Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: rCuX2iGLiHsnaWr9qYGhDza+tIE7+xCEDafAo53WPjg=
Subject key identifier: 78:C3:2B:CB:2C:E9:78:86:AA:FC:87:18:18:DF:04:4F:82:30:89:EA
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 019D9A748AE5ADDBCDB79033D209EC395991
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0CC7
Signing time: Fri 17 Apr 2026 08:00:22 +0000
Manifest this update: Fri 17 Apr 2026 08:00:22 +0000
Manifest next update: Sat 18 Apr 2026 08:00:22 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: RkXY+f9pn7tdzwVv+6HG1VwtnecT+jo/ezFQwR39Gww=)
2: EpYfEYO_PBauG2EManfF8FgFl1Q.roa (hash: cXvNIHvNyPlxk30rEJGQL1sdKxLXm0Gvh2LNp2Lvi3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:8a:e5:ad:db:cd:b7:90:33:d2:09:ec:39:59:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Apr 17 08:00:22 2026 GMT
Not After : Apr 18 08:00:22 2026 GMT
Subject: CN=78c32bcb2ce97886aafc871818df044f823089ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ef:8e:90:05:6e:11:ad:ec:00:ef:d8:57:ba:
6a:b1:fc:cb:af:0a:df:6a:b2:f7:6d:49:c3:32:c6:
95:83:88:27:1f:47:b4:b9:ac:9e:e0:51:61:86:3c:
7c:e2:bc:d8:6f:94:d2:d8:1d:88:5f:4f:09:91:ae:
99:79:3d:57:64:1e:a8:ae:24:86:b5:29:a7:44:bf:
f7:36:6f:01:0b:79:a2:46:81:00:76:db:bb:34:e5:
23:52:c8:ec:9b:80:76:c7:db:be:11:22:9e:32:1f:
b5:f5:51:2c:33:7f:03:c0:fb:3d:47:94:b3:86:9b:
38:36:3f:69:a7:c1:fd:c0:16:af:86:65:b4:63:40:
e2:0d:bd:d2:0f:81:a1:26:70:7b:42:a8:57:42:fa:
34:18:1b:e7:eb:c2:2b:5a:8f:d6:65:d2:e1:51:94:
38:e5:d9:94:c2:f8:1c:df:ac:7f:57:61:2c:2e:21:
2e:bc:3c:7e:c3:af:a9:e7:42:ae:d9:47:5c:d0:9c:
05:79:eb:b7:c0:5f:c6:e3:d6:07:10:31:d1:f5:81:
3a:36:a2:94:42:9d:20:43:65:66:88:f2:79:59:c6:
f3:eb:4a:ac:5d:47:a5:13:39:5a:fc:d0:03:89:51:
bf:d9:62:ea:2c:3a:60:01:d4:12:4a:f2:0f:68:cb:
69:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C3:2B:CB:2C:E9:78:86:AA:FC:87:18:18:DF:04:4F:82:30:89:EA
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:26:ec:25:84:1e:ae:23:fc:d8:72:81:44:0b:47:43:9f:07:
3b:e2:a1:b6:39:8a:ca:62:32:55:90:e3:b2:b3:45:53:e9:31:
10:41:ed:7b:53:79:bb:fc:8b:50:53:f1:4c:25:12:70:0f:70:
29:9e:7b:fc:a7:3e:95:89:d8:aa:35:47:16:0a:3f:8d:0e:79:
9a:5c:b7:a3:59:c7:b9:16:d8:a5:9a:73:d3:86:6b:af:e1:10:
8c:69:c8:0d:a7:2d:07:d4:3e:6d:5f:20:d8:15:24:32:47:ba:
b3:a9:20:3e:b3:ee:72:b9:43:9a:3c:5a:35:8f:99:20:6d:52:
49:ea:6d:08:a9:ab:cf:77:fb:74:00:ea:7c:d1:9a:3c:fc:f7:
b9:6a:73:a9:f8:e7:8b:90:89:c6:cd:bc:5e:cf:17:03:82:fc:
48:f7:5b:fb:14:fa:d6:64:22:32:64:5e:ff:3f:c0:37:56:8d:
e8:6b:12:cc:d8:0a:c9:e7:98:46:99:79:3a:dd:f3:f7:9d:d6:
bd:3e:d4:08:41:75:23:31:35:68:d3:5c:3f:82:14:31:60:c3:
f4:3d:85:d8:82:fc:d9:02:f5:70:05:b2:1f:0d:2e:c7:b9:8c:
bb:77:59:01:b0:28:b1:15:53:f1:50:ae:cb:01:d5:95:ae:ab:
e0:e7:0e:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:04:07 2026 by rpki-client