Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft
File: A3hitGCMefRQKV7FyAx8etbf4qI.mft (raw, json)
Hash identifier: h3L8cWzUsDgLcUd2oJXQ+R0cznXyMNC3ZmBoGurdbao=
Subject key identifier: 4E:62:D0:62:2A:DA:91:75:F0:AF:B6:BA:D1:1B:98:A5:42:B2:35:3A
Authority key identifier: 03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
Certificate issuer: /CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Certificate serial: 019CACEBE14530ABBBF12CF466DF60D30FDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft
Manifest number: 1358
Signing time: Mon 02 Mar 2026 05:01:05 +0000
Manifest this update: Mon 02 Mar 2026 05:01:05 +0000
Manifest next update: Tue 03 Mar 2026 05:01:05 +0000
Files and hashes: 1: A3hitGCMefRQKV7FyAx8etbf4qI.crl (hash: Nn8HUutWDnqJwfm5xD35ORFTYbBJ4HwrjOQ9sCb99kw=)
2: WxImH-LXs0d6zerX8rbJADEs0b4.roa (hash: 1hpI1k0NLPuLhvebFCrou0mJyF8538s4/VSeky9KzZw=)
3: bL1SpyyBTi0d8Dsx8Tdvxr7qEag.roa (hash: j5UJJAXCgmYG9UJK159eJdYgk2A4TavF4TUvXoNb9wo=)
4: jEFjyAFrXDcV4VZRl6Fg4c-tBbI.roa (hash: SCNZ1jcp85B9JQOpcfN9KIw7MGVU7KDV6MeoqHXZssQ=)
5: x9MYFIf2PoZ4-7JYUxzgREaOECQ.roa (hash: pgslKdJlC5emb7XS7811wddrmA1E6OgVQZWwLKWbTac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:e1:45:30:ab:bb:f1:2c:f4:66:df:60:d3:0f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Validity
Not Before: Mar 2 05:01:05 2026 GMT
Not After : Mar 3 05:01:05 2026 GMT
Subject: CN=4e62d0622ada9175f0afb6bad11b98a542b2353a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f3:1d:7e:d8:b3:53:0d:37:4a:bc:35:40:93:
c1:6e:c1:31:64:0a:b0:2c:07:ac:2f:a0:d1:7b:05:
c7:7e:98:71:b1:6d:5d:15:d5:cb:c8:ad:d3:0d:4d:
30:c1:dc:cb:05:86:ff:83:1d:5d:cd:b9:8b:fe:74:
20:56:86:d0:ea:f7:ea:b8:a1:5d:31:34:7e:0a:87:
b2:10:dc:7f:9e:4a:51:8a:6a:24:6d:0e:9b:69:c1:
86:b8:2b:cd:ea:9f:fd:22:cd:06:b0:99:76:eb:78:
a6:af:11:5f:3c:a0:eb:e5:cd:30:ba:6d:33:9e:78:
2d:08:2a:d2:71:39:38:af:3f:0a:c8:0e:11:36:05:
77:59:3e:83:d0:3b:ea:55:65:5b:23:7d:16:5a:31:
b9:11:b3:8b:a9:ae:60:d2:bc:7d:f3:5c:1e:d3:9b:
a0:7b:71:44:96:0a:6f:12:61:79:1f:ed:50:c3:6e:
38:57:25:05:3a:0d:eb:87:14:7e:9c:68:ac:12:a2:
2a:cb:7d:14:9c:97:39:9c:d9:63:40:13:a5:c6:82:
f3:68:87:dd:d1:bb:58:b4:9a:23:93:2f:d1:83:07:
06:73:34:0f:0b:b9:77:4f:15:82:39:10:fc:0d:ed:
c5:d5:9b:8f:6e:d8:50:58:dd:d3:e0:34:c3:48:89:
c3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:62:D0:62:2A:DA:91:75:F0:AF:B6:BA:D1:1B:98:A5:42:B2:35:3A
X509v3 Authority Key Identifier:
keyid:03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:ff:d0:bd:ee:8f:34:5e:c2:04:a8:54:2a:65:35:74:b7:77:
68:e4:22:5e:4f:85:a5:34:e7:67:bc:06:04:44:b5:2a:27:1f:
77:f3:01:e9:b8:e8:48:57:75:60:72:a2:5a:c4:a5:2a:23:e1:
2e:48:7c:bc:0f:15:66:81:8d:29:47:c7:e0:24:4e:e4:66:b4:
53:f2:58:ee:5c:51:6f:43:e4:57:b8:70:b6:e8:61:ed:19:41:
55:1b:10:48:2d:5f:8b:e0:b6:4d:40:ec:01:8d:d6:3d:4e:1d:
6b:40:f0:c5:65:5b:4a:f8:9c:75:3a:b5:c4:ab:69:22:b9:c4:
5b:cf:28:5e:27:f6:2f:2f:ac:72:59:20:8f:ac:34:0c:dd:47:
a7:be:c3:6e:f3:f1:c1:18:f1:1a:38:df:b0:ac:50:19:ee:26:
4e:b5:8c:42:d4:8c:13:7a:34:76:c3:58:6d:0d:63:7e:8e:de:
c2:df:89:48:d4:99:35:cc:83:59:0f:4e:cb:c0:2c:d5:a2:bd:
32:72:1c:08:74:e1:72:b9:de:52:9b:e8:d6:3f:37:9f:13:a7:
4d:96:e3:03:ab:cd:24:34:1b:0e:2d:bb:46:a2:3f:d3:25:ed:
1f:c7:22:3a:ac:5b:ad:54:a5:b2:40:79:72:1b:27:16:38:e1:
33:64:49:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:02:15 2026 by rpki-client