Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: wXyGnf5+CH+XQYKn2MTZElb1pfAx6sQFMaeQmEvYUSQ=
Subject key identifier: A9:92:7B:A4:AC:5E:7E:F4:04:55:08:DE:E2:1F:16:68:C8:43:A5:EC
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 019CABD9D341E898CD7C5F7556FF959C6421
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 00:01:45 +0000
Manifest this update: Mon 02 Mar 2026 00:01:45 +0000
Manifest next update: Tue 03 Mar 2026 00:01:45 +0000
Files and hashes: 1: 36CB5eigCHYIuRmXqrnDW_-F3Xc.roa (hash: KcH/S3GFg0T0gWVpA5XkZVyUjTJRMZNW3hzXP6Ng0zo=)
2: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: ksQFo8bvLqNLIiz2Ir++E0MmDQbKLujvBervlEZZ2gA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:d3:41:e8:98:cd:7c:5f:75:56:ff:95:9c:64:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: Mar 2 00:01:45 2026 GMT
Not After : Mar 3 00:01:45 2026 GMT
Subject: CN=a9927ba4ac5e7ef4045508dee21f1668c843a5ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c9:2a:45:dc:e8:67:59:75:43:36:d6:a8:cc:
22:7c:7b:e6:47:33:5a:96:01:ea:da:91:c1:54:c9:
82:4a:e6:70:7e:9f:d5:c8:5d:ce:da:54:ce:c9:6b:
70:b0:ed:a9:a9:5c:c4:b4:5c:51:34:e6:c7:b5:88:
81:eb:69:59:e1:ac:91:8d:ea:69:6c:f5:0e:a7:f5:
5d:b4:2f:a6:73:91:c0:38:dd:2f:17:34:0d:bd:99:
2b:15:c9:09:3e:b6:21:dd:90:06:33:90:21:f4:61:
79:6f:cb:e8:b0:ca:f4:aa:3f:55:9f:6c:02:31:8e:
a8:fc:9d:5c:9f:86:01:00:33:69:c7:fb:7b:45:05:
8a:48:75:4e:d7:32:c4:d0:fd:1f:56:20:42:dc:ef:
85:c3:db:63:09:a8:03:33:1d:c8:7c:de:29:4c:f9:
d6:e8:eb:f3:98:bc:65:92:c1:bc:5c:aa:ce:b6:17:
e6:25:fb:bc:1f:c8:a5:84:2c:2a:63:c0:ea:04:97:
a8:d7:20:71:bc:d7:f1:e7:df:79:85:2d:01:fa:28:
97:83:f0:76:47:e0:60:58:d5:f8:fa:5d:e5:3c:3e:
6d:1c:3e:80:b9:6b:ca:8a:04:6b:e5:9d:dd:52:6f:
c2:d5:f3:5d:ae:6c:78:38:a0:71:9f:aa:47:2e:8b:
b0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:92:7B:A4:AC:5E:7E:F4:04:55:08:DE:E2:1F:16:68:C8:43:A5:EC
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:fe:e5:c1:3c:6d:0a:3b:fc:0d:aa:bc:db:76:d1:4d:40:99:
53:0f:f5:c7:7b:ce:ab:cd:2a:1d:8a:cc:7f:53:f9:b5:7c:ca:
de:ee:2a:3c:eb:36:dc:da:dc:9f:75:9f:23:6f:73:75:e3:d7:
c0:36:51:95:bf:7d:c5:8a:6a:55:26:46:88:8a:aa:8c:06:88:
af:21:e6:55:7f:20:af:b7:ee:83:72:5c:8f:0a:73:77:0a:18:
3c:9f:01:dc:41:6f:25:b4:d5:b1:38:a2:22:d2:53:9d:e2:f5:
28:ab:3c:85:1e:56:40:da:b2:f3:c7:33:82:74:9d:a9:70:1f:
70:12:a4:31:14:66:bc:8b:11:f2:bb:77:fd:17:81:50:41:05:
a3:a4:3d:39:57:4b:a3:5b:36:b3:96:a0:d7:f7:2e:89:46:bf:
25:13:76:49:cf:d5:17:76:f1:3b:4b:7f:56:aa:cb:49:19:21:
55:df:1f:89:f8:62:f4:85:77:d7:47:67:ff:a8:55:1f:49:16:
02:6e:33:29:af:cb:68:a1:48:bc:da:65:a6:c3:6a:d9:7d:1c:
f1:8c:80:1e:7c:8c:62:94:6d:ed:cc:f8:4c:b0:c3:c5:c6:9b:
c0:a0:e1:18:7f:bf:68:9b:79:ac:80:b3:00:91:75:a0:ce:92:
2a:ee:d6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:44:29 2026 by rpki-client