Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
File: 3o44GHrnDLx77WlXWfDgMpn7swI.mft (raw, json)
Hash identifier: xhKM2sxIf9MhLmqhjXF4uu2WxxeFj02ldv2XcQm0W0Y=
Subject key identifier: E6:04:86:B3:84:FC:18:1A:69:EC:8B:47:27:C1:D9:15:CC:9A:4C:9A
Authority key identifier: DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
Certificate issuer: /CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Certificate serial: 019CAD90B3AEA356D5315954E4C24BA571BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
Manifest number: 04D0
Signing time: Mon 02 Mar 2026 08:01:07 +0000
Manifest this update: Mon 02 Mar 2026 08:01:07 +0000
Manifest next update: Tue 03 Mar 2026 08:01:07 +0000
Files and hashes: 1: 3o44GHrnDLx77WlXWfDgMpn7swI.crl (hash: tD8unh9csOXng93mrC1vkjCzd9sGPtFYdCv47nMdGoA=)
2: RPnqpd4QiTnwCz1MgHARgUiKRfA.roa (hash: EMQ9uAHdxhy6q4kC92RKeDGjFCm7FDg8EbfwYcj/lNw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:b3:ae:a3:56:d5:31:59:54:e4:c2:4b:a5:71:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Validity
Not Before: Mar 2 08:01:07 2026 GMT
Not After : Mar 3 08:01:07 2026 GMT
Subject: CN=e60486b384fc181a69ec8b4727c1d915cc9a4c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:19:a9:fb:d7:66:58:fe:91:e3:a5:ac:17:63:
89:68:76:aa:91:c6:f8:ca:9d:b8:3f:5b:c5:b7:15:
7c:26:7f:48:70:e6:7f:5d:4b:f3:df:cd:6f:e1:c8:
34:b4:f0:dc:3a:44:76:9d:6b:ab:f4:64:ab:d1:1f:
12:c8:ef:b3:a1:9b:25:ca:96:c5:68:36:5f:47:0b:
ba:3c:7a:aa:5b:36:fa:8c:07:ad:e3:c2:2e:5f:e3:
24:a3:c5:b4:ac:45:da:a6:e7:38:ec:98:a9:51:49:
e0:3a:3c:e9:02:4f:cd:9a:78:5a:bf:b3:f2:aa:b9:
b2:f0:d7:47:fe:fd:92:95:04:66:2e:40:ac:82:5f:
20:29:03:98:22:28:21:12:fb:a9:9c:81:39:ae:28:
cd:fc:54:50:24:c5:36:b4:f5:e2:ac:20:6f:08:ba:
0e:8c:f1:7e:64:04:97:5b:fa:68:0a:c5:b1:3b:af:
38:bf:5f:25:09:97:7c:62:3d:5f:07:36:e1:93:ba:
5a:e1:b1:8f:43:bb:25:66:a8:c8:0a:40:8f:0d:87:
6e:d8:fc:01:34:3c:00:ff:15:51:2a:a5:1d:e1:76:
08:55:ae:1e:81:52:d1:e9:52:8d:d0:8a:53:41:a3:
fa:d4:a6:23:7b:40:a4:54:85:8d:c7:cf:bd:9b:10:
3e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:04:86:B3:84:FC:18:1A:69:EC:8B:47:27:C1:D9:15:CC:9A:4C:9A
X509v3 Authority Key Identifier:
keyid:DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:17:a7:62:cc:df:84:14:ed:bc:95:5e:91:07:81:ef:e0:e7:
41:4f:b8:73:20:da:b8:49:92:a8:4e:79:9b:37:6c:a2:e2:65:
6e:3b:b8:8a:2e:8f:dd:d3:8a:3a:33:37:f3:e5:4d:78:56:fd:
dc:8e:c8:59:14:f4:a8:b8:c2:ea:92:29:74:e7:c8:1e:02:ed:
f4:ab:52:81:b3:10:10:8e:64:95:b9:08:aa:2e:e9:de:ea:93:
f0:a8:81:76:a2:73:46:07:96:51:5c:7a:09:10:3b:60:c1:0b:
3a:4d:1c:1d:55:6f:5e:18:ef:9a:5c:42:32:5c:af:8c:7a:96:
4b:22:85:67:3f:81:88:bd:29:5f:35:44:ea:28:d0:cd:6a:5a:
ca:87:3a:f9:f2:4c:12:ac:3f:6f:61:db:89:63:7e:24:87:e1:
38:61:92:30:1d:33:46:b5:9f:a8:64:66:5c:e3:9c:fc:ac:fb:
d7:ef:7a:31:8a:a0:3a:47:d5:df:82:5e:66:db:76:5c:da:87:
25:1f:7e:d1:a6:ef:35:00:5d:45:dc:bd:31:7a:73:47:38:9b:
69:06:db:b0:fc:52:1d:b3:65:68:6b:83:87:9a:20:e8:d4:44:
0b:bf:61:1a:5e:99:24:a4:e9:8f:d4:07:0c:88:b8:3c:67:87:
d6:e0:c7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:30:04 2026 by rpki-client