Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
File: 3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft (raw, json)
Hash identifier: zssJC95abNE6zbzf4LTz9GQ4nW7k0MkWTZKhdnuDJrY=
Subject key identifier: C3:F2:A2:76:70:D9:26:9F:B0:E0:DA:13:5B:7A:7C:5F:6B:09:1A:DD
Authority key identifier: DD:2B:C5:40:3A:B3:53:D5:FC:25:E5:AA:DC:E0:93:2B:29:F4:17:6A
Certificate issuer: /CN=dd2bc5403ab353d5fc25e5aadce0932b29f4176a
Certificate serial: 019EC3DC17A5D18DCCD98203092473F7E327
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
Manifest number: 0249
Signing time: Sun 14 Jun 2026 02:00:41 +0000
Manifest this update: Sun 14 Jun 2026 02:00:41 +0000
Manifest next update: Mon 15 Jun 2026 02:00:41 +0000
Files and hashes: 1: 3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl (hash: bOnfJNnMrlQTQVNTUMNEI7+vLA/+ja5RTap9i6N63FM=)
2: hitJJLRKZoeTjFy1UdVtOKCeU3E.roa (hash: P3W2mUUG6W+rjdD2ot4LgXNOj0ClkdXmzifsh0+3Km0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:dc:17:a5:d1:8d:cc:d9:82:03:09:24:73:f7:e3:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd2bc5403ab353d5fc25e5aadce0932b29f4176a
Validity
Not Before: Jun 14 02:00:41 2026 GMT
Not After : Jun 15 02:00:41 2026 GMT
Subject: CN=c3f2a27670d9269fb0e0da135b7a7c5f6b091add
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8d:7a:73:5f:14:a5:f1:7c:04:8c:5b:7f:ab:
ea:9b:3c:96:60:c2:07:f4:ee:a0:40:db:62:85:1a:
7b:c6:11:44:f7:0e:1d:68:b5:e7:68:a4:99:0b:7a:
71:62:76:75:07:2a:b4:d7:8a:6c:e0:4e:9d:bf:d3:
df:e9:35:01:0e:fd:3f:9a:33:a0:17:5a:c4:05:ce:
30:a6:da:30:ac:db:b5:a8:b5:44:79:2a:4d:41:b8:
6a:fc:f2:4d:b1:22:88:b7:7e:4d:d3:8b:51:f8:2e:
e0:5e:6a:f4:06:f7:f7:c8:de:49:6a:63:25:ec:0b:
96:6a:07:67:60:06:92:c4:d2:a2:8d:60:3d:6d:d4:
ae:2e:4b:fb:02:e5:6d:1b:90:7f:db:ce:6c:82:ba:
19:3a:9a:80:5a:23:f6:6d:e9:e0:41:8e:ed:f7:67:
76:63:e7:62:52:bb:d9:cd:d4:18:67:b9:91:ea:93:
ed:44:7e:36:2e:ec:bc:ee:6d:24:0d:49:d6:b1:d6:
bb:1a:24:5d:1e:89:4a:e4:a7:87:f0:3b:0d:a5:a6:
bd:d5:ce:60:00:48:ba:19:16:52:dd:f0:a9:a2:e1:
af:2a:27:27:71:90:46:83:2c:97:af:a6:02:16:02:
9c:24:63:ff:7c:52:43:6d:f2:58:ba:ee:16:c8:06:
a4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F2:A2:76:70:D9:26:9F:B0:E0:DA:13:5B:7A:7C:5F:6B:09:1A:DD
X509v3 Authority Key Identifier:
keyid:DD:2B:C5:40:3A:B3:53:D5:FC:25:E5:AA:DC:E0:93:2B:29:F4:17:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:7b:2b:4d:89:e3:bf:81:86:11:a0:76:d5:81:6b:1b:96:b5:
2d:15:6d:92:ad:0e:f3:bf:f6:8f:3f:29:42:2f:0e:d8:41:6d:
5e:d9:18:c2:f5:09:87:1a:b7:7c:d3:4b:cc:d4:9d:a6:54:37:
c3:bf:90:8a:31:ff:58:05:0c:a7:97:ea:5e:cf:3e:77:95:5a:
bc:b7:8a:c1:5d:57:d3:89:f0:54:4f:00:e7:35:31:00:29:c5:
db:a0:f2:e9:ad:12:aa:96:1e:a7:07:6c:ca:70:d3:7f:cd:e4:
f7:d2:79:fe:74:65:7b:d0:ac:68:ec:d9:6f:96:cd:55:ad:d2:
3b:4b:45:f6:b7:6d:75:2c:71:c6:a4:dd:cf:03:ee:a6:5f:62:
85:58:eb:12:c6:75:d8:45:b7:f1:ed:c0:ba:f8:0f:9c:9f:6b:
ce:59:3d:b4:88:e8:75:af:a5:e8:9d:e1:ee:5c:b3:86:0f:f2:
0f:8f:5d:15:12:04:1c:e9:c3:c8:84:d6:4a:71:79:c0:4f:10:
ef:f0:8b:d8:14:c1:be:a4:a2:4a:ab:76:0b:27:df:55:b9:86:
4e:ad:0b:6e:4e:a8:2d:94:d9:ba:8a:b0:64:7e:28:7d:3b:f5:
8a:3b:6f:37:70:6c:c3:e0:76:3a:47:af:31:97:dd:9c:eb:cc:
4f:93:8b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:44:36 2026 by rpki-client