Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
File: 3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft (raw, json)
Hash identifier: Uf5/qPw3p4pdhKynFyOnk0r5c81bLPmwb3+ybBUViS8=
Subject key identifier: 8B:27:2C:CE:F2:4B:45:93:AD:CD:43:67:9A:2B:0B:8C:8F:A1:3F:D0
Authority key identifier: DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24
Certificate issuer: /CN=dc36631ca20ec92d195c16a8d70a63f372e59f24
Certificate serial: 019D38D2E5C320F997A81E2655DC44FA3D47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
Manifest number: 07C6
Signing time: Sun 29 Mar 2026 09:00:38 +0000
Manifest this update: Sun 29 Mar 2026 09:00:38 +0000
Manifest next update: Mon 30 Mar 2026 09:00:38 +0000
Files and hashes: 1: 3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl (hash: nAEDu6C9iGjLaBg2dXMsXqowDpHonJqpJ/LjGVQAX3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:e5:c3:20:f9:97:a8:1e:26:55:dc:44:fa:3d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc36631ca20ec92d195c16a8d70a63f372e59f24
Validity
Not Before: Mar 29 09:00:38 2026 GMT
Not After : Mar 30 09:00:38 2026 GMT
Subject: CN=8b272ccef24b4593adcd43679a2b0b8c8fa13fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:58:c0:c9:c1:54:41:7d:42:ce:e6:c5:7a:2f:
03:47:a3:e8:a9:72:98:3d:ad:92:3c:4a:07:f8:76:
b3:f5:91:07:a0:e0:bd:ee:ab:a8:b3:32:d7:73:72:
60:1a:3a:ff:2a:e6:3e:ad:a6:ea:88:0c:1c:54:d2:
03:0d:00:3c:a8:11:8a:13:48:6a:73:b0:71:ee:fc:
43:e9:a4:d5:41:4e:51:79:44:b4:06:6a:c9:74:17:
ad:6a:dd:21:eb:63:34:ad:91:f2:3e:d1:8f:bd:e3:
d6:14:d4:22:5d:e9:36:64:c2:0a:6a:a6:de:7a:62:
69:58:44:fd:d3:fc:4a:05:eb:0a:c1:ed:90:04:be:
73:f7:61:28:b5:8c:2b:78:67:f1:6f:c3:d5:89:50:
ec:28:d0:e6:39:78:c4:07:ab:e7:4f:e7:a5:e1:97:
8c:7a:11:df:70:46:6f:5b:ad:81:a0:ed:e7:22:30:
b9:f4:1d:75:1b:a5:cb:b2:7f:eb:d4:7e:04:f3:de:
91:36:5b:37:e7:9c:45:95:2e:d4:0c:a9:43:f0:f7:
8e:c6:74:57:42:ff:8c:2e:24:a8:23:be:f4:5d:36:
82:65:89:b9:49:1c:de:0f:c3:87:ec:82:64:a9:eb:
67:d9:4a:e2:fd:c4:d2:6d:67:47:56:34:1b:32:9a:
fb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:27:2C:CE:F2:4B:45:93:AD:CD:43:67:9A:2B:0B:8C:8F:A1:3F:D0
X509v3 Authority Key Identifier:
keyid:DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:7d:97:19:23:af:e3:21:9c:9b:73:90:90:e9:64:d4:cc:04:
95:07:6a:99:35:26:7b:b3:98:12:95:23:68:3d:d6:2c:5c:ff:
ab:55:03:73:d3:b6:54:eb:de:91:27:cd:21:3c:38:8b:50:36:
fa:a2:83:9b:1f:34:bc:49:ac:15:fe:31:0c:c6:aa:86:1a:e7:
a3:a4:98:73:ac:aa:ec:33:51:17:12:23:88:51:9e:1f:d8:e6:
48:8c:05:4e:27:49:c7:07:51:e5:dc:b6:4c:11:57:f0:f9:07:
3e:02:09:da:a7:24:fe:af:36:94:14:b7:3c:36:51:91:f0:95:
97:02:c7:64:31:fe:78:15:3e:f0:6e:9b:38:62:9d:7f:96:e2:
56:eb:2e:fd:8b:77:13:ca:fb:c6:2d:44:ef:ca:4c:1e:20:8c:
50:6a:b5:43:0b:87:44:97:e3:d6:28:af:48:04:f0:3f:f3:f2:
cd:71:11:b6:be:f5:02:5d:c8:76:1d:de:a0:74:56:e5:9a:3a:
5d:aa:df:e2:e0:d3:70:95:c6:a7:c9:b0:ea:28:21:5b:db:83:
56:03:91:21:54:ff:bc:32:0a:a7:0a:71:46:b8:cc:5a:35:91:
63:e2:1d:25:c3:8c:5b:22:ee:53:bf:96:46:24:ac:ac:c9:e5:
c1:e0:5c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:50 2026 by rpki-client