Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
File: 3dBY7vGdEboOq68EbnKibl5XJkM.mft (raw, json)
Hash identifier: NKb2j8WcfZ7asr7zEaYhrOvWFQTM9glNYrSZuMBaniU=
Subject key identifier: 05:84:85:22:42:D5:20:86:50:76:85:68:2A:ED:0B:35:4A:02:04:82
Authority key identifier: DD:D0:58:EE:F1:9D:11:BA:0E:AB:AF:04:6E:72:A2:6E:5E:57:26:43
Certificate issuer: /CN=ddd058eef19d11ba0eabaf046e72a26e5e572643
Certificate serial: 019CAB6B0BDF1A677F0459092B3D8FBA561A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dBY7vGdEboOq68EbnKibl5XJkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
Manifest number: 5E
Signing time: Sun 01 Mar 2026 22:00:45 +0000
Manifest this update: Sun 01 Mar 2026 22:00:45 +0000
Manifest next update: Mon 02 Mar 2026 22:00:45 +0000
Files and hashes: 1: 3dBY7vGdEboOq68EbnKibl5XJkM.crl (hash: Ns3vHoCWd4EwSzyoOo1o+tWzN1+NMdS5o0BtMeMdSio=)
2: 6w_LmvhXnOF2ik3DDNvsrEWVCI8.roa (hash: 6W4Vav7RSMNSHDF7FWCiUK0cI2saEqhD9eRkDI4fbG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dBY7vGdEboOq68EbnKibl5XJkM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:0b:df:1a:67:7f:04:59:09:2b:3d:8f:ba:56:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd058eef19d11ba0eabaf046e72a26e5e572643
Validity
Not Before: Mar 1 22:00:45 2026 GMT
Not After : Mar 2 22:00:45 2026 GMT
Subject: CN=0584852242d52086507685682aed0b354a020482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:03:e7:11:a7:2b:8a:a8:84:13:9c:c5:32:02:
ca:43:73:10:45:72:54:8c:dd:24:87:68:6c:39:a3:
b7:d4:ad:1b:3f:13:f9:62:61:e3:23:18:49:57:17:
e1:92:72:7d:12:77:d9:29:b5:6f:5e:c4:e2:5a:4f:
c1:9a:64:29:22:39:35:b6:37:be:80:40:71:58:fc:
d6:88:79:38:7f:fa:be:f4:97:e3:66:a4:fe:f6:cc:
17:c7:f5:f9:a1:75:7f:a6:f2:18:b1:cb:42:b2:a5:
83:df:09:0e:08:10:30:d3:8b:09:69:33:73:97:ba:
f9:bf:f3:d6:65:77:3a:b4:ab:42:e8:36:18:93:85:
db:50:df:48:90:26:ea:c7:5f:0c:07:b8:9d:ae:90:
29:7f:30:5f:e3:4d:12:66:3e:fb:f2:61:b7:8a:00:
75:b2:1c:fe:cb:0c:a8:1b:df:b2:ff:35:35:16:ef:
15:47:01:ee:0d:fd:e8:40:d0:16:1f:44:d7:4f:17:
93:cc:de:01:e3:eb:b4:d4:51:76:00:13:a2:60:1b:
ad:9a:b7:68:2c:c8:84:3b:49:8d:44:25:66:ea:6f:
cf:65:f1:f9:e0:cd:9b:1b:15:f2:c1:fa:8f:b2:56:
13:b4:81:98:32:c3:4c:d0:98:60:b8:06:9a:a8:e8:
b1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:84:85:22:42:D5:20:86:50:76:85:68:2A:ED:0B:35:4A:02:04:82
X509v3 Authority Key Identifier:
keyid:DD:D0:58:EE:F1:9D:11:BA:0E:AB:AF:04:6E:72:A2:6E:5E:57:26:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dBY7vGdEboOq68EbnKibl5XJkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:c8:4f:f3:18:a8:eb:34:ea:15:74:4b:00:65:bf:de:10:ad:
b6:bf:ad:a1:0f:10:1d:05:45:70:e3:7d:7c:8c:fc:0d:fd:9f:
4b:64:60:c3:eb:ef:30:b9:45:e3:08:d2:e2:33:75:95:ef:d8:
c8:dc:a9:e8:b9:22:29:19:4f:0b:e0:0d:95:87:27:cb:a4:b2:
19:1b:36:b9:4d:17:c6:b6:05:cc:60:a1:70:13:b2:27:01:d2:
86:32:8d:6b:96:9d:17:fa:05:32:bc:e6:b7:f8:1c:1a:34:85:
d8:cd:99:e3:40:3d:4b:01:95:08:2c:e1:50:4c:26:54:e3:5c:
5f:a2:68:d6:37:b5:2e:34:6c:cc:9d:4e:48:46:bb:27:56:3f:
a9:92:35:fd:38:d7:00:04:20:8b:06:70:31:7d:f8:5e:0e:68:
3e:93:a4:6e:1d:1c:8c:da:a6:4a:5a:5f:27:f7:1d:89:06:cf:
bf:22:4b:ff:a6:ce:3a:eb:e5:63:3e:32:02:b7:66:ba:40:28:
ef:bf:50:4e:2c:a8:af:58:59:98:d5:a9:3f:61:10:bb:05:5e:
64:96:63:68:86:41:68:e4:40:2c:e1:4e:f4:4b:61:0f:22:ff:
04:74:87:e3:17:0e:57:e9:ca:66:a0:1d:e4:ee:ba:25:d3:44:
94:55:bf:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:26:41 2026 by rpki-client