Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
File: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft (raw, json)
Hash identifier: +qnYoues/MtlXixDv5d0YfHRsV6/566JzJX/GwkINMQ=
Subject key identifier: 49:30:68:21:87:68:33:18:9B:43:DF:63:AB:92:A5:EF:49:DA:97:1C
Authority key identifier: DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
Certificate issuer: /CN=df0198a7b3afdcdd7003562a0871878e238760ad
Certificate serial: 019CA8A0AA35D66570DA4F8301756D09DBBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
Manifest number: 12F8
Signing time: Sun 01 Mar 2026 09:00:27 +0000
Manifest this update: Sun 01 Mar 2026 09:00:27 +0000
Manifest next update: Mon 02 Mar 2026 09:00:27 +0000
Files and hashes: 1: 10zWBAG3yHk6LZ2cT_OBKxWFNWM.roa (hash: 3CyCzPInmv1M2HVwGxzJQ9jqmdcvQHPMZfCVee8QVmg=)
2: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl (hash: IXB/eTLAez2SIvdZPNFHpuU/pswlqsvsDeBT5qMDIA8=)
3: K7-F8r5HaixUXPBxPks_drLfCLM.roa (hash: IxrS8dpVCynttuxgWbJEvLUTdnUOcVknWjS85DsyGnY=)
4: RubVNCawFmtSSykZF5XcDH3aXBc.roa (hash: pb4UIOlvmHSq695BiD6WHLwCWaB/NLP+RzVFb75tWfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:a0:aa:35:d6:65:70:da:4f:83:01:75:6d:09:db:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df0198a7b3afdcdd7003562a0871878e238760ad
Validity
Not Before: Mar 1 09:00:27 2026 GMT
Not After : Mar 2 09:00:27 2026 GMT
Subject: CN=49306821876833189b43df63ab92a5ef49da971c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:12:57:25:85:ae:36:4f:3c:3b:39:46:40:42:
7b:21:5f:36:ad:d3:a2:96:d6:a8:e8:3f:7c:d4:1c:
99:25:57:19:44:30:1a:c8:8d:f3:6e:02:32:28:d6:
1b:07:90:92:d7:81:57:19:79:8d:32:4f:79:e8:99:
7b:ef:5a:11:76:f7:3a:93:fe:aa:7c:0c:fd:0b:9b:
fb:dc:fd:ec:38:55:04:8b:7f:55:9b:41:c9:cb:c5:
a7:0a:08:fd:2e:53:b5:51:77:78:9a:d4:b3:0b:07:
31:33:d9:fc:07:d2:17:c9:86:03:bb:8c:d5:32:f3:
58:39:f2:b8:dc:c8:34:ed:67:1f:31:9a:04:fb:1f:
dd:0e:71:ee:70:5a:44:9a:3a:71:c2:d2:b4:84:9a:
12:50:1b:d1:dc:4d:28:4a:9e:09:1d:91:c1:77:cc:
a2:a4:72:e1:39:83:9f:f6:96:fe:c4:cd:e5:aa:61:
92:de:84:25:cd:8e:ee:30:91:6d:ee:a5:e0:a5:09:
00:7a:bf:a0:b4:f0:eb:61:a9:5c:58:97:aa:06:6f:
69:68:ad:fb:eb:45:12:cc:26:8c:c6:49:93:d3:0d:
09:3b:aa:ee:ad:ef:1b:6f:1d:5b:0b:a0:43:0e:bc:
18:61:d5:22:69:e1:2a:f0:1c:3b:ee:d2:1c:14:83:
e2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:30:68:21:87:68:33:18:9B:43:DF:63:AB:92:A5:EF:49:DA:97:1C
