Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
File: 3DC4_dBG72WGgJfwNrinyFVyqtA.mft (raw, json)
Hash identifier: J1exfz9dfkPZuFv/x1T5aON9maTdpGx4KPv7rJdbt2c=
Subject key identifier: 3E:11:27:E1:A0:07:6A:22:79:40:B5:C5:23:B5:98:FC:18:4F:71:6D
Authority key identifier: DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
Certificate issuer: /CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Certificate serial: 019D277265E65DCC54D98E4E34A21882BC28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
Manifest number: 1883
Signing time: Thu 26 Mar 2026 00:01:41 +0000
Manifest this update: Thu 26 Mar 2026 00:01:41 +0000
Manifest next update: Fri 27 Mar 2026 00:01:41 +0000
Files and hashes: 1: 3DC4_dBG72WGgJfwNrinyFVyqtA.crl (hash: faXC7cL8JTP6iOw7x4V7f/YKi2h9Id1jeWm0TI9ADMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:65:e6:5d:cc:54:d9:8e:4e:34:a2:18:82:bc:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Validity
Not Before: Mar 26 00:01:41 2026 GMT
Not After : Mar 27 00:01:41 2026 GMT
Subject: CN=3e1127e1a0076a227940b5c523b598fc184f716d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:95:35:4b:c7:96:67:6b:fe:e4:11:01:0b:95:
e2:dc:59:03:0a:bd:76:5d:a6:a0:7b:9e:f8:bb:58:
ef:29:e5:2f:6f:bd:cb:76:d4:24:3d:1a:22:2e:2a:
ec:de:d2:be:56:92:63:53:5c:9e:82:1d:e3:4d:fb:
af:68:2a:79:35:94:92:73:b6:dc:a0:57:c2:9b:f2:
0c:ea:3b:bc:a0:e5:94:a7:9d:2d:97:d2:7c:24:30:
a7:8d:3f:0c:45:37:ad:5e:85:88:2f:e6:05:26:e4:
22:e0:5a:e7:14:9f:4d:51:8a:a6:df:e7:85:40:39:
90:f6:cd:b1:bc:34:76:ae:67:dc:79:09:56:23:30:
c7:08:f2:f3:5b:3c:37:60:a4:7d:5a:76:ec:3a:6b:
1e:2a:ce:b7:51:15:49:96:34:0f:6e:64:b1:60:4f:
27:2a:a2:35:05:93:83:2a:13:76:f8:cc:bc:40:44:
7c:ab:81:fa:c4:2b:fd:32:fa:0a:88:ca:a6:d9:e4:
55:aa:d6:a1:a0:70:dc:bd:26:4c:9d:c1:5c:66:26:
c5:d7:91:07:a1:3c:1c:c0:59:85:2c:91:27:08:84:
6e:c8:cb:9b:04:bf:7e:b6:f1:a7:01:75:16:42:8a:
d5:b5:65:cf:d5:6c:a2:b2:d2:e7:c1:8c:2c:42:24:
0d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:11:27:E1:A0:07:6A:22:79:40:B5:C5:23:B5:98:FC:18:4F:71:6D
X509v3 Authority Key Identifier:
keyid:DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:5d:99:5c:50:67:bd:b1:19:c6:cc:3b:6f:c2:c1:74:95:7c:
99:37:18:30:e8:1e:ab:48:6d:f9:fb:da:33:94:a1:3d:3d:a2:
5c:59:21:9f:31:d4:63:c1:44:b5:b7:b5:19:2f:8f:89:ec:0c:
bb:68:b0:f4:8c:1e:38:ed:78:e7:04:2e:4e:87:54:db:35:e4:
c2:7f:f6:6b:57:d9:b6:2e:48:1d:48:bc:06:b0:29:d7:e2:62:
80:ba:48:76:ec:a4:97:75:8d:7c:46:21:09:bb:80:19:28:3c:
d8:55:15:b6:f4:29:b5:a2:63:7e:9e:77:f0:c2:6d:62:8c:34:
f6:d6:c5:c8:8d:c5:75:c6:a5:2f:7d:e1:54:a4:f1:13:e0:a8:
63:9a:24:bd:d4:fc:91:f8:75:b6:30:13:04:89:2c:32:56:db:
b4:0a:b2:89:40:4a:8b:ef:64:c8:14:80:2a:3f:69:b5:98:cc:
2a:ff:3b:5f:bf:16:dd:54:1b:22:ba:47:ac:c6:c8:61:ab:56:
e1:89:52:67:2d:ca:7e:22:21:c1:b5:33:60:ad:cc:ce:57:9e:
14:dc:cd:97:29:56:f0:b3:0b:37:4b:4a:05:e4:2d:e6:cb:c3:
08:32:93:3c:40:a2:d9:83:d6:42:1d:6e:de:83:26:40:4a:53:
6b:76:d8:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:09:25 2026 by rpki-client