Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
File: 3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft (raw, json)
Hash identifier: qUV1xgdelVyWTJmYOokSQRdVoFw7h3MIuj+Iu5gf9F4=
Subject key identifier: DC:51:C6:28:A5:53:F5:DE:F6:59:86:E0:4E:B7:F1:7D:AB:5F:42:B3
Authority key identifier: DD:2B:C5:40:3A:B3:53:D5:FC:25:E5:AA:DC:E0:93:2B:29:F4:17:6A
Certificate issuer: /CN=dd2bc5403ab353d5fc25e5aadce0932b29f4176a
Certificate serial: 019D9A74B1FCEC784FCB2025C5774CE16978
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
Manifest number: 01AF
Signing time: Fri 17 Apr 2026 08:00:31 +0000
Manifest this update: Fri 17 Apr 2026 08:00:31 +0000
Manifest next update: Sat 18 Apr 2026 08:00:31 +0000
Files and hashes: 1: 3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl (hash: rfNq9JBb9q9VDmgDoKvFQMRHwwtRUfPH5zu3BbMUEQg=)
2: hitJJLRKZoeTjFy1UdVtOKCeU3E.roa (hash: P3W2mUUG6W+rjdD2ot4LgXNOj0ClkdXmzifsh0+3Km0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:b1:fc:ec:78:4f:cb:20:25:c5:77:4c:e1:69:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd2bc5403ab353d5fc25e5aadce0932b29f4176a
Validity
Not Before: Apr 17 08:00:31 2026 GMT
Not After : Apr 18 08:00:31 2026 GMT
Subject: CN=dc51c628a553f5def65986e04eb7f17dab5f42b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:94:43:f7:af:01:0a:31:f9:50:fb:44:e0:14:
65:6c:e9:7e:ef:b4:51:a1:a2:e3:b3:2f:bf:27:aa:
ad:66:34:7b:03:2c:78:9a:78:ab:bb:3c:97:eb:04:
78:fd:ea:69:78:8b:05:db:bd:eb:89:f6:b2:54:c3:
ca:e2:bb:33:f4:db:96:9d:09:d8:5e:49:c5:ce:52:
e2:5c:b7:55:3d:43:ef:0a:cc:b3:29:d5:91:96:90:
5f:e9:8e:fa:db:5e:cc:32:5e:e8:71:57:b8:a8:6e:
4c:52:39:28:5a:ee:e0:a1:b2:e2:1d:16:4d:64:b9:
15:b4:e3:bf:3c:dc:0d:66:ca:ac:ff:06:2f:0f:f7:
42:70:51:b3:0b:98:e5:be:f8:97:b8:81:20:5d:54:
39:bf:1f:e9:6a:4f:c0:7a:50:8b:c8:18:38:8e:da:
e9:63:67:b3:1b:06:b5:c7:bc:25:14:9f:cb:7e:fd:
f5:d7:58:f0:a1:ab:95:99:01:6e:f3:aa:ae:34:3b:
62:17:5c:36:76:61:84:1e:50:6d:71:6a:cb:4d:12:
ac:8d:1f:38:af:f3:b5:d4:13:03:d1:39:f9:a2:be:
f3:48:cb:54:e5:b7:20:32:bd:9c:f1:54:0d:21:71:
e0:a6:87:fe:25:b8:8d:68:bd:7a:3f:9c:2c:dd:0c:
12:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:51:C6:28:A5:53:F5:DE:F6:59:86:E0:4E:B7:F1:7D:AB:5F:42:B3
X509v3 Authority Key Identifier:
keyid:DD:2B:C5:40:3A:B3:53:D5:FC:25:E5:AA:DC:E0:93:2B:29:F4:17:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:76:7f:58:ca:33:0f:5a:45:63:a3:9e:14:17:dd:97:8d:a6:
4c:92:9a:c1:c9:2d:d7:5e:15:d8:16:d1:36:15:52:e9:19:b7:
a7:d9:f1:61:7a:64:6a:d3:83:56:00:4b:47:b9:d5:85:b3:ff:
fc:f4:6f:6d:c7:44:01:a3:03:62:42:e6:b6:ee:de:75:55:f5:
09:ad:dd:96:73:a7:8c:f1:cf:1e:f0:08:78:9f:f1:19:ce:65:
9f:12:88:cb:b8:90:2d:52:79:d3:b0:ac:25:87:51:4e:7c:27:
4f:74:47:49:33:1e:96:a8:48:ec:44:e3:e9:b1:92:ec:50:24:
27:99:81:69:67:1c:18:5c:b0:0c:37:9c:bf:94:46:f4:14:71:
28:1b:4d:79:10:af:44:f8:68:7d:99:6b:70:55:a3:d6:b3:ba:
27:17:a6:33:23:d0:62:7d:6c:be:73:dd:4e:f2:a4:f9:a6:39:
be:27:fb:14:e2:13:c4:42:e1:3c:f2:aa:d7:c2:69:cd:e0:d5:
3b:c9:76:91:ec:e5:bd:e3:fc:ed:54:52:8b:08:66:6e:45:6e:
3d:a5:9b:02:4a:0b:d3:12:f6:73:42:2e:67:7a:ce:e1:2c:46:
74:ed:56:c2:0c:55:7d:33:cf:06:38:26:18:f6:0c:08:f9:54:
30:50:85:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:04:07 2026 by rpki-client