Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
File: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft (raw, json)
Hash identifier: MUlo5546zAiQcQcT/AV/co2gG0udxMLUyRPx+ZCwmEM=
Subject key identifier: 68:D2:AF:54:E6:83:FB:5B:60:2E:17:AE:17:56:CD:6F:7B:87:51:F4
Authority key identifier: DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
Certificate issuer: /CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Certificate serial: 019CA9461C367D8E0BB3FA0A947A2572E978
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
Manifest number: 0494
Signing time: Sun 01 Mar 2026 12:01:10 +0000
Manifest this update: Sun 01 Mar 2026 12:01:10 +0000
Manifest next update: Mon 02 Mar 2026 12:01:10 +0000
Files and hashes: 1: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl (hash: 4lKGvVda/dp20UzjFJyhOnk37LSyRrBSbWq0ONuXuL8=)
2: _tzPs4jJj87d7Cluh9sgQm06Oy8.asa (hash: zWtQvDfWVHth5+g0jzyRaLgIhTdtWs7KPbDKeSI3a2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:46:1c:36:7d:8e:0b:b3:fa:0a:94:7a:25:72:e9:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Validity
Not Before: Mar 1 12:01:10 2026 GMT
Not After : Mar 2 12:01:10 2026 GMT
Subject: CN=68d2af54e683fb5b602e17ae1756cd6f7b8751f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d6:b2:eb:32:5e:2d:cf:c1:be:80:a5:f1:29:
44:2a:16:1c:3a:99:9e:1e:26:9d:27:71:f1:01:fa:
92:48:9a:65:d4:06:ba:54:ca:50:b3:6f:df:b2:43:
f5:b4:2a:a8:55:4d:71:4b:36:10:89:7c:a0:19:1f:
7a:6d:f4:60:a7:a0:80:62:f3:15:d0:3f:7c:74:ab:
b8:bb:b6:8a:a6:55:35:46:cc:7d:35:84:45:95:7c:
ad:89:7f:8b:ac:d2:ff:f9:e9:7d:a2:87:f3:70:68:
2d:2b:22:f0:4c:0d:6e:17:5f:f5:33:32:1f:ac:c9:
9d:d8:fa:fd:33:f6:9a:16:5a:9b:79:f9:f7:a3:09:
f3:ea:e7:31:32:94:9b:2c:5e:99:3e:d3:25:d8:3a:
b4:93:54:d7:35:13:21:a7:09:8c:ff:07:52:2b:87:
81:2a:79:79:4e:58:f7:bf:d5:de:c4:54:8b:8b:84:
51:e9:e0:21:a3:50:bb:62:e1:ab:5b:a3:ee:e6:ce:
aa:91:4a:38:0e:21:32:ec:1d:12:82:31:2b:1e:ee:
2c:2c:7e:ce:47:e0:53:2e:8c:88:e0:f4:4e:f6:b9:
72:0e:4c:22:90:59:c0:cc:7b:d5:d3:7c:05:65:a9:
32:82:1c:c7:ba:36:11:62:6c:ad:0e:39:4d:b9:70:
cd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D2:AF:54:E6:83:FB:5B:60:2E:17:AE:17:56:CD:6F:7B:87:51:F4
X509v3 Authority Key Identifier:
keyid:DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:8f:d5:f8:cc:8b:57:a8:8a:be:26:5b:65:e7:35:4a:98:80:
f1:3a:63:88:84:51:1f:5e:8c:55:1b:fb:42:15:2f:8b:db:73:
ff:b0:f5:ca:c1:cb:f1:0e:7d:c1:64:7a:0c:98:69:d8:ce:ac:
eb:c2:b2:4f:23:2d:7c:39:e1:10:3b:0a:c4:07:91:7a:15:f6:
10:3f:bd:e2:c2:32:66:39:34:76:8a:09:8a:ca:ba:a6:5b:e9:
4e:43:be:f3:f8:6a:4c:9f:bf:19:97:d9:9e:de:e8:94:19:f7:
a3:cb:3b:66:c7:b5:16:71:01:d3:0d:24:da:0d:cf:79:a2:c0:
d5:88:91:bc:69:c1:fa:5a:52:0b:b9:59:cd:ba:bd:be:d3:e2:
50:3e:0b:ce:e5:1d:0e:66:43:26:64:04:70:2d:48:9b:03:49:
e8:ae:da:18:5e:a5:bf:5f:1b:3b:ce:0d:90:99:1e:42:cb:4a:
20:c3:73:31:df:74:98:76:bb:3f:43:c2:4c:34:72:c8:06:80:
21:93:f8:6e:df:24:52:0d:11:e6:a8:1a:45:99:9f:ba:68:c1:
39:12:74:17:a1:3d:9e:1c:66:d8:18:29:f3:a3:81:a0:34:f3:
79:7e:96:08:55:82:4a:27:ac:46:8c:c9:15:77:04:93:f9:7f:
f4:a8:72:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 14:47:53 2026 by rpki-client