Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
File: dzW3DconD8uOS5CStyADZBOPXfE.mft (raw, json)
Hash identifier: IBGrd0q0FdeRVekTuKaLxebm7qH7DwP9abBAnIQZ8cg=
Subject key identifier: 31:F3:D8:F7:41:1E:66:AE:72:F2:C2:A6:07:C2:67:3F:39:AE:57:5C
Authority key identifier: 77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
Certificate issuer: /CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Certificate serial: 019CABD92571CBF9ABFF4B4324AF2DB0B5AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
Manifest number: 1845
Signing time: Mon 02 Mar 2026 00:01:00 +0000
Manifest this update: Mon 02 Mar 2026 00:01:00 +0000
Manifest next update: Tue 03 Mar 2026 00:01:00 +0000
Files and hashes: 1: AOBKl1z9iGQ7udCEUVrOWOKRRJM.roa (hash: szJEeXPbG7L6V12RPqYR0G9jxj6sIKpxCqCIcFUY2rQ=)
2: dzW3DconD8uOS5CStyADZBOPXfE.crl (hash: AO+Lcz1hCAWQZV9zYtLa15vKkmI1eC33GdYOM5c6a+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:25:71:cb:f9:ab:ff:4b:43:24:af:2d:b0:b5:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Validity
Not Before: Mar 2 00:01:00 2026 GMT
Not After : Mar 3 00:01:00 2026 GMT
Subject: CN=31f3d8f7411e66ae72f2c2a607c2673f39ae575c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0f:e3:75:36:bf:72:13:75:4a:1e:12:37:68:
2d:28:b7:43:de:64:96:54:ee:4b:82:e8:a4:8b:b4:
17:d2:03:c7:c0:30:93:a4:b7:84:4f:95:1c:fa:3e:
c4:e2:54:bf:0c:cf:52:f7:a3:15:9e:1b:5c:7f:db:
79:08:11:be:16:72:b3:13:df:74:a0:d8:ff:3a:67:
3b:7e:02:22:d1:08:04:36:01:3d:5d:59:b9:de:5c:
17:85:66:b6:ee:50:e8:05:4e:e5:89:9f:c7:ca:7f:
2d:5b:12:44:3a:99:00:81:99:c5:0a:df:d7:da:ea:
81:87:19:d1:75:70:59:91:d9:8a:98:85:b7:2a:2f:
09:4d:58:97:c1:6f:d9:8b:d5:16:a2:61:13:8d:25:
58:8f:17:58:68:92:0c:00:64:b2:66:83:b0:f5:35:
5d:9b:b2:52:1b:b3:bb:71:c7:bb:ca:6c:eb:8a:23:
02:a0:a8:b0:b6:f2:d9:74:a1:e6:45:3e:b7:35:15:
3c:75:51:35:63:69:e3:b0:bc:47:1f:f0:28:06:23:
59:46:fc:36:6a:d3:a6:48:ba:59:88:bf:10:00:6a:
c9:b1:35:6b:b0:d7:f5:4e:43:04:83:f9:95:40:41:
00:bc:0b:8e:b6:6f:c4:84:fa:70:6c:bf:76:c8:e0:
85:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F3:D8:F7:41:1E:66:AE:72:F2:C2:A6:07:C2:67:3F:39:AE:57:5C
X509v3 Authority Key Identifier:
keyid:77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:3e:28:62:2c:16:5f:c5:31:60:03:17:c4:dd:17:e2:82:ce:
cd:65:f6:38:29:c7:31:c9:8b:78:1d:c1:22:09:0b:81:39:a2:
a3:ed:06:35:7b:c3:12:07:7c:34:c9:11:69:a4:74:36:3c:74:
43:1c:33:7b:de:5a:f9:b4:80:bf:1c:56:1f:e7:36:c0:75:1c:
a9:16:7f:27:d5:96:5e:2b:56:f9:2b:83:8c:d6:77:57:e0:8c:
ec:f8:93:4d:4c:64:3b:d9:a0:e1:8a:1f:ac:7a:83:dc:46:ae:
4d:ca:32:2b:0c:32:f3:35:e7:99:ba:39:e6:26:c2:21:9e:73:
cf:de:b4:b0:90:a6:53:07:c7:91:00:4a:a1:37:c7:83:22:36:
34:e0:5a:db:7b:cc:75:4b:57:87:1c:cd:80:16:71:3b:da:1a:
77:58:c2:28:c2:dd:ce:79:b0:23:94:48:4c:af:cf:4b:79:68:
c0:6d:ca:c4:b9:15:83:99:c8:9f:21:5e:78:f5:b6:0d:6c:df:
e3:2d:75:84:4c:e0:00:a4:00:de:f2:82:8d:3b:a0:92:3c:28:
60:e7:db:57:47:f4:bf:3f:03:aa:69:ef:7c:e5:21:63:15:8d:
44:2a:da:64:82:c9:a9:21:c3:e8:b6:6e:c4:95:9f:a6:b5:85:
55:be:f6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:13:35 2026 by rpki-client