X509v3 Authority Key Identifier:
keyid:DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:07:77:89:f4:c5:78:eb:9f:7f:81:99:b3:1a:c3:c2:6e:82:
5b:46:43:34:90:28:e8:5a:40:e6:5b:3b:3c:12:b8:c7:14:cd:
24:78:97:b0:b8:0e:a6:93:85:ad:dd:b7:d0:da:a8:a6:85:27:
1f:60:d2:bf:0b:4c:e7:69:86:6b:e2:7e:55:e9:52:13:10:8b:
df:f1:24:1f:7c:eb:5f:71:33:70:0d:82:f0:cb:3d:69:70:b0:
11:b4:47:5d:23:2d:3e:8f:c4:0d:24:83:d4:37:f2:47:2e:7a:
c3:84:25:2a:e8:8b:5b:43:c4:fb:8b:9f:46:54:fd:df:53:d2:
f8:d9:99:29:a9:d6:87:87:6d:17:58:a7:0d:03:5c:c7:59:11:
63:ed:56:0f:df:b5:43:43:4c:f1:bc:eb:2e:8e:f0:ab:9a:5e:
a4:ef:23:e6:d0:40:54:ae:33:b0:f1:44:b7:1d:36:e5:83:08:
82:57:70:85:f3:b6:33:92:ae:55:7e:97:52:8a:3d:82:ec:8f:
44:0e:46:90:ae:c8:42:b1:4c:7b:dd:6a:9e:11:7f:ed:17:96:
ed:4f:47:9d:61:63:96:6d:8c:9e:ca:20:cb:6e:6e:a8:a7:d7:
38:44:06:8c:36:a5:9f:4f:9a:6d:23:3a:b0:48:55:33:ae:26:
a5:83:83:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyooKo11mVw2k+DAXVtCdu6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmMDE5OGE3YjNhZmRjZGQ3MDAzNTYyYTA4NzE4NzhlMjM4
NzYwYWQwHhcNMjYwMzAxMDkwMDI3WhcNMjYwMzAyMDkwMDI3WjAzMTEwLwYDVQQD
Eyg0OTMwNjgyMTg3NjgzMzE4OWI0M2RmNjNhYjkyYTVlZjQ5ZGE5NzFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhJXJYWuNk88OzlGQEJ7IV82rdOi
ltao6D981ByZJVcZRDAayI3zbgIyKNYbB5CS14FXGXmNMk956Jl771oRdvc6k/6q
fAz9C5v73P3sOFUEi39Vm0HJy8WnCgj9LlO1UXd4mtSzCwcxM9n8B9IXyYYDu4zV
MvNYOfK43Mg07WcfMZoE+x/dDnHucFpEmjpxwtK0hJoSUBvR3E0oSp4JHZHBd8yi
pHLhOYOf9pb+xM3lqmGS3oQlzY7uMJFt7qXgpQkAer+gtPDrYalcWJeqBm9paK37
60USzCaMxkmT0w0JO6rure8bbx1bC6BDDrwYYdUiaeEq8Bw77tIcFIPimQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEkwaCGHaDMYm0PfY6uSpe9J2pccMB8GA1UdIwQY
MBaAFN8BmKezr9zdcANWKghxh44jh2CtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQt
MGZjYzZjMzAxMWZjLzEvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQtMGZjYzZjMzAxMWZj
LzEvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANAd3ifTF
eOuff4GZsxrDwm6CW0ZDNJAo6FpA5ls7PBK4xxTNJHiXsLgOppOFrd230NqopoUn
H2DSvwtM52mGa+J+VelSExCL3/EkH3zrX3EzcA2C8Ms9aXCwEbRHXSMtPo/EDSSD
1DfyRy56w4QlKuiLW0PE+4ufRlT931PS+NmZKanWh4dtF1inDQNcx1kRY+1WD9+1
Q0NM8bzrLo7wq5pepO8j5tBAVK4zsPFEtx025YMIgldwhfO2M5KuVX6XUoo9guyP
RA5GkK7IQrFMe91qnhF/7ReW7U9HnWFjlm2Mnsogy25uqKfXOEQGjDaln0+abSM6
sEhVM64mpYODfQ==
-----END CERTIFICATE-----
Generated at Sun Mar 1 16:30:41 2026 by rpki-client