Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: MDiNAG0oHfGPvgzdNThny4w3TDpWGFK03t9vYD+ir1o=
Subject key identifier: 3E:D0:A4:31:A4:39:A2:86:26:75:B2:28:CD:8D:D6:2F:E0:4D:05:5B
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 019CAAFCF52B7C8DD798EE149E37AC1955FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0C4B
Signing time: Sun 01 Mar 2026 20:00:30 +0000
Manifest this update: Sun 01 Mar 2026 20:00:30 +0000
Manifest next update: Mon 02 Mar 2026 20:00:30 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: 2JAx70MVxgGjxQu7wX7T/H07cpKNfdo6urEHl4tPitI=)
2: EpYfEYO_PBauG2EManfF8FgFl1Q.roa (hash: cXvNIHvNyPlxk30rEJGQL1sdKxLXm0Gvh2LNp2Lvi3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fc:f5:2b:7c:8d:d7:98:ee:14:9e:37:ac:19:55:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Mar 1 20:00:30 2026 GMT
Not After : Mar 2 20:00:30 2026 GMT
Subject: CN=3ed0a431a439a2862675b228cd8dd62fe04d055b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:21:cd:91:51:90:cc:14:a3:0e:c9:bd:c1:16:
bd:13:fc:1e:b2:90:ef:2e:44:38:11:01:81:f3:40:
5b:4f:42:23:45:3b:d7:cf:11:be:0c:6f:4c:ca:3e:
e4:8c:b9:77:fd:2b:82:d6:b9:45:4c:bf:7e:a0:3f:
73:16:69:64:40:7f:cf:c9:f3:17:01:b1:a9:c0:3b:
7d:27:84:42:fc:c0:00:14:03:93:4c:af:08:28:31:
fb:2a:5b:e8:a5:76:fc:e1:1d:cb:f1:cc:5d:d4:30:
ab:bf:c3:53:f6:f0:e7:f9:36:4b:b4:ee:10:0c:51:
cc:f3:fe:7f:98:65:85:19:4b:10:63:18:af:dc:4c:
3c:b1:51:f7:c4:db:82:3a:20:1d:9b:37:d2:ad:43:
fe:1c:b9:24:b4:3c:f2:09:c9:0d:df:02:1a:02:45:
50:64:eb:3e:cf:67:cb:42:47:38:d8:4c:e3:6f:b2:
be:e9:9f:82:b2:61:de:46:11:2d:e3:70:2f:19:1d:
bb:00:fa:8d:1a:d4:b7:b4:ce:fb:c7:24:9f:18:5c:
10:5b:48:b3:b9:47:6c:cf:8c:80:c7:6a:cf:44:ec:
dc:f8:37:6c:63:db:2d:87:3e:3d:1b:44:1f:a9:59:
0f:6d:42:65:02:28:69:2a:8f:a0:2a:6d:e7:6f:8d:
33:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D0:A4:31:A4:39:A2:86:26:75:B2:28:CD:8D:D6:2F:E0:4D:05:5B
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:60:61:eb:f9:7f:ea:e9:03:d1:dd:88:ef:4b:cb:fd:89:1d:
a0:21:8a:4d:a8:a9:e0:97:1c:6f:76:8f:a6:ad:43:a4:05:1a:
6e:e6:bc:6b:67:7e:8d:c6:44:6c:46:d4:a2:46:7d:22:9d:e1:
2a:68:72:ff:00:0a:f1:5d:f6:5a:84:34:ee:db:a1:92:40:99:
d6:7b:61:9f:eb:30:72:b2:19:9d:c6:a9:66:79:90:5b:90:15:
69:09:fe:83:5b:a9:d9:2f:ec:8b:ea:3c:bd:f1:36:e9:9c:62:
ae:10:f0:b7:60:4c:5d:9b:b2:99:60:d1:c8:84:a2:6c:0c:62:
05:d1:7b:6f:aa:d2:e4:88:ec:c2:92:8f:5c:37:31:00:48:23:
f8:50:d3:5c:e0:3d:f8:02:91:e5:8f:c6:31:f2:51:41:f3:3c:
f2:a5:ac:d1:80:d5:77:cb:f7:9b:15:aa:f6:f7:cd:f3:6d:5a:
9d:e2:36:6d:1a:9e:f3:6a:1a:f6:18:37:1c:a6:be:e6:00:6d:
e9:21:54:80:93:97:8a:58:02:d3:8c:40:32:c8:cb:8e:d3:65:
5c:b7:b2:36:f9:42:30:e2:97:d3:0b:95:62:37:36:c1:1c:d8:
e0:0e:1d:c0:f2:82:ad:0d:b3:71:20:dc:72:3e:9c:9a:5e:86:
7d:76:2c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:59 2026 by rpki-client