Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
File: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft (raw, json)
Hash identifier: GKqtpmyzjLwejYzEQ9diUvWBfbyLYRQcFMjKQ8Cymqk=
Subject key identifier: B6:C7:F7:21:84:4B:A7:5A:12:A8:76:E0:A4:A8:7A:4B:7E:64:85:5D
Authority key identifier: DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
Certificate issuer: /CN=df0198a7b3afdcdd7003562a0871878e238760ad
Certificate serial: 019D999990141B7E45E1DC3E20DA7A8115C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
Manifest number: 1375
Signing time: Fri 17 Apr 2026 04:01:11 +0000
Manifest this update: Fri 17 Apr 2026 04:01:11 +0000
Manifest next update: Sat 18 Apr 2026 04:01:11 +0000
Files and hashes: 1: 10zWBAG3yHk6LZ2cT_OBKxWFNWM.roa (hash: 3CyCzPInmv1M2HVwGxzJQ9jqmdcvQHPMZfCVee8QVmg=)
2: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl (hash: A0hjWGngSG7nzRL+B2NGWtV6VaW5L4SrXa3MWexayzo=)
3: K7-F8r5HaixUXPBxPks_drLfCLM.roa (hash: IxrS8dpVCynttuxgWbJEvLUTdnUOcVknWjS85DsyGnY=)
4: RubVNCawFmtSSykZF5XcDH3aXBc.roa (hash: pb4UIOlvmHSq695BiD6WHLwCWaB/NLP+RzVFb75tWfs=)
5: csf31rqb-Vtp8DxAcvND5Xzia2g.roa (hash: tIcC2hzx8VFbqFhPv8CNA+NzwFonxl1ILY4nFDsUkqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:90:14:1b:7e:45:e1:dc:3e:20:da:7a:81:15:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df0198a7b3afdcdd7003562a0871878e238760ad
Validity
Not Before: Apr 17 04:01:11 2026 GMT
Not After : Apr 18 04:01:11 2026 GMT
Subject: CN=b6c7f721844ba75a12a876e0a4a87a4b7e64855d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:31:f2:88:97:12:eb:2d:cd:a7:42:28:e6:2e:
1b:62:6e:93:55:28:bb:60:fb:d8:8d:6e:b0:5a:62:
02:b0:4a:3b:45:c9:fd:52:6d:62:94:f4:af:4a:ab:
8c:b5:2c:76:3f:18:2b:6d:fb:66:d1:44:0d:a8:f6:
d7:1e:42:1e:eb:b9:de:4c:db:cc:51:f5:0c:9a:61:
02:80:a6:79:76:cf:1a:e8:84:92:06:c8:95:12:8c:
02:79:88:dd:f5:36:3c:c5:46:85:73:ec:e7:51:5c:
94:3e:81:ac:7b:e7:23:53:27:2e:87:96:1b:14:3a:
69:58:83:7f:8f:b2:23:1a:bd:b5:6e:ff:58:bd:79:
ab:8f:8b:86:e4:48:8d:b5:2c:92:49:8e:d0:b1:a2:
b2:81:76:9a:ef:e4:c5:9e:55:ae:0f:55:9d:08:2f:
b7:2c:96:e4:26:6d:4e:99:ae:06:75:de:8f:0b:80:
65:48:33:e9:cd:5e:4f:f1:21:ec:d8:aa:a8:39:2f:
b1:61:4c:96:37:1b:b2:30:fe:3d:b1:53:f9:ca:34:
15:93:fa:7a:bf:04:53:80:7b:a8:e4:45:bb:9e:8d:
16:95:08:a4:a8:b1:08:5b:57:b5:95:8d:aa:a6:6c:
1f:4f:e1:2f:ad:50:6d:bc:95:f3:36:64:cd:40:ff:
82:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:C7:F7:21:84:4B:A7:5A:12:A8:76:E0:A4:A8:7A:4B:7E:64:85:5D
X509v3 Authority Key Identifier:
keyid:DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:3b:b9:70:26:80:46:f9:dd:3c:9d:3f:a4:77:32:d8:27:9d:
c7:6f:4b:e9:65:43:a7:f0:6c:80:74:7b:b3:b2:32:e2:de:d2:
0e:a7:ed:50:fc:97:07:99:ee:c7:69:74:b8:68:fa:c7:7e:5a:
af:16:27:4b:f5:36:3a:37:42:ff:7a:81:04:59:8b:45:dd:cd:
f0:54:38:1c:3c:20:bb:09:11:f7:01:18:64:6f:16:d6:bd:ed:
4c:db:f2:18:02:f2:f8:07:98:7e:f5:6c:3e:f0:a0:bd:a7:b0:
67:73:93:ed:e4:87:a1:5c:f0:f4:13:ba:5f:b3:66:f1:34:b4:
b4:db:7d:88:0b:8a:82:34:6e:12:08:41:07:d6:a4:4d:a9:83:
c3:95:c5:64:6a:ae:57:31:33:41:2e:7e:dd:9b:d4:b5:8a:0f:
43:14:f2:db:72:dc:05:d5:28:e0:0f:7a:13:50:fb:d2:72:4e:
98:b4:dd:cc:0f:ce:1c:3d:b7:b6:ac:7d:cb:8f:10:3b:ec:7c:
c0:73:2d:f5:49:5e:11:ce:1b:11:ce:5c:64:3c:56:4c:c2:cf:
37:2a:f5:2a:11:00:67:6b:03:84:7d:5b:e0:f3:32:6b:73:cf:
3b:c5:48:8f:b3:97:5c:a0:b3:b5:cd:55:9a:73:97:93:5a:fa:
d7:3f:26:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:31:04 2026 by rpki-client