Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
File: 3DC4_dBG72WGgJfwNrinyFVyqtA.mft (raw, json)
Hash identifier: 2hUuHPo6XGt4thPpCD/ji3Ss0z2UO0JJ9D4vjHQZIGE=
Subject key identifier: AB:F0:6C:0E:E7:19:4D:50:1A:02:FE:00:52:79:1F:34:B2:7E:6E:DD
Authority key identifier: DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
Certificate issuer: /CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Certificate serial: 019D38D3AC401D207AEEDBE466DBA2B94AA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 09:01:29 +0000
Manifest this update: Sun 29 Mar 2026 09:01:29 +0000
Manifest next update: Mon 30 Mar 2026 09:01:29 +0000
Files and hashes: 1: 3DC4_dBG72WGgJfwNrinyFVyqtA.crl (hash: +3YV7kXuZwyKKneONWVL24YjDjC30f0i0cNtMvAxnxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:ac:40:1d:20:7a:ee:db:e4:66:db:a2:b9:4a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Validity
Not Before: Mar 29 09:01:29 2026 GMT
Not After : Mar 30 09:01:29 2026 GMT
Subject: CN=abf06c0ee7194d501a02fe0052791f34b27e6edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:34:25:fe:48:ad:ac:72:b6:c7:12:f6:f6:6d:
d6:50:a0:34:c1:93:c1:3d:f0:2d:67:0f:36:6a:01:
06:24:ce:7f:85:23:eb:10:df:ed:59:c6:4b:f4:3d:
7e:a4:8b:b1:77:cb:a6:d1:a9:32:7e:0c:a3:13:3f:
eb:b4:cf:c4:d7:e0:17:ca:0f:c1:bf:ef:9f:1f:48:
c2:61:cf:6d:a3:25:70:9c:13:39:0f:8a:3f:e1:74:
09:b8:46:02:e9:87:8d:07:2c:8f:ba:89:82:c8:10:
e9:7a:35:52:76:6a:b5:9a:e0:08:c6:aa:77:2a:25:
6e:f3:5a:e0:5a:3e:48:9e:e2:be:68:99:0d:ac:e1:
e8:91:67:fd:15:a6:71:82:c2:44:69:88:6a:ed:3b:
11:31:c9:12:44:05:b9:2b:68:c3:2e:45:40:f3:6b:
65:8b:ee:c8:e1:49:09:c5:5e:18:1e:d4:18:d0:7b:
79:d9:2a:8a:d6:2f:5d:70:dc:6e:6e:5d:74:22:d6:
f6:70:86:8b:1d:e2:05:7b:59:ee:9f:4f:e1:8b:0b:
5d:4c:84:65:23:71:22:0e:f2:24:d3:25:86:41:13:
4f:06:96:7f:49:f8:8d:bc:7d:27:d7:bd:78:44:1d:
3f:09:55:b3:ee:bf:44:97:5e:47:86:2f:55:cb:88:
0c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F0:6C:0E:E7:19:4D:50:1A:02:FE:00:52:79:1F:34:B2:7E:6E:DD
X509v3 Authority Key Identifier:
keyid:DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:6f:2b:b5:f2:17:48:47:45:bf:8b:3f:b4:a3:d4:1d:05:d8:
0c:7f:f2:b8:62:52:84:82:23:8a:81:af:08:ea:ce:e3:ec:fd:
8e:66:93:9b:84:ae:b2:bd:32:0a:93:9d:ee:ab:a5:a6:31:68:
8c:de:44:ad:ba:42:3a:67:24:27:9a:b6:30:39:8c:b5:d4:30:
2c:ee:5a:89:c4:16:a2:23:52:91:75:d5:35:0a:75:4f:2a:46:
8f:30:9b:d4:0d:15:45:03:68:d7:74:c1:cf:1d:d4:e9:4b:75:
96:5c:70:2f:4a:f6:7c:65:84:5d:69:ed:6c:4a:ef:a6:50:7c:
f4:76:10:fb:e4:20:3c:7e:68:ab:84:8e:83:75:d5:4c:d4:03:
42:2c:68:92:bd:8d:f0:c3:69:34:53:d0:8d:80:d6:cd:fc:99:
00:a8:4d:f2:97:25:48:2c:70:c5:a4:37:07:3c:ea:67:04:28:
d0:b1:49:c2:dc:22:48:9b:e2:70:09:b1:77:e4:c8:4c:c8:bf:
1d:d9:57:19:63:3d:6d:ff:30:55:75:eb:86:5e:7e:dd:9c:3b:
ae:12:5d:69:b6:43:10:2b:21:83:e2:94:45:2b:b5:07:06:ca:
5b:99:4b:27:72:87:14:c1:6c:0f:00:81:3a:81:f3:8c:b8:dd:
9f:a7:dc:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:26 2026 by rpki-client