Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
File: 3dBY7vGdEboOq68EbnKibl5XJkM.mft (raw, json)
Hash identifier: gEoM4qAee3p5+pWY+6NL8kyHfi9vQsCz+lGVBYz/BxI=
Subject key identifier: 4D:FF:0A:D5:46:5F:9E:D6:E7:69:25:EC:7F:F2:3B:13:E8:72:87:03
Authority key identifier: DD:D0:58:EE:F1:9D:11:BA:0E:AB:AF:04:6E:72:A2:6E:5E:57:26:43
Certificate issuer: /CN=ddd058eef19d11ba0eabaf046e72a26e5e572643
Certificate serial: 019DA48B16E4A47306386602580E99CE31DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dBY7vGdEboOq68EbnKibl5XJkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
Manifest number: DF
Signing time: Sun 19 Apr 2026 07:01:11 +0000
Manifest this update: Sun 19 Apr 2026 07:01:11 +0000
Manifest next update: Mon 20 Apr 2026 07:01:11 +0000
Files and hashes: 1: 3dBY7vGdEboOq68EbnKibl5XJkM.crl (hash: QMWARDeej8/8VkdHNC7zwBWJysiP8e4VyL6hcxFUSUM=)
2: 6w_LmvhXnOF2ik3DDNvsrEWVCI8.roa (hash: 6W4Vav7RSMNSHDF7FWCiUK0cI2saEqhD9eRkDI4fbG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dBY7vGdEboOq68EbnKibl5XJkM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8b:16:e4:a4:73:06:38:66:02:58:0e:99:ce:31:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd058eef19d11ba0eabaf046e72a26e5e572643
Validity
Not Before: Apr 19 07:01:11 2026 GMT
Not After : Apr 20 07:01:11 2026 GMT
Subject: CN=4dff0ad5465f9ed6e76925ec7ff23b13e8728703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:08:3a:ab:31:5d:f8:ba:da:26:01:bc:12:ef:
b4:62:8a:62:7e:20:21:6b:6a:c3:5d:8f:8d:67:70:
c9:6a:8f:db:dd:42:b1:f8:67:1f:56:35:87:71:92:
22:3e:89:2b:52:f9:0c:f5:60:74:4f:d0:4c:69:e3:
f3:4e:05:c3:72:65:46:04:3f:92:f8:10:ec:a2:20:
56:b2:ce:86:21:ea:a4:ea:06:e5:af:ad:06:e6:5b:
98:7f:40:a1:46:ba:29:bc:d2:f9:11:4c:b5:ed:f9:
c4:e2:88:45:77:a8:c8:02:e7:1c:5c:4d:a5:19:ee:
47:06:4a:0b:53:a3:70:a1:37:ef:e3:41:fb:b9:fb:
66:3f:c7:ea:78:58:d1:d9:33:fa:48:c1:33:c7:f5:
5b:c7:94:bc:ac:c7:f3:d5:fe:8f:4c:18:37:7d:e0:
ab:20:61:bc:b9:59:d3:a1:75:cc:45:ae:39:6d:11:
40:b8:6f:86:aa:28:5a:a4:d3:ab:16:65:66:cc:af:
b9:59:11:96:77:fb:dc:2b:0a:2b:8f:a2:cb:e5:62:
b5:22:96:93:d7:b3:b5:bc:a1:de:33:a7:f4:9d:86:
c6:b4:65:30:6c:44:c9:ed:cc:1e:aa:df:72:e8:b2:
70:40:a1:f1:3b:b8:8d:aa:7f:66:91:37:71:b4:1d:
6f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:FF:0A:D5:46:5F:9E:D6:E7:69:25:EC:7F:F2:3B:13:E8:72:87:03
X509v3 Authority Key Identifier:
keyid:DD:D0:58:EE:F1:9D:11:BA:0E:AB:AF:04:6E:72:A2:6E:5E:57:26:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dBY7vGdEboOq68EbnKibl5XJkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e4834f-e5d0-4b64-92ce-f5499336c2b4/1/3dBY7vGdEboOq68EbnKibl5XJkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:a9:a5:b7:79:d0:dc:ec:80:1d:98:b0:7d:b7:a3:1b:9e:67:
7a:16:cc:3b:b1:b4:cf:04:9d:f8:40:b5:16:63:22:a3:2f:b6:
6d:ca:91:19:a5:da:27:fd:f5:06:3a:35:a8:28:a3:1c:80:8a:
54:d3:5c:ca:92:fe:9b:1e:98:1c:31:45:c5:dc:5e:71:19:c1:
72:0a:a5:d2:88:27:7f:c7:66:b5:44:f2:be:52:59:2a:7f:3f:
ab:28:f4:db:59:17:f2:40:d9:fb:a1:50:98:90:93:a1:08:da:
c4:45:01:ab:83:f9:de:86:49:f4:bc:92:d7:ca:85:d3:8e:f6:
11:c5:13:54:b6:fc:3e:b3:85:fa:eb:bc:60:52:aa:4c:d5:f2:
91:05:46:1a:cf:9b:90:58:47:57:5f:10:1b:b4:c7:e0:f4:65:
34:db:3d:8f:34:8d:65:34:15:54:8e:61:2b:96:44:ed:e6:72:
9d:aa:e7:e5:d2:44:56:f2:c1:82:a0:81:be:26:11:60:54:52:
46:71:c1:30:83:f0:0a:66:ad:92:31:39:9d:9b:a0:63:03:17:
f8:1d:82:6d:ce:58:86:ee:a0:e5:aa:7b:01:fd:c5:ab:ea:17:
68:09:9c:88:c9:c8:41:c8:82:4d:bd:a0:26:64:0b:ac:3d:10:
6c:e8:1a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:07:18 2026 by rpki-client