Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
File: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft (raw, json)
Hash identifier: WcS+oK+7JsahkC3d2Z144VM9MHEu1g/KlTuil0Q/eE0=
Subject key identifier: 33:77:5A:B9:41:3B:F2:A9:38:21:6E:20:14:0E:7B:D3:86:04:1D:E4
Authority key identifier: DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
Certificate issuer: /CN=de23f18c576d6fa609133533c0d0e38d7732c652
Certificate serial: 019CAEA31FF08659915BA4FBB7023B3FECCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
Manifest number: 04F0
Signing time: Mon 02 Mar 2026 13:00:52 +0000
Manifest this update: Mon 02 Mar 2026 13:00:52 +0000
Manifest next update: Tue 03 Mar 2026 13:00:52 +0000
Files and hashes: 1: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl (hash: SU2gduF+eTRRgp5Ng9QLPTkCzL3F7rF3brLWYicIN+U=)
2: GUtmTasoYg9vC_X6TeYo5LqnthI.roa (hash: h4pcOYZGVhmcTnXyyDF08GhSsY9jTxf6Vxsbll0E63Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:1f:f0:86:59:91:5b:a4:fb:b7:02:3b:3f:ec:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de23f18c576d6fa609133533c0d0e38d7732c652
Validity
Not Before: Mar 2 13:00:52 2026 GMT
Not After : Mar 3 13:00:52 2026 GMT
Subject: CN=33775ab9413bf2a938216e20140e7bd386041de4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f3:8e:14:61:49:db:6a:d4:64:e8:ca:20:e9:
61:62:25:a9:89:64:92:a3:f3:97:e7:e8:c7:1c:ea:
8c:60:70:21:9d:ad:a1:b5:1d:ed:4c:e1:66:13:11:
f3:99:f4:1a:80:00:b2:f9:0a:fa:41:4d:f2:91:55:
20:70:0e:92:3c:46:cd:66:f0:2e:73:77:c9:09:1d:
c6:49:5f:fe:1c:d3:57:6e:39:96:ba:80:7a:1f:60:
fd:00:8f:3e:43:e7:30:0f:bb:16:8a:b7:e0:8e:e6:
5b:90:4a:7f:24:53:49:6b:86:c4:17:fb:cb:81:94:
53:01:90:94:28:60:e9:8f:86:c1:00:48:c7:81:2e:
ac:d9:82:fc:e6:1a:6a:1b:df:77:39:89:25:6b:d4:
18:86:93:78:8f:ff:ce:c3:cf:5e:c9:3c:26:ed:26:
2f:de:ba:e3:66:4b:79:4f:d8:17:ee:62:8d:ec:0c:
27:c8:14:9f:fc:7b:9a:b5:fb:52:30:97:c8:ae:3c:
0b:6b:08:1d:be:8f:5b:6a:25:a0:c7:0e:71:79:64:
86:d3:37:29:c2:41:51:ad:62:ce:c7:52:05:8a:94:
2a:1a:49:38:0a:d1:37:83:c8:d7:75:55:bc:37:26:
d2:46:7b:1f:0c:f6:f8:11:90:9a:df:b0:fc:26:3f:
72:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:77:5A:B9:41:3B:F2:A9:38:21:6E:20:14:0E:7B:D3:86:04:1D:E4
X509v3 Authority Key Identifier:
keyid:DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:7d:30:3a:53:76:46:1f:23:c6:4b:70:fe:a6:72:53:9c:36:
0b:b5:14:5c:45:5f:74:8e:30:c0:33:88:a2:ae:c8:49:71:5f:
12:9b:83:16:2d:7e:07:90:96:75:0a:fa:c3:3f:2d:89:ed:a2:
1d:8d:ef:3b:f9:44:86:9b:41:d3:76:f7:81:22:6f:54:67:51:
8e:f4:bc:da:ee:7e:62:6a:74:fa:0b:8a:4c:8e:ea:22:db:43:
fe:ea:d0:28:5f:a7:fd:f1:24:f8:6b:47:a0:1c:bd:f0:50:ab:
82:5d:34:3f:1e:95:8e:f7:0c:17:3f:4d:78:cd:3e:e8:7d:ba:
37:42:5b:c3:73:9c:d0:ab:14:c9:ac:f1:fd:bb:6d:56:18:4d:
09:0b:ed:32:9b:f7:42:a5:aa:57:44:77:b5:6b:6d:74:a4:ac:
57:a3:24:0b:7e:72:b2:9e:42:51:64:31:12:ce:c8:d1:16:53:
69:c0:92:a5:f1:77:a3:78:7f:e3:0b:ed:47:4d:d3:eb:20:82:
06:5b:fb:95:c7:13:16:e8:b1:ea:10:cb:31:25:a4:fc:d5:17:
64:7f:fc:ee:0a:28:6b:59:1b:77:4e:09:bb:0a:d9:ef:90:38:
ba:bb:0b:1c:f7:57:84:45:82:e5:3c:eb:89:11:dd:76:09:d8:
b9:6f:99:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 23:23:41 2026 by rpki-client