Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
File: 3fz_0QDcAH8alqRDDqhyOJxX1s8.mft (raw, json)
Hash identifier: 9ypBQ4/l50KnZ4125K4iTOSkypT160QiwkAlxvLukK4=
Subject key identifier: 98:52:1D:94:C1:73:85:24:75:58:32:6F:89:F5:A2:AD:96:CA:9D:FF
Authority key identifier: DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
Certificate issuer: /CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Certificate serial: 019CAAC619296714B355E898093322AED8AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
Manifest number: 0538
Signing time: Sun 01 Mar 2026 19:00:35 +0000
Manifest this update: Sun 01 Mar 2026 19:00:35 +0000
Manifest next update: Mon 02 Mar 2026 19:00:35 +0000
Files and hashes: 1: 3fz_0QDcAH8alqRDDqhyOJxX1s8.crl (hash: gYUoPQfu7Yae5TKeonR53Ecm6XKAn0OScTq1zdhdnoY=)
2: PWpDsLMHEz8TOyrA-SyzsSx50x4.roa (hash: 3QKMuAcr+JgQ4o/2LQdy62QLuMBtccj8bJckjR3bodQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:19:29:67:14:b3:55:e8:98:09:33:22:ae:d8:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Validity
Not Before: Mar 1 19:00:35 2026 GMT
Not After : Mar 2 19:00:35 2026 GMT
Subject: CN=98521d94c17385247558326f89f5a2ad96ca9dff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cb:0c:ff:a2:33:43:95:26:ad:d5:3f:28:4c:
ce:d4:3f:20:ee:ed:7b:5d:a8:87:0a:12:c6:cd:95:
d2:17:9d:52:48:37:32:aa:57:c8:d5:28:a5:d6:62:
04:ba:da:63:53:0b:47:39:3a:2f:ba:4c:9c:4b:30:
85:54:6a:33:ef:2c:8e:c6:c3:64:99:4d:13:9e:95:
2c:83:50:e8:3b:2d:48:19:64:00:88:ff:f7:c9:8c:
6e:41:07:58:10:d8:13:30:9a:bb:cb:fe:d9:3a:f2:
4e:fd:11:46:7c:3a:bb:25:db:82:62:16:2d:1d:ea:
72:f7:b4:60:7e:85:54:12:02:b1:82:15:6c:a0:7f:
13:76:94:37:d8:b5:a6:2d:9f:e6:e7:2b:a5:ce:4b:
97:2a:88:d3:19:28:07:ac:31:64:cd:0c:12:65:38:
19:bb:eb:53:ce:97:ff:be:9e:e2:64:b3:dd:8e:43:
e1:c1:0d:27:a3:08:3a:2d:b4:3d:a3:63:74:63:11:
2f:f2:d1:67:65:79:e1:9b:8f:c7:97:f9:fd:27:bf:
f7:01:2e:2b:8f:12:fa:d0:de:ad:e0:bc:85:c6:47:
46:db:72:05:ba:fb:de:fe:3b:aa:f2:a4:fa:d6:cf:
13:a2:c0:73:77:c4:0a:0d:80:38:03:fc:b7:65:f9:
c9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:52:1D:94:C1:73:85:24:75:58:32:6F:89:F5:A2:AD:96:CA:9D:FF
X509v3 Authority Key Identifier:
keyid:DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:98:fe:39:92:37:dc:7e:01:9f:d7:b1:6e:8e:13:9d:ec:8b:
ea:14:1e:0b:05:59:54:7f:0b:5a:ca:c7:11:dd:3a:2e:b8:0b:
