Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json)
Hash identifier: kmObCiNlLqBnUw6M/VyLd27jEeKVCDMcx93Qfk7wePE=
Subject key identifier: E0:B7:B9:72:07:98:19:86:2C:7B:3A:48:24:D3:96:2F:2A:6E:12:44
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 019CABD95D41E18EA973180623A937702BB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
Manifest number: 1853
Signing time: Mon 02 Mar 2026 00:01:14 +0000
Manifest this update: Mon 02 Mar 2026 00:01:14 +0000
Manifest next update: Tue 03 Mar 2026 00:01:14 +0000
Files and hashes: 1: 1fQajHTJp0S8KUunDd6YeyFtENM.roa (hash: mmAzmTwR/ELzJWO/mTGxkNnXnKiWntSSUF9kf4/Kzb4=)
2: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: tdJD7gpjZZkpvRBmWVuEB4dG4CjhXWbLyF/ils36NBc=)
3: 6I-aggcE89s528aMt_8CuZqJ61A.roa (hash: 1l0d6AnGSzNrEZie8Z3fZ9Fg7c3oqYcQ4vM6hMLN2Xk=)
4: AFp3F2X8yQTaBQfkM_zsF9UYmww.roa (hash: 7p1zPt6PNmGU8W+3TijuQxRqjYyJqKF96JpQUyZBeZY=)
5: EHQpUpEMo4S4SvN6ygFHQVkQJ6A.roa (hash: aL98OrOlu07CFPxf6rwXnJMO4vbO/beSHKJmE+F/5nQ=)
6: l6dcV9zJ9n_Ctd5EzzonA7X-jFo.roa (hash: mwxDuvlYfTCoynYTFAQOpS/BivdbtxW1voj1voq8fsg=)
7: rrxhY0T34NFm8dBURFOGg9BvJjw.roa (hash: CAUMQZvZz6QKlQgRUZEx4oRHdyyDBXGnUQ6HYMNXgDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:5d:41:e1:8e:a9:73:18:06:23:a9:37:70:2b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: Mar 2 00:01:14 2026 GMT
Not After : Mar 3 00:01:14 2026 GMT
Subject: CN=e0b7b972079819862c7b3a4824d3962f2a6e1244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:54:58:0c:ee:b3:4c:85:77:d9:9b:2e:c5:5b:
a5:1e:eb:14:36:20:b5:07:92:10:76:ab:5c:87:f0:
49:b2:93:b4:2c:4d:64:32:e6:a4:c7:57:90:1e:6d:
64:3d:2a:8e:2f:0f:24:55:8a:d3:ea:60:60:49:e7:
eb:c1:3f:7a:cf:2a:c4:01:d6:4e:a2:25:d3:08:a2:
5c:22:d2:33:88:6f:57:58:3f:89:35:52:aa:80:92:
47:f1:53:01:c7:3c:d9:66:4f:be:60:f2:97:d5:85:
91:ce:dc:6c:06:ac:df:2e:da:10:01:6e:47:b1:14:
d0:6b:51:68:f8:87:ed:bb:e8:75:ea:d0:16:ee:a6:
77:63:38:f5:cd:9c:83:60:41:96:77:67:6e:39:34:
60:f5:b1:74:43:32:10:15:48:a0:9f:16:81:93:58:
80:fb:90:d7:ff:fe:ae:08:37:28:da:8a:9a:87:97:
2f:d9:4d:1d:e0:38:d5:a7:4e:3f:50:dc:19:eb:50:
26:a6:8b:7f:ae:c2:65:cb:6f:1d:eb:2c:8a:c7:c3:
72:28:6a:c9:54:3c:70:b1:44:c8:56:b9:d9:5c:85:
1d:f5:a7:77:02:86:97:9c:cb:8b:a6:4f:39:0b:36:
de:20:12:75:cf:c9:34:4d:e6:aa:cb:49:78:cd:cf:
88:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B7:B9:72:07:98:19:86:2C:7B:3A:48:24:D3:96:2F:2A:6E:12:44
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:cb:19:6e:7b:25:27:79:09:3f:8e:e2:82:57:94:b0:52:92:
b0:09:bf:90:98:63:83:9c:ef:3c:7a:a2:9e:ef:76:08:29:49:
6a:98:17:d1:a1:c4:ad:2d:cc:7f:da:e8:ba:cb:70:96:5f:31:
c1:e4:a1:b6:da:15:fe:6a:45:72:48:ee:b5:1e:31:07:10:d0:
f0:5f:46:dd:59:c5:a1:f4:8f:99:55:4c:19:93:8e:99:64:1b:
c0:61:2e:2b:cc:33:dd:31:8f:f8:36:8c:f2:d3:d6:c0:26:2c:
f5:cf:c8:30:f6:93:88:aa:8f:b9:06:ea:e4:66:3a:52:ff:cf:
49:8b:ff:7e:7c:c1:d0:96:ad:b6:68:7e:23:77:e9:c7:e8:71:
89:be:82:75:32:d9:1e:9a:4d:2d:4e:28:af:b9:a4:56:2c:9d:
a0:62:ef:52:16:a0:a0:bd:c8:7a:f6:73:9d:c3:ee:7e:c4:a6:
40:b8:8f:e1:62:0d:ca:cc:37:0b:57:ca:da:ca:88:89:03:5d:
7a:58:96:cd:6e:6d:85:b3:65:34:e8:8c:73:af:e0:b5:ce:92:
2c:7e:89:8f:cc:21:d1:32:8d:2b:b1:2c:1a:aa:ed:d1:ff:b8:
88:74:58:ff:61:2f:af:d8:83:be:82:b2:cd:ad:e3:90:20:7d:
8f:cb:2e:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:02:08 2026 by rpki-client