Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
File: 3SoSF2c-sRypijUTlSBAfJdo38M.mft (raw, json)
Hash identifier: LihM0kzAPKngNqIx37WCbyuQpxAtsdtpX+O2W/3L67s=
Subject key identifier: 59:98:D1:43:EC:44:45:13:A9:92:7D:1C:D8:D9:E2:40:46:AB:48:3B
Authority key identifier: DD:2A:12:17:67:3E:B1:1C:A9:8A:35:13:95:20:40:7C:97:68:DF:C3
Certificate issuer: /CN=dd2a1217673eb11ca98a35139520407c9768dfc3
Certificate serial: 019D9DAC8C411903C1B958C47BEE73C237BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3SoSF2c-sRypijUTlSBAfJdo38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
Manifest number: 01C7
Signing time: Fri 17 Apr 2026 23:00:23 +0000
Manifest this update: Fri 17 Apr 2026 23:00:23 +0000
Manifest next update: Sat 18 Apr 2026 23:00:23 +0000
Files and hashes: 1: 3SoSF2c-sRypijUTlSBAfJdo38M.crl (hash: FvMM6IfD6kslheda7CiEe5pLtFdMG8yJyUA6ZpDKIMM=)
2: WQR-Dyl5ml38JzgsrWjiLr-jTjE.roa (hash: 8pC1xGdRfwbbzKrCgP0LBKBZ1huDVz6z9MO3fLjaue8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3SoSF2c-sRypijUTlSBAfJdo38M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:ac:8c:41:19:03:c1:b9:58:c4:7b:ee:73:c2:37:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd2a1217673eb11ca98a35139520407c9768dfc3
Validity
Not Before: Apr 17 23:00:23 2026 GMT
Not After : Apr 18 23:00:23 2026 GMT
Subject: CN=5998d143ec444513a9927d1cd8d9e24046ab483b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:50:02:48:c3:1c:6d:6c:a7:36:7b:4b:2d:ed:
df:dd:09:6c:f8:30:e2:23:e8:69:6d:e6:bf:49:43:
6f:a5:14:3a:a0:15:72:43:07:0b:47:59:81:60:bb:
2e:99:57:a7:ec:1f:4d:a2:58:10:89:cc:7f:ea:3d:
91:5f:ac:1e:14:ab:95:39:26:29:ed:31:7f:c7:52:
82:e3:6f:7f:a4:05:5b:12:2b:0f:ec:7a:e3:ba:fe:
79:2d:6f:96:20:2e:e5:91:2d:ab:df:8c:25:2b:6a:
71:af:e5:0d:da:6b:61:86:ea:c9:a1:28:1c:c0:8e:
b5:04:00:b4:da:c6:c2:07:50:32:80:77:f5:40:db:
6e:be:d5:e9:1e:8d:9e:7a:26:60:58:a2:f8:a6:59:
34:d9:54:14:92:f7:5d:83:a7:ed:32:d7:eb:b8:27:
a9:41:77:7c:39:27:d1:40:88:3b:a2:f8:60:43:92:
c7:0b:73:22:93:d8:a5:40:99:83:8e:fb:6c:b9:83:
57:3d:ce:36:f9:d4:27:47:00:40:86:16:95:4d:30:
2e:95:86:8b:a6:4c:98:bd:66:2c:ba:61:d5:6d:04:
ed:94:65:bd:19:6c:c5:8c:c0:1b:19:5e:77:93:59:
73:a1:fd:bb:15:72:10:b6:09:2d:b8:8e:83:d9:95:
dc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:98:D1:43:EC:44:45:13:A9:92:7D:1C:D8:D9:E2:40:46:AB:48:3B
X509v3 Authority Key Identifier:
keyid:DD:2A:12:17:67:3E:B1:1C:A9:8A:35:13:95:20:40:7C:97:68:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3SoSF2c-sRypijUTlSBAfJdo38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4a93c6-170a-4aa2-8dfc-6b9641823ca4/1/3SoSF2c-sRypijUTlSBAfJdo38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:eb:ec:92:b4:e7:ed:80:c3:6c:98:97:d6:45:c7:5a:e3:91:
4f:a2:7a:73:76:09:53:1d:07:5d:61:12:20:4f:ac:90:a1:c9:
fa:c5:e0:11:a0:62:7c:2b:86:bb:2b:2d:80:3a:ea:12:e3:5e:
17:be:7d:8c:23:f3:09:7e:73:06:96:9a:14:3d:5f:8a:c8:f3:
5d:38:0e:0e:76:c1:3f:9a:e3:97:d0:ef:71:74:44:90:98:ab:
49:6a:e3:03:dd:35:e2:ba:0f:88:fa:26:56:5e:dd:a8:d4:45:
6a:ad:2c:89:f7:9d:14:91:93:f1:75:29:13:03:72:f5:43:a5:
a0:be:0f:95:0e:39:79:05:9b:65:03:90:09:55:9a:81:c5:61:
16:a1:1c:63:28:cb:90:45:17:62:48:f2:69:81:35:66:be:9f:
1c:fe:93:61:d3:21:9c:be:d3:06:d4:34:ea:c7:b6:c8:27:a6:
d1:ed:a8:0b:cf:c1:dc:aa:98:a4:3c:0f:e4:b9:1f:fd:cd:26:
0c:50:36:1e:21:0b:69:61:4f:e8:75:43:ac:54:9f:5c:5f:1f:
1a:6b:71:a0:31:22:a1:20:2c:07:48:68:fc:78:5a:c6:38:40:
96:d4:99:66:37:3e:5a:14:e6:ad:eb:6d:06:83:5c:4d:b0:68:
0f:3e:85:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 04:17:24 2026 by rpki-client