a3:00:47:2c:a4:7e:b7:ef:5c:09:cd:2b:90:f7:79:10:1c:d2:
a8:1e:30:9a:27:3a:38:93:a0:ee:25:ea:84:4a:40:17:43:6d:
df:db:b7:5e:de:62:ed:59:0f:a4:54:fd:45:b2:ce:c2:dc:e5:
5f:d0:e5:f3:d5:82:c9:70:7f:f7:fa:b3:54:d2:a4:2a:50:8d:
32:3e:f5:2b:f5:11:42:ed:1c:b4:3c:bb:fd:e3:30:a5:a2:0c:
f5:b8:e1:34:0d:e8:d0:7b:6a:f4:f7:08:4c:3b:94:9e:ea:3c:
ca:27:76:d7:49:7a:15:68:46:b8:70:36:4f:df:85:52:db:72:
e3:a2:dd:d1:b1:ef:a0:b7:2b:9a:b0:4a:b1:31:ec:cd:32:bc:
62:0a:20:84:8e:9e:c9:18:7c:ee:42:69:d3:58:95:43:e7:29:
7b:09:64:3e:9c:e4:19:52:c5:86:45:a4:43:57:2b:0b:5d:7a:
80:00:bd:8a:7a:b4:a1:02:3a:cb:9e:e3:99:be:f0:83:0b:11:
bd:89:9a:8e:1e:05:ef:77:4e:d2:3d:da:04:be:0e:79:c5:c0:
fa:b6:ff:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxhkpZxSzVeiYCTMirtiuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZmNmZmQxMDBkYzAwN2YxYTk2YTQ0MzBlYTg3MjM4OWM1
N2Q2Y2YwHhcNMjYwMzAxMTkwMDM1WhcNMjYwMzAyMTkwMDM1WjAzMTEwLwYDVQQD
Eyg5ODUyMWQ5NGMxNzM4NTI0NzU1ODMyNmY4OWY1YTJhZDk2Y2E5ZGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMsM/6IzQ5UmrdU/KEzO1D8g7u17
XaiHChLGzZXSF51SSDcyqlfI1Sil1mIEutpjUwtHOTovukycSzCFVGoz7yyOxsNk
mU0TnpUsg1DoOy1IGWQAiP/3yYxuQQdYENgTMJq7y/7ZOvJO/RFGfDq7JduCYhYt
Hepy97RgfoVUEgKxghVsoH8TdpQ32LWmLZ/m5yulzkuXKojTGSgHrDFkzQwSZTgZ
u+tTzpf/vp7iZLPdjkPhwQ0nowg6LbQ9o2N0YxEv8tFnZXnhm4/Hl/n9J7/3AS4r
jxL60N6t4LyFxkdG23IFuvve/juq8qT61s8TosBzd8QKDYA4A/y3ZfnJ4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJhSHZTBc4UkdVgyb4n1oq2Wyp3/MB8GA1UdIwQY
MBaAFN38/9EA3AB/GpakQw6ocjicV9bPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2Z6XzBRRGNBSDhhbHFSRERxaHlPSnhYMXM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS8yZmMzNzUtZGExNC00ZjdmLThmYWUt
MTVhNmU3ZGY0NWM5LzEvM2Z6XzBRRGNBSDhhbHFSRERxaHlPSnhYMXM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS8yZmMzNzUtZGExNC00ZjdmLThmYWUtMTVhNmU3ZGY0NWM5
LzEvM2Z6XzBRRGNBSDhhbHFSRERxaHlPSnhYMXM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaZj+OZI3
3H4Bn9exbo4TneyL6hQeCwVZVH8LWsrHEd06LrgLowBHLKR+t+9cCc0rkPd5EBzS
qB4wmic6OJOg7iXqhEpAF0Nt39u3Xt5i7VkPpFT9RbLOwtzlX9Dl89WCyXB/9/qz
VNKkKlCNMj71K/URQu0ctDy7/eMwpaIM9bjhNA3o0Htq9PcITDuUnuo8yid210l6
FWhGuHA2T9+FUtty46Ld0bHvoLcrmrBKsTHszTK8YgoghI6eyRh87kJp01iVQ+cp
ewlkPpzkGVLFhkWkQ1crC116gAC9inq0oQI6y57jmb7wgwsRvYmajh4F73dO0j3a
BL4OecXA+rb/mQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:11:06 2026 by rpki-client