Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft
File: c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft (raw, json)
Hash identifier: 14ZprcLNNZKCJ84w4pPlHlX2/k8bW3HDCXmTnqJ6r4M=
Subject key identifier: 3C:31:DA:9E:C4:87:73:A9:C4:A1:0B:30:F0:97:51:7A:93:45:9B:8B
Authority key identifier: 73:84:E5:08:E3:AD:F8:ED:D6:F2:A2:42:CD:AD:6B:DE:9A:5A:D0:18
Certificate issuer: /CN=7384e508e3adf8edd6f2a242cdad6bde9a5ad018
Certificate serial: 019CAD598F6724FE9FDCC7D5EBF86160D551
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c4TlCOOt-O3W8qJCza1r3ppa0Bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft
Manifest number: DB
Signing time: Mon 02 Mar 2026 07:00:53 +0000
Manifest this update: Mon 02 Mar 2026 07:00:53 +0000
Manifest next update: Tue 03 Mar 2026 07:00:53 +0000
Files and hashes: 1: HL-ROcW7ouFfM-ooSu_o2VREjBY.roa (hash: ujK5KehUzQkF735/HRjccuZM+b+O1T9dLVbDOeZE17s=)
2: c4TlCOOt-O3W8qJCza1r3ppa0Bg.crl (hash: OAry0BIHFyImhIDHVTkut8dsxqtBwXStXbC4sL1oKyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/c4TlCOOt-O3W8qJCza1r3ppa0Bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:8f:67:24:fe:9f:dc:c7:d5:eb:f8:61:60:d5:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7384e508e3adf8edd6f2a242cdad6bde9a5ad018
Validity
Not Before: Mar 2 07:00:53 2026 GMT
Not After : Mar 3 07:00:53 2026 GMT
Subject: CN=3c31da9ec48773a9c4a10b30f097517a93459b8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6d:36:bb:c3:25:2c:64:45:4f:f5:20:8b:11:
c7:12:53:80:b1:57:72:76:54:39:4c:57:dc:47:a9:
a7:3e:8d:37:02:86:47:75:13:aa:24:6c:dc:db:45:
25:a6:10:80:dd:77:07:f2:ae:95:f1:a1:45:82:85:
62:d6:62:04:b8:65:ab:3e:79:fc:1f:43:42:19:7b:
de:91:e2:5f:1e:42:dd:50:1b:38:19:35:9a:4c:a9:
71:0b:86:f7:34:fd:86:37:7f:84:05:ba:d4:63:84:
9b:95:c4:bd:24:45:e8:53:70:ee:5e:6a:9c:3f:46:
85:94:b0:b1:dd:94:98:6f:b1:12:f4:41:28:f1:ae:
e4:8b:e2:6d:c0:74:29:7f:d0:aa:6c:cd:c4:6b:14:
c2:2a:51:d8:47:a5:3d:b7:b0:08:4a:8b:0d:61:00:
0d:cd:a4:13:1f:fb:d4:73:97:10:3f:cb:90:44:01:
0b:5b:f8:39:7d:1f:8d:46:39:16:1a:f2:8e:91:89:
26:2b:b2:14:9f:07:45:45:0b:47:e3:5c:75:c3:73:
a9:64:9e:43:14:42:d9:fd:f6:7a:94:a0:f7:26:ae:
26:4a:84:04:58:0b:0f:05:4f:5d:6b:c8:c0:4a:90:
af:8c:31:4a:ad:73:fe:ca:49:00:55:bf:3e:69:c8:
5d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:31:DA:9E:C4:87:73:A9:C4:A1:0B:30:F0:97:51:7A:93:45:9B:8B
X509v3 Authority Key Identifier:
keyid:73:84:E5:08:E3:AD:F8:ED:D6:F2:A2:42:CD:AD:6B:DE:9A:5A:D0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4TlCOOt-O3W8qJCza1r3ppa0Bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:a3:66:fd:65:f7:b8:47:ec:be:06:33:30:15:85:84:a9:a6:
5d:8a:6e:4b:3e:72:1f:b7:fd:3d:22:20:86:06:ae:54:a1:41:
3b:12:79:8f:46:86:a6:b0:bb:a9:dd:c8:64:b2:7d:01:8c:ba:
35:a0:0f:e2:f1:19:00:a3:f2:f7:2a:1b:ac:21:2a:52:9b:1a:
e1:3c:24:71:c6:b6:94:60:d0:eb:c5:98:63:7a:45:ec:e2:21:
9a:01:ee:49:f9:3f:6b:47:2c:30:c1:05:99:bc:ac:4b:09:14:
92:08:ff:8e:3e:06:e0:0e:cb:94:99:8e:2f:cd:cd:5d:0f:70:
d9:69:94:90:e9:e8:06:f0:9b:cf:82:d2:7c:fa:a8:d1:dd:d2:
b8:69:f5:75:56:7d:99:f4:0a:7f:27:f7:a3:3d:36:b3:0b:33:
97:b4:5c:53:0f:ef:55:56:58:42:7e:c0:9c:bf:09:2a:22:b7:
f9:05:6a:b7:36:63:36:18:0c:80:8c:82:6f:c5:98:bc:4a:2f:
30:59:75:55:3d:f5:4d:f0:33:5e:f5:4b:d3:80:da:b2:f2:72:
0a:10:ac:38:d9:73:3a:1a:67:b4:6c:40:b7:00:01:3d:34:9b:
fe:36:c6:6e:3d:b0:c4:a6:89:f3:9d:2d:03:ef:bb:3a:26:c3:
be:ec:1b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:55:27 2026 by rpki-client