Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
File: 3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft (raw, json)
Hash identifier: NLGivPcqwIO1hFKuVRJKQC4/SN4Lwx4aSb2VtwULY1k=
Subject key identifier: 7E:EE:55:4C:67:15:AB:1B:FF:1F:E3:BE:17:41:C8:9A:C0:42:33:9C
Authority key identifier: DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24
Certificate issuer: /CN=dc36631ca20ec92d195c16a8d70a63f372e59f24
Certificate serial: 019E3004FAF1EA47CFFE319E898AFF53BB8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
Manifest number: 0846
Signing time: Sat 16 May 2026 09:01:33 +0000
Manifest this update: Sat 16 May 2026 09:01:33 +0000
Manifest next update: Sun 17 May 2026 09:01:33 +0000
Files and hashes: 1: 3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl (hash: b6Jdv/S7UuwNkIGK/ZjKf+FjrW8WMwnFagY5ceKGFEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:fa:f1:ea:47:cf:fe:31:9e:89:8a:ff:53:bb:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc36631ca20ec92d195c16a8d70a63f372e59f24
Validity
Not Before: May 16 09:01:33 2026 GMT
Not After : May 17 09:01:33 2026 GMT
Subject: CN=7eee554c6715ab1bff1fe3be1741c89ac042339c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ca:cc:03:ee:6f:f8:fe:5b:b6:0c:c7:ce:ea:
0b:83:12:0b:c9:62:2d:64:18:8c:58:08:9c:b2:37:
92:7a:20:a5:f3:d4:a5:26:55:97:50:44:41:a4:d5:
93:6f:08:2e:a4:8a:dc:1b:41:51:44:52:a7:ae:b1:
75:65:ef:06:89:98:48:bf:b1:0c:c2:91:43:2f:96:
a9:fb:a0:d3:00:4f:5c:43:36:51:54:f2:bc:95:98:
5a:00:49:75:2b:51:fc:5a:ac:15:cc:ac:3c:c4:e6:
b4:a2:b7:bd:e7:3a:b5:7a:73:a1:4f:44:09:a3:e7:
6b:f6:02:3c:20:47:bf:1e:bc:02:ed:04:c6:27:9e:
80:89:04:2c:eb:9f:11:d6:16:a0:61:91:72:0c:e1:
80:d6:a8:2d:3d:11:fd:0a:f8:3f:1c:53:91:a6:c0:
80:48:91:7c:cc:c5:4d:d6:1d:46:bc:62:fb:b5:b9:
3e:15:bf:e4:ba:b6:b5:5f:70:c7:13:ce:e4:ab:fa:
41:f1:2e:bb:6d:ac:57:ea:c5:e7:b7:6f:4a:6a:67:
4e:e0:a5:0a:cb:69:8d:ab:62:52:26:4a:69:17:26:
6b:7c:af:50:e2:93:15:c2:eb:70:0c:cb:a6:90:e1:
34:33:04:67:ed:3a:1d:5f:b5:88:4a:21:53:6e:ff:
8e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:EE:55:4C:67:15:AB:1B:FF:1F:E3:BE:17:41:C8:9A:C0:42:33:9C
X509v3 Authority Key Identifier:
keyid:DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:06:6d:59:b7:97:17:d1:7f:15:fd:d9:50:86:b1:e9:39:3d:
ab:f4:98:ad:61:36:5e:fa:1d:43:6d:fa:d2:b9:9d:7c:63:7b:
2f:e3:b1:33:3a:11:6d:3a:4b:2c:ca:34:57:9a:20:14:ad:6b:
bf:9c:85:0d:0c:89:b3:fc:d7:fb:02:68:a6:bb:5a:4a:73:5c:
83:5c:a9:e8:ad:a5:eb:4f:6d:c1:5c:1a:6a:45:39:eb:3f:03:
f9:0e:9f:a1:c0:1b:17:e3:e3:ec:3e:c6:0b:76:be:09:c2:b2:
ea:10:6c:dd:bd:25:82:cd:03:0b:c5:06:04:9c:bc:14:04:2a:
fb:ea:fa:ad:83:1e:b4:25:d7:1b:ce:41:86:ce:0b:70:59:f6:
63:de:ae:2b:92:41:d1:d8:a1:f1:b9:96:f3:cd:1f:dd:16:e2:
5d:fd:62:1b:71:f8:f9:5b:6e:ec:6d:6e:15:45:7c:cd:61:0f:
5e:53:ef:da:9d:41:24:1e:6f:69:d5:06:3d:5e:7f:fb:a9:cb:
30:6c:b8:46:1c:d3:a3:47:49:65:dc:04:5a:4f:54:0c:5c:0a:
e4:bc:b9:b7:ed:10:0b:a6:6a:fc:aa:42:e3:b3:17:6b:83:e6:
74:5c:30:24:cf:c6:6b:7a:ec:be:ac:00:09:78:ef:9d:cd:eb:
ef:c2:fc:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:17 2026 by rpki-client