Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
File: 3fz_0QDcAH8alqRDDqhyOJxX1s8.mft (raw, json)
Hash identifier: kTf9fpSA2ddCbAcOoG0vcRz0eLpBvE3LOR8xVfJbrIE=
Subject key identifier: 11:E8:53:64:D5:02:BF:AA:C8:10:C2:72:45:55:FE:2E:24:DF:AB:58
Authority key identifier: DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
Certificate issuer: /CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Certificate serial: 019EBFC8D954AE76E3CCC82DF28A4299143F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
Manifest number: 064C
Signing time: Sat 13 Jun 2026 07:01:11 +0000
Manifest this update: Sat 13 Jun 2026 07:01:11 +0000
Manifest next update: Sun 14 Jun 2026 07:01:11 +0000
Files and hashes: 1: 3fz_0QDcAH8alqRDDqhyOJxX1s8.crl (hash: h5nbqrLuiRrndrS7rDuAfxlP5QE3hnGLi1Hk59hGgTc=)
2: PWpDsLMHEz8TOyrA-SyzsSx50x4.roa (hash: 3QKMuAcr+JgQ4o/2LQdy62QLuMBtccj8bJckjR3bodQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:d9:54:ae:76:e3:cc:c8:2d:f2:8a:42:99:14:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Validity
Not Before: Jun 13 07:01:11 2026 GMT
Not After : Jun 14 07:01:11 2026 GMT
Subject: CN=11e85364d502bfaac810c2724555fe2e24dfab58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:83:71:da:e8:16:f7:8c:e2:ad:2a:5a:f7:ca:
55:e5:12:02:fe:9e:63:66:d4:62:24:73:6b:b2:5a:
c6:fd:05:d4:51:ee:60:a8:ef:23:ca:bf:8c:c6:a2:
6d:eb:be:fc:e4:88:bb:83:ce:62:b4:fe:6f:82:4a:
aa:2f:43:e6:ad:a5:c3:47:57:1c:3a:d0:89:c7:d5:
23:5f:fe:42:f2:7b:5b:04:61:3b:22:cf:25:29:b3:
31:28:fb:61:06:c4:66:b5:f7:67:c3:f7:8e:3f:1a:
20:e5:3a:cd:9a:45:db:c7:8e:98:b3:4d:27:d3:8a:
2b:3f:de:e7:43:99:8e:c6:24:14:68:dd:60:af:d1:
65:50:49:59:08:dc:ed:44:e5:eb:11:1f:dc:8f:a9:
de:bd:85:0e:17:4f:2c:b2:b2:63:de:38:c4:01:1e:
5b:53:a8:be:53:5e:6e:28:2a:88:8f:d4:da:07:3e:
6a:c6:fb:fc:f1:92:60:5a:95:a1:fb:35:27:01:2c:
69:f8:98:fe:4a:1d:b4:19:67:39:10:90:e1:c1:a9:
d2:42:ee:f9:9b:54:59:75:60:2f:a4:e8:2b:10:7c:
b5:b4:4a:de:f4:22:00:dd:c0:3a:e0:a1:4c:68:c8:
e7:f8:e0:5e:e0:ed:f8:68:22:21:2b:bc:3c:72:fd:
6f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E8:53:64:D5:02:BF:AA:C8:10:C2:72:45:55:FE:2E:24:DF:AB:58
X509v3 Authority Key Identifier:
keyid:DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:76:b3:e3:24:1e:39:6c:bb:a6:f8:2f:4b:5a:70:6d:b9:b0:
77:6d:33:a6:d6:7c:46:d5:12:81:24:68:cf:61:16:a5:70:f2:
05:5b:08:8d:c0:df:7a:83:b2:a8:99:b1:1b:7a:60:57:0f:25:
dd:f0:43:4d:d4:14:a0:f9:39:db:7d:5a:2c:4e:5b:91:a8:28:
5f:f1:74:ab:5b:e6:fd:db:46:8d:47:46:1c:79:55:bf:a1:55:
53:50:3f:25:6d:06:dd:10:01:7c:5e:5c:cd:6b:23:63:08:d2:
71:50:61:c4:8c:73:2d:c5:a5:e9:18:79:3f:5f:09:84:41:82:
cc:a4:2a:15:22:a5:64:19:1e:41:fa:97:69:29:ba:b5:6b:54:
af:d5:47:3c:67:ec:84:6f:c2:af:37:ac:d6:4c:de:29:11:d5:
18:3d:d5:f7:bd:a6:2e:f4:99:42:6c:eb:5e:24:e7:20:39:9e:
df:69:01:9c:51:05:ba:f2:40:ad:ce:18:d5:17:9c:b6:92:6e:
af:d7:40:3d:ee:9b:29:e6:4b:fa:5a:b7:9d:3b:ac:27:0a:41:
18:53:3d:47:a6:80:b8:9c:f5:01:5f:16:0b:de:88:96:fd:c8:
b5:57:29:ac:99:0d:43:c1:31:c3:17:61:28:a8:e3:76:ce:19:
3d:a1:5f:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:42:33 2026 by rpki-client