Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
File: 3erZGbhaEwUdAgi34o3cyzmLFNY.mft (raw, json)
Hash identifier: BsZBY8dPuG4iojnw9U4YoHtaoVhm32bbyOUo16ByedY=
Subject key identifier: C4:39:06:1C:6B:7E:78:49:93:84:B0:8F:5B:32:FE:54:E8:29:94:E8
Authority key identifier: DD:EA:D9:19:B8:5A:13:05:1D:02:08:B7:E2:8D:DC:CB:39:8B:14:D6
Certificate issuer: /CN=ddead919b85a13051d0208b7e28ddccb398b14d6
Certificate serial: 019CACB53674356B3C350D20F88E7DB1AFB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
Manifest number: 184C
Signing time: Mon 02 Mar 2026 04:01:22 +0000
Manifest this update: Mon 02 Mar 2026 04:01:22 +0000
Manifest next update: Tue 03 Mar 2026 04:01:22 +0000
Files and hashes: 1: 3erZGbhaEwUdAgi34o3cyzmLFNY.crl (hash: qh6tbZYmTIsGppyysLxB5wY16CkOpaW78b6qOHcUeXI=)
2: XlkFVkF--DH6a3m4HUUOHqI0Vwc.roa (hash: k4WPfbMFjDQqLKA715ECgm8KNngpmBPkDKMv0Wo+8X0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:36:74:35:6b:3c:35:0d:20:f8:8e:7d:b1:af:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddead919b85a13051d0208b7e28ddccb398b14d6
Validity
Not Before: Mar 2 04:01:22 2026 GMT
Not After : Mar 3 04:01:22 2026 GMT
Subject: CN=c439061c6b7e78499384b08f5b32fe54e82994e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6f:c3:68:6e:9b:f4:f3:e0:67:1e:74:79:55:
b7:f3:e2:fe:fe:ce:da:c6:5d:1e:3f:1c:e0:35:56:
ff:dc:37:f1:18:88:e4:0e:7e:b7:59:75:8d:b4:fb:
5c:cb:d4:87:81:3a:a9:68:fc:c7:b3:9a:d5:f7:38:
90:71:09:6f:a7:c8:8d:15:5b:15:46:8d:00:9a:88:
24:34:09:87:53:1a:a2:d1:45:80:6f:32:d1:1d:21:
49:96:1f:32:ff:e6:25:4a:42:06:c8:83:dc:de:83:
85:40:18:3e:79:c7:6d:d9:4c:56:72:fe:1e:d0:0d:
68:d3:6d:23:51:e3:35:fc:91:fd:73:66:f2:43:d9:
1c:39:3a:7e:43:16:62:22:ec:72:9c:73:e8:ab:88:
85:53:f8:bd:6c:70:84:66:cc:0e:bb:13:e8:eb:f5:
7b:94:a3:7c:08:05:9d:55:be:55:2c:b4:37:7f:47:
aa:20:0b:61:fc:be:27:71:fb:1e:31:1e:46:93:61:
f2:ad:3a:8e:1d:4e:31:b2:14:97:ea:07:97:b0:b1:
2d:af:59:e8:7d:de:b7:26:e9:33:10:01:3a:d1:3d:
16:a6:4b:53:f5:93:25:be:03:24:58:4c:64:8b:59:
67:60:f0:22:f2:c9:e3:7a:bb:1a:6a:f4:f2:2a:4c:
b4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:39:06:1C:6B:7E:78:49:93:84:B0:8F:5B:32:FE:54:E8:29:94:E8
X509v3 Authority Key Identifier:
keyid:DD:EA:D9:19:B8:5A:13:05:1D:02:08:B7:E2:8D:DC:CB:39:8B:14:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:c5:de:4e:30:4f:19:34:d4:75:88:3a:48:1a:9a:d8:05:5c:
76:5d:02:70:ef:2a:17:43:cb:52:23:fc:1e:c6:0f:a1:10:ef:
36:77:b9:01:d5:87:d6:cf:5a:c2:15:8d:cc:e2:9e:5a:aa:7f:
65:79:91:70:b1:55:f3:b5:9a:18:aa:91:be:92:2e:56:68:c7:
a7:ce:b7:63:ad:34:31:8e:57:e6:9c:08:fe:a3:3a:cb:e0:10:
92:32:97:e0:c8:c2:12:a8:c9:53:01:c7:73:48:d6:c4:fe:c3:
8a:3d:e9:b8:5c:ea:60:d1:30:13:90:14:b3:ad:70:9f:bd:f9:
50:d5:0d:7b:75:a0:8e:69:3e:9b:19:12:18:22:34:f4:ed:62:
12:ff:88:69:61:2b:b0:86:45:f0:37:1c:56:93:3b:65:3f:30:
23:a4:7f:b0:e8:17:a1:2c:2e:23:59:e5:a5:eb:34:25:c0:ac:
28:b6:b1:2e:3a:f6:17:31:ee:80:4a:ff:7e:09:66:66:59:94:
67:5e:11:a8:ef:92:76:1e:17:3b:7a:f7:04:f8:aa:c5:1e:37:
ec:a4:d4:d3:66:99:a9:6f:e7:06:ad:1a:d1:9d:8f:39:7e:af:
9c:75:9a:cb:94:1d:c7:38:6c:a3:92:66:28:9a:d3:72:64:71:
0d:b5:e1:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:11:14 2026 by rpki-client