Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
File: L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft (raw, json)
Hash identifier: AMucI/N7J0Qh8U/frNxK/2pjBHmfO40riqI4BPdpyQo=
Subject key identifier: 3C:60:08:A0:DE:ED:78:9D:1C:D2:91:52:6A:33:B2:F3:F9:6E:1D:2E
Authority key identifier: 2F:70:53:26:64:34:3C:B3:D2:89:70:23:A1:27:F6:0B:A9:17:A5:DD
Certificate issuer: /CN=2f70532664343cb3d2897023a127f60ba917a5dd
Certificate serial: 019CACEC0320CDFB87160F9DDAD0EFF9723C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
Manifest number: 0E3A
Signing time: Mon 02 Mar 2026 05:01:14 +0000
Manifest this update: Mon 02 Mar 2026 05:01:14 +0000
Manifest next update: Tue 03 Mar 2026 05:01:14 +0000
Files and hashes: 1: L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl (hash: 9rvz7oBY0l5tN1RMJ0mIqRcfNIgupWnQ/5brF9eYonM=)
2: TsNw6_rUlF3WyS0xB9lA_qFI5N0.roa (hash: o/jK1+Sozn92VWRitjnWkL3+T8fEVmw/zg1uz6fdVJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:ec:03:20:cd:fb:87:16:0f:9d:da:d0:ef:f9:72:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f70532664343cb3d2897023a127f60ba917a5dd
Validity
Not Before: Mar 2 05:01:14 2026 GMT
Not After : Mar 3 05:01:14 2026 GMT
Subject: CN=3c6008a0deed789d1cd291526a33b2f3f96e1d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:99:33:60:ef:91:da:70:1c:86:ad:e8:74:97:
35:c7:b7:62:f4:6a:49:2c:26:b3:a3:7e:38:bd:8c:
11:72:8e:f4:95:9b:a0:c2:58:6e:c0:a8:51:66:44:
fa:8b:26:de:62:04:30:40:bb:fb:69:42:be:63:e3:
43:52:9e:af:42:45:e7:45:17:ac:4c:2c:17:8e:68:
4a:3c:3f:8b:d8:49:9b:4e:83:20:68:64:da:2e:60:
aa:df:72:e1:9d:7e:62:cb:b0:d5:fb:ff:49:1b:62:
80:fd:b1:3f:72:2e:db:69:85:e0:20:7f:7d:f0:4d:
6c:23:45:47:00:70:5e:46:5b:6f:b8:66:1b:af:19:
9e:b4:56:b2:f6:a9:35:e6:84:08:dd:56:14:d3:1a:
db:46:c4:8f:14:30:37:d6:54:45:4f:47:21:b4:d9:
4c:2c:c6:d0:85:dd:b9:68:b2:5b:76:c2:11:a1:55:
27:24:6c:42:e3:f1:0b:a7:8e:c1:4a:aa:f2:65:cf:
fd:7d:18:fc:81:98:e1:ba:14:86:10:bd:9b:ed:81:
61:10:b4:97:29:08:de:7f:7e:02:8e:a5:3c:0b:b6:
6c:03:71:4d:4d:3d:da:23:76:e7:37:49:c1:98:df:
a6:6e:fd:45:92:bc:8c:71:c0:de:8d:aa:79:11:cd:
c5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:60:08:A0:DE:ED:78:9D:1C:D2:91:52:6A:33:B2:F3:F9:6E:1D:2E
X509v3 Authority Key Identifier:
keyid:2F:70:53:26:64:34:3C:B3:D2:89:70:23:A1:27:F6:0B:A9:17:A5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:e9:35:d3:ba:ef:a0:7f:93:2e:ba:ed:e5:31:e6:66:b8:be:
2e:57:6f:9f:db:ea:b8:57:39:d0:94:50:89:a2:b9:0f:10:a0:
d7:d3:34:1d:ec:bc:19:33:f8:60:e8:d7:87:24:35:7c:b6:01:
d7:50:d7:b8:a9:3d:b6:8d:29:28:86:65:d7:ee:3d:78:36:79:
cf:7b:de:8a:5e:64:25:60:98:5c:d7:0c:f1:4d:28:64:ee:bc:
05:a0:27:1f:3d:52:1d:30:6c:6b:74:57:9d:ab:d3:e1:cf:db:
dc:ce:88:8e:b6:a9:b0:34:62:54:25:d3:88:c3:9c:52:6a:47:
66:9f:7c:9c:59:fb:fa:4e:a2:ad:d5:3f:3e:63:7a:74:bc:88:
d9:9c:2f:0c:99:35:9b:07:e4:8f:53:3b:10:03:44:8a:5e:7f:
e7:ed:0d:fa:08:9c:83:3b:0a:90:9d:ac:40:b0:72:39:5b:fb:
b7:c5:2f:d5:87:69:f6:06:6c:68:59:48:75:6c:7a:2b:5c:b1:
3d:c5:c0:11:a1:57:02:63:f2:0a:54:80:35:99:ac:56:ad:7f:
99:75:84:f1:7f:b3:39:c1:5f:dc:a8:c2:32:98:b5:11:3c:30:
ae:14:e0:c5:35:49:b8:9e:16:25:b7:94:f1:b8:61:ba:da:f0:
eb:d4:05:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:17:46 2026 by rpki-client