Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
File: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft (raw, json)
Hash identifier: kfXsoccZbkSk3warD6SI379bNldDRbId6NY1aKR3Zto=
Subject key identifier: 1D:2A:34:38:F3:61:62:43:BE:CE:DF:53:18:9A:48:94:16:C1:5A:D5
Authority key identifier: DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
Certificate issuer: /CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Certificate serial: 019D9AAC20F1FFBEC97ECD4F8736270E303B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
Manifest number: 0511
Signing time: Fri 17 Apr 2026 09:01:05 +0000
Manifest this update: Fri 17 Apr 2026 09:01:05 +0000
Manifest next update: Sat 18 Apr 2026 09:01:05 +0000
Files and hashes: 1: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl (hash: lrMigIqS4ZWPBv+Z6KTCHIRR8shYo2/pAZEauAlIO9A=)
2: _tzPs4jJj87d7Cluh9sgQm06Oy8.asa (hash: zWtQvDfWVHth5+g0jzyRaLgIhTdtWs7KPbDKeSI3a2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:20:f1:ff:be:c9:7e:cd:4f:87:36:27:0e:30:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Validity
Not Before: Apr 17 09:01:05 2026 GMT
Not After : Apr 18 09:01:05 2026 GMT
Subject: CN=1d2a3438f3616243becedf53189a489416c15ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d4:39:f6:15:76:4a:f2:66:ee:e3:0d:ad:93:
51:c0:4b:8e:4c:df:63:6b:4d:de:2d:6b:16:39:a1:
2c:3c:a7:9e:7c:af:ba:02:cb:dd:15:07:69:32:6e:
4a:5a:f5:b4:b8:bc:c0:e5:85:66:dc:e1:ce:c0:c5:
a2:70:fa:8f:07:bc:a7:0b:1e:4c:29:bf:e9:9a:71:
e9:fe:18:23:25:52:bf:7c:ea:25:84:28:06:65:c3:
8b:f8:a5:66:13:8d:84:9b:74:77:85:ab:8c:99:ae:
6c:ff:79:60:29:a3:96:18:b0:46:1d:0f:00:35:8e:
01:fd:2f:6c:dd:37:d0:50:4a:9e:80:7f:5e:bc:2a:
a2:e9:1f:2e:67:e0:d8:0d:8a:e1:f2:c4:98:71:56:
f5:dc:1d:e4:d6:6d:46:ef:1e:71:3e:9c:b4:8f:a3:
d4:cf:ad:9a:74:bf:53:66:f8:e5:77:5a:1f:63:50:
d2:09:bf:71:8a:02:22:95:8e:79:ff:21:72:c6:57:
e5:75:71:b1:b0:31:06:8c:c1:05:7e:fa:f1:52:bb:
16:e0:99:8f:e9:ae:99:9e:52:13:ab:ea:0e:cc:a7:
e0:e6:b2:f5:3b:84:8f:08:16:32:17:95:f0:51:1d:
2b:8f:91:79:70:f6:c0:ab:e1:7f:60:24:57:1a:a9:
5c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2A:34:38:F3:61:62:43:BE:CE:DF:53:18:9A:48:94:16:C1:5A:D5
X509v3 Authority Key Identifier:
keyid:DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:a5:36:dd:14:55:5d:a0:3b:b2:9b:a3:9d:9b:74:29:04:20:
d3:56:23:dd:9a:e9:87:22:28:dd:fb:87:12:4b:9d:ca:ad:66:
a2:29:43:91:70:2b:28:26:da:c1:36:7a:a8:b2:ae:b6:ed:30:
36:b5:40:a7:32:66:d7:f3:a8:2c:65:cb:a4:0e:42:fe:75:1b:
d5:61:90:c3:67:03:ef:c8:31:74:3b:c2:c9:55:ad:47:80:ff:
cd:5b:ac:45:8c:48:d2:10:38:6f:ae:73:a6:76:03:c2:80:69:
6f:29:bc:10:b5:f8:74:87:da:63:8b:31:6a:c7:ac:d1:c2:f0:
f8:b3:91:cd:07:6c:92:a9:62:a1:3d:9c:15:34:0a:74:56:92:
60:54:a1:9e:a8:4c:15:df:00:d8:ec:6e:ea:a9:b9:14:2b:55:
52:c7:b8:db:b2:10:b9:49:5a:23:0d:1d:f3:7f:d4:e4:2c:44:
30:0b:1e:d3:56:a0:ba:88:99:05:8a:5b:31:c0:b2:0e:8a:15:
c5:10:b5:49:aa:86:96:43:4e:26:8f:d3:6c:4b:01:06:9f:53:
1e:1b:eb:8b:a0:fb:0c:1f:e5:76:a0:68:0c:cb:ba:aa:30:c5:
35:4e:98:a3:6a:a1:74:2c:cf:b7:02:43:a2:05:4f:e7:93:37:
f1:42:d9:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:18:39 2026 by rpki-client