Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: Sj+5Gcklg77HgTrp7KPpM0dR1TyBbLNGPF9ak79zsO8=
Subject key identifier: D7:8D:E1:54:D0:9B:74:FC:09:C9:00:27:6A:EF:17:CD:3F:8E:F4:47
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 019F129CAD2C5D19825CCF7BDAA3155B6825
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 1994
Signing time: Mon 29 Jun 2026 09:01:25 +0000
Manifest this update: Mon 29 Jun 2026 09:01:25 +0000
Manifest next update: Tue 30 Jun 2026 09:01:25 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: 8dvOoxrhQw9mrmP8igQUxulWzvRCdiWwbQ4g2w3cMq8=)
2: 9zaCEl1SgGOc-A7zIR9SmhOUbCA.roa (hash: eFtzjl4+/9tlA7bC6sKrJsHMLsAxLeLlfmditC5aZTs=)
3: _QaXkGOzguH_3SYFNe1d3y7B2Tw.roa (hash: KztSdz5ODte8K6guWxzrXZlYDG1F2rVO/Vqml3J+Q0o=)
4: fsnKswSMyeM4OK2o8J_ZzwwYiiI.roa (hash: tWk+nFmUcDykdNhoUyVPw1UFkRx/3AJQMBQrLxH1g5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 09:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:9c:ad:2c:5d:19:82:5c:cf:7b:da:a3:15:5b:68:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Jun 29 09:01:25 2026 GMT
Not After : Jun 30 09:01:25 2026 GMT
Subject: CN=d78de154d09b74fc09c900276aef17cd3f8ef447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fb:42:d0:7b:91:64:32:5b:9b:bc:3e:22:37:
cf:e4:c6:76:6d:4f:30:70:01:19:ae:cf:ce:ac:c7:
dc:e6:6b:7b:0f:44:49:35:7d:4c:8e:39:56:61:f7:
f1:e9:91:6c:fd:7b:da:59:23:38:0a:ba:8c:86:c7:
52:b6:67:0e:79:4f:bf:d6:6c:ca:53:df:9b:01:88:
c3:17:b0:df:3a:dd:68:18:bb:35:85:b2:0d:72:2b:
b3:e0:c3:31:1d:7e:33:d2:54:72:ec:1b:c4:fe:f9:
4b:c4:55:d9:36:ed:02:e3:66:45:8e:c5:a2:b9:84:
6c:10:bf:b2:87:3a:f8:8b:f5:d0:93:39:bb:f5:68:
37:ee:5d:ca:4d:22:b3:44:8e:bb:58:2a:e1:2f:ce:
9b:79:56:4a:c8:f7:92:45:8b:d7:04:42:c3:61:4f:
26:7c:3b:77:2e:c1:05:52:89:40:81:fb:cb:b5:91:
29:2e:1e:73:d8:ec:d1:41:8a:b0:93:34:46:0e:17:
f4:9e:6a:1b:28:b1:23:51:b1:52:b8:ee:9a:ab:5f:
3e:bc:3d:2f:fa:4b:b7:bb:4d:8f:cf:a7:85:83:86:
c1:65:43:b6:de:0a:1c:ab:b5:9d:c7:69:20:c0:87:
0d:a7:7b:81:27:39:7b:e0:55:8a:67:1b:27:5f:fb:
80:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8D:E1:54:D0:9B:74:FC:09:C9:00:27:6A:EF:17:CD:3F:8E:F4:47
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:27:1e:f7:f5:d8:6d:d0:10:04:57:ea:a2:41:a0:ba:3e:1b:
70:a6:e6:50:d0:54:54:f1:ff:ce:c7:1c:44:7f:f1:09:a5:1f:
16:39:3f:57:b2:44:d3:89:1e:0e:f8:de:6c:e2:57:b6:a5:87:
bc:6a:30:5b:13:b1:cc:a0:0e:63:71:e5:dd:ed:83:a3:7d:05:
16:e3:ff:61:d2:f3:ee:74:89:78:ec:a5:48:60:bf:cb:07:56:
db:30:39:52:c8:fe:0e:3d:28:c4:76:e7:f7:62:ce:c0:af:ea:
6b:47:f1:b4:55:05:7f:c0:c2:ac:6e:4f:b0:2f:e4:29:cc:71:
27:dc:54:df:1c:35:5a:ef:59:9e:47:06:89:62:c2:35:be:87:
fc:8c:bd:3c:d2:53:a5:9a:bd:c8:9e:d0:5b:20:22:2c:e1:6e:
f6:c7:bc:7b:d0:4b:3e:0e:0b:b5:97:1e:dc:30:99:11:fc:4f:
e8:f1:48:5e:53:6e:f1:fe:c3:41:32:78:3b:75:a7:86:a2:30:
ca:cc:bd:6a:75:d2:f3:21:15:51:91:c8:fa:8d:1e:33:90:be:
87:ca:b1:02:7d:80:36:b7:23:22:90:90:a6:0a:70:43:1e:69:
77:37:1c:52:fe:b2:21:e6:1a:10:08:3e:a3:52:88:52:ca:38:
77:f2:eb:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:40:40 2026 by rpki-client