Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
File: 3fz_0QDcAH8alqRDDqhyOJxX1s8.mft (raw, json)
Hash identifier: bSQHlGVNlDKH50ZIDTDvELBV+3gIUzAsIceYWTTFSpA=
Subject key identifier: 3F:8E:6A:55:D3:F3:29:A3:38:52:1C:32:A4:6D:39:19:56:D3:4D:43
Authority key identifier: DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
Certificate issuer: /CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Certificate serial: 019D9A3E93CAD84DCCAF37FC2946A45A27A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
Manifest number: 05B4
Signing time: Fri 17 Apr 2026 07:01:25 +0000
Manifest this update: Fri 17 Apr 2026 07:01:25 +0000
Manifest next update: Sat 18 Apr 2026 07:01:25 +0000
Files and hashes: 1: 3fz_0QDcAH8alqRDDqhyOJxX1s8.crl (hash: ZKhKiUePwD/V8f7k9Az7wwZ17VoFMDexetmO9v4A87o=)
2: PWpDsLMHEz8TOyrA-SyzsSx50x4.roa (hash: 3QKMuAcr+JgQ4o/2LQdy62QLuMBtccj8bJckjR3bodQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:93:ca:d8:4d:cc:af:37:fc:29:46:a4:5a:27:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Validity
Not Before: Apr 17 07:01:25 2026 GMT
Not After : Apr 18 07:01:25 2026 GMT
Subject: CN=3f8e6a55d3f329a338521c32a46d391956d34d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c1:07:eb:89:f2:36:a7:13:f0:ec:30:c9:ef:
48:1c:f9:d0:8d:0d:da:0a:27:c1:ed:ee:b6:6b:0c:
68:a7:a9:45:05:cd:90:cd:43:c8:99:18:db:13:61:
1a:78:62:7f:96:75:29:22:27:1b:ef:a9:af:69:3c:
4e:d9:da:d6:fa:2c:57:45:24:98:4e:ba:1d:72:e0:
1c:fe:a9:8a:42:fa:3b:a5:2b:03:c6:48:86:86:c2:
f2:a9:fc:42:4f:c0:b7:76:50:b2:b3:fd:92:8d:70:
5f:b1:54:bf:eb:7b:e2:2e:4c:4a:81:5c:57:fe:dd:
dc:3f:28:af:ff:ce:92:1f:0a:1e:e0:28:88:1f:88:
67:2e:9d:51:97:72:47:f5:2d:fe:c9:ae:5b:f5:7a:
b7:cf:58:01:1e:b1:0a:cf:b7:8f:4e:c3:e2:2a:04:
21:fd:53:89:7d:31:b1:93:d6:9d:a9:2c:ec:53:c2:
3d:6e:09:f7:d3:15:7f:ff:bb:b7:9b:41:4f:ae:fb:
86:81:2d:a2:33:84:c8:41:70:21:bc:b9:d1:8b:5a:
5b:35:90:81:a1:4e:06:33:a0:ef:67:11:88:9d:6d:
9c:91:72:86:e8:5a:0f:12:b3:88:2a:3d:62:73:c5:
d4:ba:23:51:a0:7c:9c:2a:21:19:b6:d4:cf:28:70:
e6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8E:6A:55:D3:F3:29:A3:38:52:1C:32:A4:6D:39:19:56:D3:4D:43
X509v3 Authority Key Identifier:
keyid:DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:6a:2e:9b:1e:85:ae:e2:1b:29:16:f5:9f:bc:60:a7:37:08:
22:ba:20:a1:7b:2b:86:d7:44:17:6c:ad:75:78:c5:b5:8b:e3:
a4:c0:17:b0:d9:24:26:aa:33:31:2b:14:41:97:a3:b1:bf:c5:
89:70:7f:61:29:83:35:97:6b:2d:9a:e4:b9:f0:f9:bb:bb:8f:
b3:1a:98:42:cd:2a:8a:88:67:fc:8e:28:04:1c:d3:07:50:90:
3a:44:7c:3d:39:5c:e9:8a:10:b5:3f:f9:ef:c8:4b:46:9e:10:
54:2e:17:94:ad:2a:f5:8e:e7:2b:58:02:60:7e:1f:10:83:bf:
3a:7b:4b:fb:bb:46:46:9d:c0:72:15:49:f0:b0:6e:47:68:28:
eb:46:16:fe:0f:0a:50:22:b8:49:b3:45:f8:0e:49:4c:d0:6c:
33:d4:61:7d:5b:5e:08:cb:f2:8d:9e:4c:b1:bf:f7:9d:51:07:
64:1e:eb:0e:65:78:34:60:3c:c0:5a:9a:3b:b2:d6:5d:9c:3f:
27:8d:e1:9e:ab:e2:7f:c8:e5:ef:e5:7b:dd:9e:74:fe:42:6e:
95:d9:8b:11:46:48:8e:d0:68:f0:08:02:38:df:ff:8b:f4:2e:
af:ff:e8:6c:44:0a:cf:1a:b8:3e:49:27:68:fc:4c:dc:ee:2b:
20:ee:7b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:29:39 2026 by rpki-client