Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.mft
File: 3DU3KrVODfO_UU1fCMpS5De9kaQ.mft (raw, json)
Hash identifier: cLTVzqNfOHQAI0mB4L2tuO91oxAQWFVSIH1GchCe/q0=
Subject key identifier: 1F:77:4F:41:8F:9F:5A:6B:DD:C4:AB:C5:57:8D:06:FC:97:0E:F8:B2
Authority key identifier: DC:35:37:2A:B5:4E:0D:F3:BF:51:4D:5F:08:CA:52:E4:37:BD:91:A4
Certificate issuer: /CN=dc35372ab54e0df3bf514d5f08ca52e437bd91a4
Certificate serial: 019F18D67CB9FBB810A78D161D3F4B4095D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DU3KrVODfO_UU1fCMpS5De9kaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.mft
Manifest number: 08D9
Signing time: Tue 30 Jun 2026 14:02:17 +0000
Manifest this update: Tue 30 Jun 2026 14:02:17 +0000
Manifest next update: Wed 01 Jul 2026 14:02:17 +0000
Files and hashes: 1: 3DU3KrVODfO_UU1fCMpS5De9kaQ.crl (hash: TZm09OSr8s9HitQxn2uwck69hqOOy2HFf3gRFZ4Qe/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DU3KrVODfO_UU1fCMpS5De9kaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:7c:b9:fb:b8:10:a7:8d:16:1d:3f:4b:40:95:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc35372ab54e0df3bf514d5f08ca52e437bd91a4
Validity
Not Before: Jun 30 14:02:17 2026 GMT
Not After : Jul 1 14:02:17 2026 GMT
Subject: CN=1f774f418f9f5a6bddc4abc5578d06fc970ef8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:27:a7:15:96:6f:98:ea:05:53:51:55:1b:8b:
43:ca:c3:f6:82:14:bf:0a:64:8b:5b:3e:49:a9:0b:
ec:bf:e0:fb:b7:85:0b:50:d1:b3:01:ef:56:df:6c:
53:0d:8f:27:c9:4d:ad:68:3f:52:58:d7:5a:ba:36:
37:dd:43:2c:4f:fd:47:4a:1d:c6:2e:66:3f:64:53:
8b:92:86:52:1b:8e:eb:c5:59:72:af:25:00:4a:ff:
5a:fd:f3:86:f8:d4:97:66:1a:24:39:28:3f:20:66:
86:03:8a:ce:ed:79:11:74:f8:72:e1:d3:11:49:23:
e6:3f:76:9b:55:ff:b6:65:54:d8:0c:38:a8:44:c7:
fc:8c:65:3c:8a:4d:3c:ab:47:55:7a:ab:8f:9d:08:
47:93:3c:03:bf:97:fc:02:b1:11:c1:3a:21:d5:d7:
47:76:94:28:26:a4:69:e0:20:82:d5:47:47:2d:83:
53:7a:9a:ff:1e:58:35:7d:e5:91:2d:41:1c:ec:c7:
06:b8:ad:d6:62:e1:71:2b:5b:42:1b:52:61:67:ba:
3f:ce:a6:c7:11:f3:eb:3a:c1:41:b0:56:ea:97:bc:
f2:20:f6:ce:2c:84:85:c7:fa:bc:86:11:6d:c4:6a:
52:27:e1:6f:5f:51:c7:9d:58:ec:ee:a6:ca:7e:38:
6a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:77:4F:41:8F:9F:5A:6B:DD:C4:AB:C5:57:8D:06:FC:97:0E:F8:B2
X509v3 Authority Key Identifier:
keyid:DC:35:37:2A:B5:4E:0D:F3:BF:51:4D:5F:08:CA:52:E4:37:BD:91:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DU3KrVODfO_UU1fCMpS5De9kaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b1a34f-93a3-41b0-b096-1977ac24d211/1/3DU3KrVODfO_UU1fCMpS5De9kaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:ef:b3:fa:8a:89:62:4f:aa:ea:cb:6a:40:3a:d3:9e:e3:aa:
