Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
File: 3AXfbkBO-SDmpZKNiWPmpfjWESA.mft (raw, json)
Hash identifier: QFciR/xtwkkyepVi+nD+NRoP6NlTToDqJ8v32qYO5/0=
Subject key identifier: 57:24:70:41:43:9A:60:EF:C9:85:4F:99:23:7F:E7:46:B3:B7:60:5A
Authority key identifier: DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
Certificate issuer: /CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Certificate serial: 019D99D023F9E80AF009AB5D9F89849F2F3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 05:00:47 +0000
Manifest this update: Fri 17 Apr 2026 05:00:47 +0000
Manifest next update: Sat 18 Apr 2026 05:00:47 +0000
Files and hashes: 1: 3AXfbkBO-SDmpZKNiWPmpfjWESA.crl (hash: TtV0YD4TCGxO4xufMQKgRpecCuYaLUvq+9lbPIhHUTo=)
2: WLGZfCZKmxfMTTmHvuZLK2OwTpM.roa (hash: o/3DvFAKUtiQSitJNR+MpNrJR84HlaGWEw9iU7EJXWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:23:f9:e8:0a:f0:09:ab:5d:9f:89:84:9f:2f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Validity
Not Before: Apr 17 05:00:47 2026 GMT
Not After : Apr 18 05:00:47 2026 GMT
Subject: CN=57247041439a60efc9854f99237fe746b3b7605a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cb:ff:4c:e6:d1:4a:14:2c:46:cb:ba:21:c7:
52:9d:dd:25:83:21:c1:3f:a3:67:ec:83:70:8f:73:
01:fa:b3:e0:83:ac:44:f2:a4:ad:45:13:c9:0c:f4:
98:4c:e8:6e:9a:1f:04:d3:b6:af:c3:c5:33:93:67:
38:7e:63:3c:90:a2:fb:d9:87:e0:0a:ad:b8:e1:28:
cf:ba:6c:3b:c4:e1:24:ca:1e:4b:59:44:81:c9:08:
b9:51:6a:0a:b8:98:f7:9e:83:57:ca:bd:00:b1:c7:
a1:b7:81:53:66:d2:d9:5d:b4:dd:c9:17:4e:b5:0d:
aa:7b:7a:9d:bb:d4:1d:52:fb:d7:d2:07:28:84:7d:
df:bd:dc:55:3d:9f:06:4a:e0:60:e2:ce:66:31:47:
13:64:76:45:9c:9b:17:69:f9:56:98:19:2b:0a:c5:
26:db:26:b2:f7:b0:b0:bd:21:3c:12:57:ce:51:41:
13:ca:2d:c2:9f:84:cd:af:9b:45:8d:4c:9d:98:fb:
a3:56:31:d1:d1:6a:45:bf:50:e5:09:0a:c4:4f:5f:
ff:58:76:d7:66:5b:af:88:0a:f8:03:bb:05:93:a9:
15:38:32:bd:d1:13:bf:57:bd:77:7b:45:48:60:35:
dd:64:ef:07:70:80:c2:d7:dd:22:95:44:0b:89:f0:
6c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:24:70:41:43:9A:60:EF:C9:85:4F:99:23:7F:E7:46:B3:B7:60:5A
X509v3 Authority Key Identifier:
keyid:DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:ae:77:f2:5b:e6:9f:40:d0:7e:38:f2:d5:2a:14:a2:97:d4:
ec:35:d5:87:66:e7:b2:37:34:0b:07:b9:65:c5:9f:c3:61:ff:
6c:fb:a3:6d:cf:80:01:59:84:24:88:6c:5b:96:10:95:84:6c:
f2:56:b9:73:e7:d6:73:43:b6:9b:45:4c:fd:de:e9:62:c9:bc:
1f:7f:16:85:57:54:fc:c4:be:52:93:dd:5a:4b:02:a8:72:41:
24:3c:96:8a:fa:e3:21:6e:41:57:f3:c2:1c:d2:15:f1:25:1a:
08:0e:6c:32:b7:16:a4:8e:6d:f4:8d:43:23:01:08:b8:00:e3:
bb:60:78:ba:46:5c:24:b6:86:86:5b:34:d5:c8:50:31:b5:5c:
1f:5e:a0:7a:07:6e:93:d7:01:6b:4e:7e:cc:b8:a7:09:4f:04:
a4:b4:4f:8e:e1:bd:99:59:d9:2b:26:64:d7:a2:56:e2:24:bb:
36:88:9c:43:fc:cb:db:39:42:cb:51:ad:28:46:d5:ab:c6:31:
ea:79:75:40:f1:64:33:96:99:3c:e3:26:a5:99:1a:a6:85:80:
ed:de:07:00:1a:67:d2:3d:25:be:c9:06:3d:88:e9:75:08:6c:
d5:49:70:92:7b:bb:2c:bf:14:d8:b3:47:ed:09:b7:4f:ef:9a:
bc:e8:a6:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:22:14 2026 by rpki-client