Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
File: 3f20crHtWewvNw8g-rSHlDnFMY8.mft (raw, json)
Hash identifier: IysGcVnZ5DyvqZ2zu/pKIENFDmB7tsxjDrQpuP9bvbg=
Subject key identifier: DD:BB:48:9C:9C:6D:CA:3E:24:CC:F0:F2:57:25:69:66:DC:D3:E0:69
Authority key identifier: DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F
Certificate issuer: /CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f
Certificate serial: 019CAB6B2860E9B0F0FE0F08B979F6EC2E02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
Manifest number: 5E
Signing time: Sun 01 Mar 2026 22:00:52 +0000
Manifest this update: Sun 01 Mar 2026 22:00:52 +0000
Manifest next update: Mon 02 Mar 2026 22:00:52 +0000
Files and hashes: 1: 3f20crHtWewvNw8g-rSHlDnFMY8.crl (hash: KmAYdeeqFUbHmwtBg3HhX6vhE7uMtgfmXMO/IGa3WEs=)
2: ZMQkud9K3mvXdpjh-yoqav-Fm2A.roa (hash: rezLl6nocyRRaT4FpZnJ5CHwHhiv5ot72qwHgOZEFQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:28:60:e9:b0:f0:fe:0f:08:b9:79:f6:ec:2e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfdb472b1ed59ec2f370f20fab4879439c5318f
Validity
Not Before: Mar 1 22:00:52 2026 GMT
Not After : Mar 2 22:00:52 2026 GMT
Subject: CN=ddbb489c9c6dca3e24ccf0f257256966dcd3e069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:97:d9:dc:ef:6e:bf:38:75:72:66:48:92:bc:
b0:1a:18:26:6c:ee:27:d7:b7:23:6b:35:ec:89:89:
45:c9:3b:f8:64:8f:02:19:a2:32:f9:ac:55:ac:a6:
bd:b3:07:74:6b:19:ed:9e:cf:52:b6:8e:22:df:e2:
be:ec:5c:34:5a:cf:13:17:bc:c0:01:df:57:0b:29:
81:58:e6:5a:57:54:08:d2:f7:23:02:3c:74:31:07:
54:8a:72:39:2f:49:97:7f:2c:09:62:2c:32:45:2e:
bb:16:99:1b:fd:6d:68:22:60:fa:b5:33:b6:a7:89:
40:18:ad:c7:e7:a0:3f:08:05:8d:b0:61:8c:bc:00:
39:46:ce:4e:3a:91:db:e5:cb:18:8a:3b:c0:23:52:
5d:89:59:88:f2:5f:e3:03:2c:b6:8c:76:00:7b:f5:
92:94:e4:69:0d:82:01:28:5e:0c:ea:f9:3f:26:66:
a7:d7:67:58:bc:01:c7:86:d7:be:ab:83:5d:b2:87:
5a:91:fc:86:49:d8:58:00:b9:6e:1a:97:d9:8a:c0:
c0:d6:95:3d:10:ae:75:25:71:7b:50:69:dc:fc:c8:
63:39:fb:28:dc:9f:3d:6f:38:72:eb:db:67:08:97:
b1:65:de:a2:95:74:38:c6:b5:6d:e0:e4:b4:b8:07:
94:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BB:48:9C:9C:6D:CA:3E:24:CC:F0:F2:57:25:69:66:DC:D3:E0:69
X509v3 Authority Key Identifier:
keyid:DD:FD:B4:72:B1:ED:59:EC:2F:37:0F:20:FA:B4:87:94:39:C5:31:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f20crHtWewvNw8g-rSHlDnFMY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8d4107-3c59-44d4-816f-3a4e8b9da5be/1/3f20crHtWewvNw8g-rSHlDnFMY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:17:78:00:b7:6e:03:47:c0:ed:f0:a3:3a:6e:9c:5c:c3:a9:
