Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
File: 3IiUXIhnpyYro3mzpphACRpPGQQ.mft (raw, json)
Hash identifier: Ge7u8d2zOZzHdgxWsPgBxnlTYKK78P1era82huZ73GA=
Subject key identifier: 35:57:9C:62:99:83:E7:D7:BF:C1:50:57:9D:80:98:D9:F8:42:3E:3F
Authority key identifier: DC:88:94:5C:88:67:A7:26:2B:A3:79:B3:A6:98:40:09:1A:4F:19:04
Certificate issuer: /CN=dc88945c8867a7262ba379b3a69840091a4f1904
Certificate serial: 019CADFE1BAB347655D3F32EF61D39FA04A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3IiUXIhnpyYro3mzpphACRpPGQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
Manifest number: 0C19
Signing time: Mon 02 Mar 2026 10:00:37 +0000
Manifest this update: Mon 02 Mar 2026 10:00:37 +0000
Manifest next update: Tue 03 Mar 2026 10:00:37 +0000
Files and hashes: 1: 3IiUXIhnpyYro3mzpphACRpPGQQ.crl (hash: UNKAEatu0hlKYOkNrS4x7nmkiZ0qZZu/yM0x4kGkgSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3IiUXIhnpyYro3mzpphACRpPGQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:1b:ab:34:76:55:d3:f3:2e:f6:1d:39:fa:04:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc88945c8867a7262ba379b3a69840091a4f1904
Validity
Not Before: Mar 2 10:00:37 2026 GMT
Not After : Mar 3 10:00:37 2026 GMT
Subject: CN=35579c629983e7d7bfc150579d8098d9f8423e3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5f:b9:06:15:4a:fa:fb:e5:58:89:1d:11:3e:
15:da:0a:74:01:ac:f7:34:bc:68:74:98:e9:ac:8f:
95:ce:11:71:d3:6d:7f:bb:d9:ff:e5:1b:a4:db:bf:
ad:2d:53:6c:8b:36:6b:54:7e:cb:97:cc:44:c6:06:
bb:9a:f7:04:6f:df:8a:f8:bb:20:2f:56:76:36:5f:
f0:92:99:05:8a:83:6c:45:52:29:0e:71:c1:d3:a6:
c8:31:f5:c0:a6:d8:80:bb:31:eb:68:30:90:3a:2c:
c9:a9:64:cc:93:a0:ed:76:3f:90:7e:42:8f:a8:88:
3d:b5:5b:a3:1d:c6:ab:88:1c:57:cd:21:da:6e:13:
25:af:8e:c6:88:28:a2:13:db:1c:be:b3:24:4e:cc:
99:e8:80:6b:5b:fc:55:d5:eb:46:04:e9:23:16:ac:
1f:2c:39:76:33:3a:7a:a9:28:29:56:b0:3b:8b:40:
ba:64:87:f8:11:23:14:3f:c0:f2:b3:06:55:58:42:
fc:4c:18:55:b9:e0:3c:40:75:5f:51:1a:03:de:6c:
69:e6:14:72:83:e7:ca:b7:74:5d:6b:62:47:42:a4:
4f:f6:29:a3:e7:81:d3:86:06:ac:b0:0b:a4:7a:69:
dc:05:22:35:37:a8:f6:91:37:8b:76:57:52:1c:b4:
a6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:57:9C:62:99:83:E7:D7:BF:C1:50:57:9D:80:98:D9:F8:42:3E:3F
X509v3 Authority Key Identifier:
keyid:DC:88:94:5C:88:67:A7:26:2B:A3:79:B3:A6:98:40:09:1A:4F:19:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3IiUXIhnpyYro3mzpphACRpPGQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:74:b1:19:20:4c:17:22:e5:78:ff:91:08:36:c9:85:79:52:
a6:61:0e:00:f2:84:9e:ed:28:3a:ac:8f:34:c9:77:a6:74:20:
25:de:6b:0a:6f:bc:29:c5:29:f7:fe:39:0e:cf:0f:2e:4b:68:
e2:ad:04:af:f9:8b:f7:48:a1:7e:27:1f:0e:99:af:9d:61:b9:
9a:2d:f8:8f:02:46:f1:2a:fd:dd:64:ab:06:ce:ff:31:0f:a2:
16:5a:7f:6f:ce:6e:2d:cf:d4:bb:64:e6:df:72:73:38:05:aa:
8e:23:c0:d7:b5:e0:7f:17:10:54:32:00:40:c0:cd:4d:a3:e1:
84:e4:dd:fc:e1:4c:44:0c:ac:9c:d5:a6:c6:22:24:d1:89:c4:
a9:d5:41:4b:c5:9b:89:4e:73:cb:4e:48:7e:57:b7:88:23:35:
9e:cd:e2:e0:6f:a3:94:51:19:3b:dc:e3:81:a5:f1:44:31:78:
a0:9e:ee:67:4b:06:ab:fa:49:71:30:3c:4b:33:ed:45:fe:20:
c3:27:e1:a9:9d:53:1e:b2:cd:22:23:1c:59:13:43:23:6d:17:
07:e9:3a:7e:5b:66:1d:11:36:37:89:9a:ef:08:94:b3:19:1d:
a8:2c:51:a8:ec:49:fa:ff:2f:a1:11:a2:c1:4a:35:7e:c3:c0:
9b:ed:03:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:00:24 2026 by rpki-client