Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: m1v9r2eXXKQFXP4KN82UsEQXcz+hHNG86fGUzC12pfU=
Subject key identifier: 0D:4F:36:0A:47:36:B9:5B:39:C2:2E:93:D4:81:36:3B:BB:81:29:E0
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 019CAB6B69F20B423B6B2958891C70EDD878
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 102F
Signing time: Sun 01 Mar 2026 22:01:09 +0000
Manifest this update: Sun 01 Mar 2026 22:01:09 +0000
Manifest next update: Mon 02 Mar 2026 22:01:09 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: HaDgVvxUYK34CCQCM99GwoeL4LwsggDUy91aiGD4wUY=)
2: 41nL5ZV4qJFS5Q2xxQRuLMPoip0.roa (hash: BJiNQu65WQwhnTLfbv69MpyE5IwMrQPr3mJhDc7s1uM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:69:f2:0b:42:3b:6b:29:58:89:1c:70:ed:d8:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: Mar 1 22:01:09 2026 GMT
Not After : Mar 2 22:01:09 2026 GMT
Subject: CN=0d4f360a4736b95b39c22e93d481363bbb8129e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:05:36:b7:27:5d:bf:2b:de:4e:3b:70:5c:cb:
66:4d:ca:3e:a8:d3:9f:13:53:0b:23:3a:4c:75:60:
9a:de:fe:14:a6:b3:e0:82:f1:8b:4a:5d:37:1a:ca:
82:8d:13:bd:f0:de:89:56:bb:d7:6a:5f:a3:f9:98:
a6:fa:a8:0d:fb:d8:8b:79:82:93:a2:4e:80:6a:b6:
e7:67:0b:d4:07:49:42:26:9a:81:6d:08:a0:e4:35:
d5:76:c0:62:a8:72:ef:57:1f:ff:37:69:69:0b:4a:
0a:00:b1:b5:4b:cd:59:53:e9:51:c8:fa:52:67:7d:
c0:bd:14:ad:86:9b:ce:75:8e:fa:c3:a5:fe:d3:f0:
66:ae:aa:0e:87:fa:3b:af:35:50:30:2b:5c:e5:46:
43:a6:19:57:8c:b2:6c:86:19:94:95:e8:6a:9e:50:
31:7d:40:39:2a:b1:f7:c8:13:58:0e:c5:57:9f:4c:
f2:37:99:15:4d:7b:54:af:42:00:ea:d1:60:a5:c6:
25:02:75:ca:8c:f6:c5:29:16:8c:61:02:8c:e4:b6:
12:61:b0:b7:41:50:1e:04:8b:f7:e9:3c:0b:48:cf:
c6:77:5c:27:f4:77:18:89:a4:53:89:35:8e:f0:18:
3d:b3:12:e0:67:fb:f7:2e:ed:12:c8:3e:1a:f7:d0:
a7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:4F:36:0A:47:36:B9:5B:39:C2:2E:93:D4:81:36:3B:BB:81:29:E0
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:6a:a0:b0:67:70:df:8b:b5:d1:64:43:0b:49:3f:92:9a:76:
c9:fd:54:10:f4:9e:7c:92:26:9c:02:e7:02:34:ae:0d:34:2d:
71:fc:2f:c6:7c:28:56:29:bc:d4:c8:11:45:60:ee:68:5a:4e:
90:80:06:b1:23:f2:3c:33:d1:94:39:db:0a:96:6d:a8:99:02:
11:71:07:dd:d6:48:58:5d:ee:43:7a:66:fd:63:84:99:90:81:
0f:46:f4:dd:92:9b:8a:11:52:d7:07:91:9b:01:8c:9a:80:01:
9b:35:10:99:33:10:94:9f:f4:8a:da:20:db:07:84:12:90:c6:
e9:57:bb:b1:c8:0c:fb:cb:08:8e:7f:c2:a0:50:89:46:15:81:
e6:c5:8b:07:6d:61:ad:59:6a:b4:86:7f:41:ac:4a:63:cd:50:
3d:99:b7:76:8f:9a:87:3d:a9:fa:f7:3f:01:af:8d:f0:aa:d7:
69:8c:cf:44:73:6c:2c:cf:a4:e2:31:77:ce:ff:2e:a8:18:41:
46:07:ca:37:a3:58:0e:1c:11:d8:c2:15:19:81:49:60:71:41:
c9:9e:79:63:4f:77:71:8e:4c:3e:ff:8e:95:39:7c:f5:e4:07:
e1:f2:d2:dc:bd:20:16:d1:70:77:16:f6:0b:b9:90:b5:ba:60:
0a:57:18:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:30:57 2026 by rpki-client