b:62:f6:85:7c:0e:de:1b:e9:5f:34:d7:
a2:b8:45:73:54:dc:4f:f3:77:08:4f:f5:f9:19:95:b6:c9:c5:
74:c2:dc:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:42:45 2026 by rpki-client