22:f3:1f:2a:a6:62:19:56:1e:30:0a:69:1b:b3:93:92:2d:af:
c3:6c:2f:ce:35:65:bd:45:b5:62:52:ff:1b:5b:b2:5a:31:07:
15:fc:af:bf:10:47:67:d3:bf:ec:48:f4:94:dc:5e:d3:1b:4d:
ba:1e:23:68:bf:71:21:96:df:a5:58:69:99:5a:0c:3d:cc:7b:
a9:99:a8:b8:42:76:41:91:62:a1:21:0a:40:4d:86:ca:a9:b7:
9f:11:24:4f:71:f4:61:84:79:d1:19:29:ca:a1:05:b5:61:56:
8d:61:31:25:89:ea:49:82:10:b9:1f:01:48:1d:3e:27:82:ad:
01:54:7a:74:00:4e:75:af:ec:8b:e5:4e:8e:52:b4:a4:2b:b4:
91:7b:e1:ce:4d:4f:f3:44:bf:52:79:a4:7a:67:74:e7:14:09:
8d:aa:1e:ec:93:54:08:da:76:49:43:7c:7c:32:99:0c:6e:63:
97:d9:c9:3d:d9:03:02:72:5a:13:2c:5e:17:be:57:c7:fe:29:
39:51:a7:f9:d5:e3:57:cf:e9:1e:0a:5f:2c:9e:0a:05:73:28:
56:9b:6c:28:90:d7:11:62:c7:8d:d8:b7:e1:6e:44:41:f5:af:
27:c6:8e:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Y1ny5+7gQp40WHT9LQJXWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMzUzNzJhYjU0ZTBkZjNiZjUxNGQ1ZjA4Y2E1MmU0Mzdi
ZDkxYTQwHhcNMjYwNjMwMTQwMjE3WhcNMjYwNzAxMTQwMjE3WjAzMTEwLwYDVQQD
EygxZjc3NGY0MThmOWY1YTZiZGRjNGFiYzU1NzhkMDZmYzk3MGVmOGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmienFZZvmOoFU1FVG4tDysP2ghS/
CmSLWz5JqQvsv+D7t4ULUNGzAe9W32xTDY8nyU2taD9SWNdaujY33UMsT/1HSh3G
LmY/ZFOLkoZSG47rxVlyryUASv9a/fOG+NSXZhokOSg/IGaGA4rO7XkRdPhy4dMR
SSPmP3abVf+2ZVTYDDioRMf8jGU8ik08q0dVequPnQhHkzwDv5f8ArERwToh1ddH
dpQoJqRp4CCC1UdHLYNTepr/Hlg1feWRLUEc7McGuK3WYuFxK1tCG1JhZ7o/zqbH
EfPrOsFBsFbql7zyIPbOLISFx/q8hhFtxGpSJ+FvX1HHnVjs7qbKfjhqPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB93T0GPn1pr3cSrxVeNBvyXDviyMB8GA1UdIwQY
MBaAFNw1Nyq1Tg3zv1FNXwjKUuQ3vZGkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0RVM0tyVk9EZk9fVVUxZkNNcFM1RGU5a2FRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9iMWEzNGYtOTNhMy00MWIwLWIwOTYt
MTk3N2FjMjRkMjExLzEvM0RVM0tyVk9EZk9fVVUxZkNNcFM1RGU5a2FRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9iMWEzNGYtOTNhMy00MWIwLWIwOTYtMTk3N2FjMjRkMjEx
LzEvM0RVM0tyVk9EZk9fVVUxZkNNcFM1RGU5a2FRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAku+z+oqJ
Yk+q6stqQDrTnuOqIvMfKqZiGVYeMAppG7OTki2vw2wvzjVlvUW1YlL/G1uyWjEH
FfyvvxBHZ9O/7Ej0lNxe0xtNuh4jaL9xIZbfpVhpmVoMPcx7qZmouEJ2QZFioSEK
QE2Gyqm3nxEkT3H0YYR50RkpyqEFtWFWjWExJYnqSYIQuR8BSB0+J4KtAVR6dABO
da/si+VOjlK0pCu0kXvhzk1P80S/Unmkemd05xQJjaoe7JNUCNp2SUN8fDKZDG5j
l9nJPdkDAnJaEyxeF75Xx/4pOVGn+dXjV8/pHgpfLJ4KBXMoVptsKJDXEWLHjdi3
4W5EQfWvJ8aOkA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:32:09 2026 by rpki-client