Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: aZE8c/QmXvpi7DEIBSVLY1o01WvZ4KZOcNMEfLxEHRE=
Subject key identifier: E5:B5:29:28:E8:72:65:70:69:04:6C:CD:53:4A:A1:CA:87:ED:C4:40
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 019D38D3ADFE0248C52CCCB98A22C1D93058
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 1820
Signing time: Sun 29 Mar 2026 09:01:29 +0000
Manifest this update: Sun 29 Mar 2026 09:01:29 +0000
Manifest next update: Mon 30 Mar 2026 09:01:29 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: qQDRnZC2JOQ99Xd4p2tSt4OODNqqShpRAqQN0SxBoAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:ad:fe:02:48:c5:2c:cc:b9:8a:22:c1:d9:30:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Mar 29 09:01:29 2026 GMT
Not After : Mar 30 09:01:29 2026 GMT
Subject: CN=e5b52928e872657069046ccd534aa1ca87edc440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b3:38:a0:2d:b1:66:b2:9f:54:b8:18:28:54:
70:63:9c:c9:42:77:af:b4:45:02:09:90:50:33:ae:
8a:f2:17:5e:f4:b1:d0:ba:7b:ad:87:8f:fc:ee:01:
8f:d9:db:8a:76:e0:07:84:43:39:af:fd:8f:7f:e1:
f3:05:f1:82:01:fd:f7:14:20:58:21:39:0a:70:66:
1f:d7:ac:f0:75:2f:30:f3:48:b0:f7:40:b3:d0:8b:
1f:17:7d:41:bd:b9:07:6d:46:38:ad:1d:50:cd:57:
be:09:e7:e4:5d:8d:ad:ba:dd:1b:87:28:92:a8:c3:
0f:cb:fd:27:eb:6c:b6:59:82:59:1b:7f:f3:34:60:
92:6f:36:49:70:76:d8:59:9b:95:55:05:a1:66:f8:
d7:cd:ea:0d:47:00:de:25:28:cd:53:07:30:14:df:
4c:e6:c6:69:2b:2c:d5:63:2c:7a:90:5d:41:21:27:
a9:9b:71:92:61:86:f4:ee:c8:1e:d0:e3:85:23:cc:
d6:02:2c:19:ac:ee:ed:e0:d4:dc:80:c0:e5:d4:9d:
77:de:1e:32:30:16:a5:a8:15:43:69:ae:51:fc:a5:
14:73:95:9f:7e:ff:c8:c8:ab:3a:cc:cc:2d:be:8f:
57:ea:52:45:ff:17:6e:87:6a:86:7c:78:51:f4:ed:
ac:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B5:29:28:E8:72:65:70:69:04:6C:CD:53:4A:A1:CA:87:ED:C4:40
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:86:85:67:d4:0a:00:86:34:52:85:7a:2f:c2:0f:cc:07:6e:
b0:39:07:aa:ed:0a:51:dc:15:fb:51:50:70:ee:19:59:ca:ad:
63:37:06:28:d4:bd:92:b5:48:e4:1e:b0:3e:b3:f8:98:19:5f:
c0:f0:b7:2a:e4:e9:d5:90:45:38:1c:e3:e9:87:40:aa:bf:7c:
b7:b3:49:09:8e:e7:7f:9e:e5:51:6e:4d:ff:e4:eb:db:2f:87:
ba:cc:0d:3a:3e:af:45:c1:8a:a9:22:af:30:f4:40:64:d1:6d:
f9:ac:df:ec:48:ab:88:0b:5f:7d:17:fc:ca:6a:69:bc:1e:ae:
6d:22:d2:60:ce:50:d7:c3:dd:07:ba:3d:10:10:86:86:2c:5f:
2f:dd:a7:74:6a:92:d6:72:39:86:d7:86:6e:ee:d8:8e:53:0e:
50:83:3d:d7:04:bf:2e:75:20:30:e1:b2:c9:44:48:a5:05:fb:
81:f7:85:5a:3b:07:ac:e2:c6:4a:e6:f4:60:47:1f:a8:d1:72:
cf:51:b6:f1:bd:3b:d9:6d:cb:6c:59:d7:d8:97:a0:5b:7b:aa:
2b:d0:a0:b2:d8:13:b2:0e:2f:de:cb:58:ba:50:a9:c9:a9:88:
74:be:3d:76:c7:7a:d8:ff:53:64:08:60:0d:93:55:fc:50:95:
85:fc:e4:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:35 2026 by rpki-client