Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
File: 3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft (raw, json)
Hash identifier: d4xLxWnwV8tO4SNFzQ6xaYbV5t/S4/MlYux0OFk7zOM=
Subject key identifier: 32:A7:F2:84:B5:CF:A3:2B:35:33:0B:A4:E0:A8:1D:34:17:82:88:FB
Authority key identifier: DD:2B:C5:40:3A:B3:53:D5:FC:25:E5:AA:DC:E0:93:2B:29:F4:17:6A
Certificate issuer: /CN=dd2bc5403ab353d5fc25e5aadce0932b29f4176a
Certificate serial: 019CACEBEB19B317D4F9F4F0706D130F65C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
Manifest number: 0134
Signing time: Mon 02 Mar 2026 05:01:08 +0000
Manifest this update: Mon 02 Mar 2026 05:01:08 +0000
Manifest next update: Tue 03 Mar 2026 05:01:08 +0000
Files and hashes: 1: 3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl (hash: Z9LqdMS6WREEVXJ1VNLqDdoC+h1XDuNI6TFdjlSgzp0=)
2: hitJJLRKZoeTjFy1UdVtOKCeU3E.roa (hash: P3W2mUUG6W+rjdD2ot4LgXNOj0ClkdXmzifsh0+3Km0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:eb:19:b3:17:d4:f9:f4:f0:70:6d:13:0f:65:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd2bc5403ab353d5fc25e5aadce0932b29f4176a
Validity
Not Before: Mar 2 05:01:08 2026 GMT
Not After : Mar 3 05:01:08 2026 GMT
Subject: CN=32a7f284b5cfa32b35330ba4e0a81d34178288fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:54:91:c5:57:2c:d8:51:0a:60:8b:88:45:2e:
e3:2f:6b:0e:73:b3:6d:ee:bd:64:f0:e1:cc:0a:7d:
60:11:70:e6:49:9e:a5:9f:d5:2c:4e:57:a4:d6:e5:
90:95:bc:62:dc:0c:a4:33:4b:a9:ea:88:f7:54:52:
80:ac:36:64:6e:ad:6f:fc:2d:bf:51:df:92:0b:44:
e1:d0:27:cb:e7:33:03:b2:b4:09:e5:bc:9e:8d:fd:
fc:ac:e2:0c:f2:de:3c:2a:e7:a0:00:c8:38:a3:f7:
7e:0f:41:2a:37:2b:6e:20:51:5e:ed:e8:f3:af:86:
39:69:9d:5b:24:84:49:ed:68:82:3c:d3:8a:89:65:
1b:ca:cf:da:d3:f5:78:0d:d9:04:7d:70:47:71:e6:
89:fe:bb:0e:c6:f5:2b:e3:81:ce:ea:cf:1f:21:98:
80:6f:5f:4e:d8:87:7b:bd:e7:42:ed:9c:7c:04:f0:
1f:61:6a:7c:c7:db:9c:d2:34:ab:3c:94:80:86:fb:
b3:ef:cc:3e:b4:97:97:3e:05:85:3e:39:0d:66:3c:
71:fa:7a:c1:b8:29:73:be:a9:42:a6:c9:a7:38:33:
01:50:1f:be:dd:1b:7f:39:9f:5e:f5:19:05:93:38:
80:b3:a9:f0:31:4f:cf:06:9b:a2:33:86:33:ed:69:
bb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A7:F2:84:B5:CF:A3:2B:35:33:0B:A4:E0:A8:1D:34:17:82:88:FB
X509v3 Authority Key Identifier:
keyid:DD:2B:C5:40:3A:B3:53:D5:FC:25:E5:AA:DC:E0:93:2B:29:F4:17:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:01:64:d2:d0:eb:4c:4d:fb:59:67:87:ac:6f:f9:f3:e1:aa:
62:b4:e6:26:f1:59:94:d0:b5:23:8f:53:e9:a8:45:b4:b4:50:
5d:6f:e2:79:2f:f8:fd:a1:27:12:a6:40:72:77:a6:8d:50:ba:
a8:d1:c5:e5:01:b8:0b:db:3f:42:f5:5c:29:c9:36:fe:6e:5d:
4d:d8:41:f1:bc:23:48:35:2b:6c:0d:04:cb:cf:7e:5a:05:90:
e2:54:f9:45:e0:9a:38:37:23:eb:3e:13:17:02:5c:35:3c:66:
cf:b9:c3:e7:88:66:09:40:1c:7d:1e:a3:84:64:75:70:64:e0:
1d:cc:57:b8:99:ba:63:e9:2e:40:44:1e:2a:7e:ba:40:42:41:
da:af:81:e8:08:82:0d:70:9e:30:d3:bd:0a:b5:ef:db:91:94:
9d:de:0c:2f:5f:43:56:56:88:b0:6b:60:7a:2a:fe:3b:f1:b8:
a8:5a:94:f2:33:ee:f2:2b:7a:7a:bc:a9:97:7a:e6:37:04:34:
b4:3e:e8:c1:38:0f:c9:22:18:ea:69:1d:b0:9e:95:87:d1:db:
a9:f8:85:e5:ab:f0:3e:69:6c:aa:3d:bc:e7:22:21:68:31:5e:
cd:d6:36:49:16:6f:cb:bd:68:9a:d9:2e:5e:72:be:d1:e4:af:
6b:dc:b5:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:30:08 2026 by rpki-client