Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
File: 3ohLjkYvPsE6QCTWaamdlK8FzbI.mft (raw, json)
Hash identifier: FG4nI1SsTydjZtwUSw/IAyx1ld+1GsOhg6ijF9FjLU8=
Subject key identifier: B0:66:8F:CE:00:82:8C:9C:81:C6:25:CB:B2:AA:D6:9D:96:40:EC:06
Authority key identifier: DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
Certificate issuer: /CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Certificate serial: 019CAC0FBABCAFD13820C921D4F73DB7E503
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
Manifest number: 08F6
Signing time: Mon 02 Mar 2026 01:00:37 +0000
Manifest this update: Mon 02 Mar 2026 01:00:37 +0000
Manifest next update: Tue 03 Mar 2026 01:00:37 +0000
Files and hashes: 1: 3ohLjkYvPsE6QCTWaamdlK8FzbI.crl (hash: +8Ejmd9xctSp95YN0NqX2U04p5QEcTUK/eOKNfnbdCE=)
2: KyIGNZFDdjiF9uvViG3nRW9Bmw8.roa (hash: DzYiLKcYFU2Q0VtZNwQkwth/5N+BuGWGx0hMS551gkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:ba:bc:af:d1:38:20:c9:21:d4:f7:3d:b7:e5:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Validity
Not Before: Mar 2 01:00:37 2026 GMT
Not After : Mar 3 01:00:37 2026 GMT
Subject: CN=b0668fce00828c9c81c625cbb2aad69d9640ec06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2c:39:6f:ee:f8:69:99:11:26:55:40:d2:3e:
59:d1:eb:e0:a7:9b:fe:ab:87:94:89:98:40:46:97:
f2:c0:44:69:bd:38:d2:19:78:fa:c4:1d:b4:97:fd:
82:34:88:40:ed:d8:47:af:f4:c4:4a:6e:98:53:9f:
ba:8b:56:17:2a:b7:f9:c2:4d:b9:c1:c6:0b:b7:08:
1d:17:f0:3f:ef:e6:4a:9c:f9:ba:ed:92:1f:b5:f8:
e7:a5:3a:2e:82:69:b6:d5:ff:ff:ae:72:16:ea:2f:
71:ab:84:8b:30:93:f9:29:bf:0c:fb:b6:a7:28:b2:
30:31:8e:3b:bf:80:ef:13:95:42:2f:ec:f5:7d:44:
1e:7d:9a:5f:ea:3a:77:d5:ed:71:5d:47:13:6a:a3:
a6:81:71:9f:34:f7:f7:a2:2e:59:a0:d8:1f:52:59:
54:4e:dc:c8:c3:c4:38:40:89:2d:31:6c:3c:07:22:
bf:cc:fe:04:01:0a:92:95:33:83:03:02:bb:8c:56:
42:fe:ce:95:da:1d:be:23:71:82:95:28:14:e6:01:
02:22:79:2c:b5:71:c3:88:21:96:15:74:25:92:2d:
bb:a5:1c:4b:f1:b2:4a:b1:57:99:e0:c1:ae:0f:fb:
1c:7c:94:85:08:39:89:d6:16:db:c6:c1:b9:17:86:
d3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:66:8F:CE:00:82:8C:9C:81:C6:25:CB:B2:AA:D6:9D:96:40:EC:06
X509v3 Authority Key Identifier:
keyid:DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:4b:6f:f2:0c:cd:f0:eb:3d:72:6d:df:13:f3:d1:ff:c3:8e:
61:bd:fc:41:6f:d2:43:c4:4f:30:b8:15:38:47:59:02:84:33:
68:9b:7c:2a:70:05:64:b1:95:bb:7b:6f:46:08:67:92:8c:8c:
61:4e:3a:f8:df:87:6c:d8:5a:f0:72:95:65:1a:a7:20:37:ed:
ec:85:99:83:b1:26:87:f3:d6:95:a2:d8:a5:9a:59:3a:12:ec:
6f:3d:5b:02:bd:78:04:9e:d2:4a:d1:f6:54:c9:44:fc:83:0b:
71:3c:85:b4:ea:b0:95:61:cd:14:c7:7e:07:2e:cd:70:a0:da:
a9:3d:37:40:da:76:67:b7:ee:ca:e3:9e:9b:c2:83:07:21:7e:
10:a6:45:9e:83:20:a9:25:d4:96:9e:83:13:8b:9b:0f:c9:d0:
20:a7:10:22:09:d3:8b:71:6f:08:37:23:1e:bf:71:07:38:b6:
f1:8b:83:87:a4:ee:09:1e:df:68:3f:52:f3:97:18:b3:31:92:
12:27:1f:66:fd:c1:bf:2f:f6:0a:ec:bf:e8:22:8f:7e:e1:b3:
1b:72:7a:02:ea:b9:da:03:32:b4:16:e9:56:67:18:62:0b:b1:
a5:ae:52:1f:21:0f:f2:39:6e:2e:4e:d3:dc:bb:39:ea:e4:c2:
eb:3f:0e:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:21:32 2026 by rpki-client