Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
File: 3DhEUAcx1V-JiN3phVnP7QswmrY.mft (raw, json)
Hash identifier: dhuh4KiRWlRG5fUbtb2aiGELrc6SM541a9XeI5akRWg=
Subject key identifier: 91:77:9A:53:84:EC:D3:9D:C9:87:0B:9C:25:1F:FF:A3:38:62:97:FD
Authority key identifier: DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
Certificate issuer: /CN=dc3844500731d55f8988dde98559cfed0b309ab6
Certificate serial: 019D389BD470126BB2393F061336A22FC729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
Manifest number: 038B
Signing time: Sun 29 Mar 2026 08:00:29 +0000
Manifest this update: Sun 29 Mar 2026 08:00:29 +0000
Manifest next update: Mon 30 Mar 2026 08:00:29 +0000
Files and hashes: 1: 3DhEUAcx1V-JiN3phVnP7QswmrY.crl (hash: TxkvNaPyR0uP/iPAynQlvL1ZSEa9EjZIStMfDnKU3AI=)
2: DuN1FxsH-lHCVLPZStKFfBKxbwQ.roa (hash: kKKX72HBFEwm68oN45GHGePWHOJC9JK5lwTCTB/prdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:d4:70:12:6b:b2:39:3f:06:13:36:a2:2f:c7:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3844500731d55f8988dde98559cfed0b309ab6
Validity
Not Before: Mar 29 08:00:29 2026 GMT
Not After : Mar 30 08:00:29 2026 GMT
Subject: CN=91779a5384ecd39dc9870b9c251fffa3386297fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:62:bf:0a:4e:b7:8b:5f:02:45:cf:32:39:b6:
34:11:76:b8:00:2b:f2:0a:3e:c2:aa:cf:ae:0f:04:
1b:12:cf:f1:5d:e7:ac:8f:c2:7a:27:8d:04:d3:42:
0b:cd:9c:ac:55:b6:66:1f:08:79:7c:99:6e:6c:17:
83:34:6c:73:ee:cb:23:0b:c5:b9:b1:72:90:18:fc:
25:86:55:a8:63:9e:9c:49:43:9b:40:0a:ba:b6:05:
5a:48:b2:8b:8b:56:0f:40:1d:cd:47:e1:7a:2b:94:
ed:e6:39:55:5d:ea:10:91:35:10:59:9b:63:cc:b4:
2e:83:d4:08:9e:e3:89:5d:b1:b5:4f:8f:c3:8a:2f:
62:6e:fb:12:2b:f8:d7:3f:77:be:f3:ec:7a:3a:bb:
33:3f:d0:00:a7:f8:2c:2c:42:68:a0:d8:95:78:44:
c2:10:8e:b1:86:ff:f0:3b:48:d4:fd:d1:31:43:0d:
e2:bb:20:23:20:71:22:df:06:bf:16:17:58:8d:43:
ac:66:46:be:03:14:49:32:6e:b5:ed:ef:80:aa:27:
ca:d9:fd:f4:19:94:cc:2d:bf:1f:f0:42:b9:9d:4e:
0f:1f:9e:b6:50:17:0c:e8:c1:24:5d:d2:23:29:3c:
ae:6a:ee:61:20:8b:67:51:6f:9b:ea:b4:d7:94:b9:
62:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:77:9A:53:84:EC:D3:9D:C9:87:0B:9C:25:1F:FF:A3:38:62:97:FD
X509v3 Authority Key Identifier:
keyid:DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:af:e4:df:21:69:48:ce:a0:b4:fd:7e:5d:91:ab:99:c8:3e:
88:9d:8a:17:bd:b7:5d:45:c6:24:1b:93:59:94:ce:40:3d:05:
22:84:b4:38:91:b7:72:5b:19:37:b2:90:0e:93:d7:c5:6d:1b:
a3:1c:d2:43:ea:ab:63:d3:a7:44:92:05:7b:82:07:ba:2a:5e:
ec:d6:57:14:f4:27:93:75:4a:af:77:d2:de:64:e4:a9:7e:10:
3c:03:23:1c:62:81:34:66:55:19:a1:86:f2:38:94:02:25:13:
a0:95:1e:ac:08:34:c3:81:ea:07:af:2e:af:bc:f8:2d:ea:49:
06:f3:f3:4f:29:f0:cb:f0:29:a8:7f:09:55:e7:eb:97:53:bd:
17:ee:09:e7:49:58:53:60:e8:a1:92:ec:e8:0d:08:49:ad:79:
11:37:13:ff:f9:41:45:43:f5:3e:83:2f:40:c8:d4:13:26:38:
72:61:4b:bc:89:5a:15:59:96:aa:33:07:f2:5e:ad:89:73:03:
32:c2:51:22:dd:58:54:b6:a1:ce:0b:da:d4:65:6e:cb:2c:d5:
9f:98:80:37:16:49:c5:4d:e1:33:7d:cb:ec:d0:2b:9b:d1:13:
b6:b2:40:3a:b6:f6:e7:3d:bc:23:0e:22:98:be:9c:80:e2:e1:
dd:3f:fd:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:51 2026 by rpki-client