c6:6f:3d:b7:c1:c1:bc:c3:bc:45:dd:1b:fb:26:03:23:5f:d4:
11:4e:54:89:6f:30:25:a0:89:31:94:16:a4:54:7e:90:0f:56:
70:3b:ea:f9:52:ec:f8:90:be:cd:4a:9d:b4:d5:86:e5:b6:c5:
39:a2:0f:81:e2:dd:ba:ae:4d:c1:cc:59:66:20:32:b0:9f:20:
a5:d0:64:f2:27:9d:11:30:0b:00:f4:26:f6:f6:70:73:1e:e2:
2e:5d:7a:fd:f7:09:ae:51:fc:fc:ea:0b:f4:ad:ae:cc:2a:37:
01:02:43:03:12:a9:8f:0b:17:ca:90:c7:1d:27:47:b7:9c:2a:
09:e0:08:80:cf:35:49:83:07:87:54:70:7c:72:ca:43:f9:0f:
1a:bc:17:8c:c7:7d:5c:da:00:39:4e:82:31:2b:4f:aa:66:6a:
15:20:72:ea:f7:c9:e0:04:56:fc:77:b6:b0:fe:f2:d4:11:90:
e5:b3:31:fb:6a:5d:2a:bf:65:8f:df:77:e0:b5:1a:7b:5f:04:
98:47:cb:2e:8d:7f:01:c8:d8:b9:d9:4f:2b:b8:c4:f5:50:1e:
48:95:15:50:f1:67:0f:2c:6e:ab:c7:4c:d8:ea:63:1c:07:03:
e1:7b:c4:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrayhg6bDw/g8IuXn27C4CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZmRiNDcyYjFlZDU5ZWMyZjM3MGYyMGZhYjQ4Nzk0Mzlj
NTMxOGYwHhcNMjYwMzAxMjIwMDUyWhcNMjYwMzAyMjIwMDUyWjAzMTEwLwYDVQQD
EyhkZGJiNDg5YzljNmRjYTNlMjRjY2YwZjI1NzI1Njk2NmRjZDNlMDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZfZ3O9uvzh1cmZIkrywGhgmbO4n
17cjazXsiYlFyTv4ZI8CGaIy+axVrKa9swd0axntns9Sto4i3+K+7Fw0Ws8TF7zA
Ad9XCymBWOZaV1QI0vcjAjx0MQdUinI5L0mXfywJYiwyRS67Fpkb/W1oImD6tTO2
p4lAGK3H56A/CAWNsGGMvAA5Rs5OOpHb5csYijvAI1JdiVmI8l/jAyy2jHYAe/WS
lORpDYIBKF4M6vk/Jman12dYvAHHhte+q4NdsodakfyGSdhYALluGpfZisDA1pU9
EK51JXF7UGnc/MhjOfso3J89bzhy69tnCJexZd6ilXQ4xrVt4OS0uAeUGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN27SJycbco+JMzw8lclaWbc0+BpMB8GA1UdIwQY
MBaAFN39tHKx7VnsLzcPIPq0h5Q5xTGPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2YyMGNySHRXZXd2Tnc4Zy1yU0hsRG5GTVk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC84ZDQxMDctM2M1OS00NGQ0LTgxNmYt
M2E0ZThiOWRhNWJlLzEvM2YyMGNySHRXZXd2Tnc4Zy1yU0hsRG5GTVk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC84ZDQxMDctM2M1OS00NGQ0LTgxNmYtM2E0ZThiOWRhNWJl
LzEvM2YyMGNySHRXZXd2Tnc4Zy1yU0hsRG5GTVk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFhd4ALdu
A0fA7fCjOm6cXMOpxm89t8HBvMO8Rd0b+yYDI1/UEU5UiW8wJaCJMZQWpFR+kA9W
cDvq+VLs+JC+zUqdtNWG5bbFOaIPgeLduq5NwcxZZiAysJ8gpdBk8iedETALAPQm
9vZwcx7iLl16/fcJrlH8/OoL9K2uzCo3AQJDAxKpjwsXypDHHSdHt5wqCeAIgM81
SYMHh1RwfHLKQ/kPGrwXjMd9XNoAOU6CMStPqmZqFSBy6vfJ4ARW/He2sP7y1BGQ
5bMx+2pdKr9lj9934LUae18EmEfLLo1/AcjYudlPK7jE9VAeSJUVUPFnDyxuq8dM
2OpjHAcD4XvE0g==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:03:59 2026 by rpki-client