Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
File: 3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft (raw, json)
Hash identifier: mRLV6LStWSdm/QsAtATw4ZHVFRcfSFWDH06loDFjAzk=
Subject key identifier: 9E:ED:D5:62:E1:0A:74:E8:61:55:11:13:BC:28:87:0A:71:29:02:85
Authority key identifier: DD:2B:C5:40:3A:B3:53:D5:FC:25:E5:AA:DC:E0:93:2B:29:F4:17:6A
Certificate issuer: /CN=dd2bc5403ab353d5fc25e5aadce0932b29f4176a
Certificate serial: 019D9C6313DA58EC0813EA2A4DD0C2AA9C68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
Manifest number: 01B0
Signing time: Fri 17 Apr 2026 17:00:31 +0000
Manifest this update: Fri 17 Apr 2026 17:00:31 +0000
Manifest next update: Sat 18 Apr 2026 17:00:31 +0000
Files and hashes: 1: 3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl (hash: Dyd4GHlYI8IbbuX1m9tWd/XGcAnnTy21ydWnl3f+rEA=)
2: hitJJLRKZoeTjFy1UdVtOKCeU3E.roa (hash: P3W2mUUG6W+rjdD2ot4LgXNOj0ClkdXmzifsh0+3Km0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:13:da:58:ec:08:13:ea:2a:4d:d0:c2:aa:9c:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd2bc5403ab353d5fc25e5aadce0932b29f4176a
Validity
Not Before: Apr 17 17:00:31 2026 GMT
Not After : Apr 18 17:00:31 2026 GMT
Subject: CN=9eedd562e10a74e861551113bc28870a71290285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b6:6f:30:37:f2:79:84:66:2c:33:63:27:71:
ab:a2:09:9e:ab:28:7f:9b:77:d6:3f:8b:e3:f3:a3:
93:f8:b8:eb:88:6f:b0:64:c1:91:75:82:dc:41:b3:
d9:91:87:34:4f:25:2f:95:0e:87:8a:88:fa:4f:ff:
61:ca:bc:2a:36:37:97:0a:3e:2f:42:99:f9:4d:fe:
43:d7:fb:3d:7c:6d:f9:19:ab:39:f9:5a:2a:80:3d:
d8:08:8a:43:bd:9e:0e:98:36:94:58:10:fd:b1:81:
b5:e7:aa:62:fc:a8:01:76:e4:35:99:7e:78:ed:57:
98:1a:c5:c2:27:9e:77:56:0d:67:9e:32:5b:91:50:
ad:06:fa:65:92:9b:b9:72:a7:7e:03:7b:79:ea:ef:
3c:6e:7e:ea:a5:70:f6:09:c5:5a:4c:e6:30:db:9f:
42:37:d1:57:29:37:07:21:64:a2:e8:75:ea:cf:03:
94:23:3f:5b:e1:fe:4d:d6:91:75:9a:c2:ee:0a:a5:
30:df:46:e8:19:fd:6e:2f:e6:46:ed:37:16:57:e7:
da:9f:09:4f:45:15:af:a8:f1:73:19:84:ae:51:16:
b4:0d:c5:c2:2b:38:34:32:07:01:39:97:e3:49:a9:
ac:f3:19:9b:f9:23:1a:32:b9:2a:73:a4:eb:ef:49:
30:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:ED:D5:62:E1:0A:74:E8:61:55:11:13:BC:28:87:0A:71:29:02:85
X509v3 Authority Key Identifier:
keyid:DD:2B:C5:40:3A:B3:53:D5:FC:25:E5:AA:DC:E0:93:2B:29:F4:17:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3SvFQDqzU9X8JeWq3OCTKyn0F2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/c25650-4727-4f88-8f21-c997ae6c5bd4/1/3SvFQDqzU9X8JeWq3OCTKyn0F2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:cc:d7:8b:c1:fe:93:1b:4a:a7:c7:c2:65:31:ed:68:b1:97:
41:9f:7e:55:8d:83:2c:24:b6:f1:5d:41:d3:2c:a5:87:47:75:
93:1d:3f:7d:f9:02:8c:b6:06:af:b2:13:38:dd:f0:1f:18:25:
55:f3:8e:ec:dd:26:36:fb:a9:0e:36:f4:bc:d5:1a:1a:e4:3e:
1a:2b:f4:59:0f:e0:6b:5e:c9:9a:83:89:53:19:7c:48:1a:bb:
28:2f:28:70:ba:41:44:cc:07:0c:2d:03:40:89:41:b5:4d:27:
54:92:03:20:13:95:7a:3d:51:47:6b:c9:33:3c:2d:a5:aa:23:
9c:c7:b3:02:20:f4:80:8c:3d:dd:7c:97:b2:c5:bc:d1:7f:d6:
89:74:f1:81:88:2a:25:e1:d7:14:9a:be:e9:d5:3d:df:93:ba:
05:7e:b1:9d:99:fd:bc:ef:36:8d:f6:16:68:e2:4e:6c:6c:4b:
02:22:b7:c2:ce:8a:43:b9:24:04:f1:ad:09:0f:17:32:30:ca:
7d:35:c3:4a:dc:74:d9:a0:2a:9f:ed:7a:18:8b:12:5b:46:37:
84:60:71:14:9b:fd:44:f1:7a:68:03:f1:d2:3a:e1:f2:13:8c:
71:8b:1e:5a:7d:16:18:0f:75:65:71:9d:88:43:ad:e4:9f:4b:
4d:08:36:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:29:54 2026 by rpki-client