Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
File: 3DhEUAcx1V-JiN3phVnP7QswmrY.mft (raw, json)
Hash identifier: NIuU/FRd7xCv86UTXKI2rQDPG53Ax2180yr4cCv2YfM=
Subject key identifier: C4:1A:A8:53:A0:1D:DB:C2:4C:9A:C6:FC:92:CC:1C:E5:A1:C3:92:73
Authority key identifier: DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
Certificate issuer: /CN=dc3844500731d55f8988dde98559cfed0b309ab6
Certificate serial: 019D254C67E3C05BA9A448CA2F65D10BFE01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
Manifest number: 0381
Signing time: Wed 25 Mar 2026 14:00:57 +0000
Manifest this update: Wed 25 Mar 2026 14:00:57 +0000
Manifest next update: Thu 26 Mar 2026 14:00:57 +0000
Files and hashes: 1: 3DhEUAcx1V-JiN3phVnP7QswmrY.crl (hash: n34VW1rdUxECmnEI6itpbHPUdWBhWs4S9Ki3tce4F8g=)
2: DuN1FxsH-lHCVLPZStKFfBKxbwQ.roa (hash: kKKX72HBFEwm68oN45GHGePWHOJC9JK5lwTCTB/prdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:67:e3:c0:5b:a9:a4:48:ca:2f:65:d1:0b:fe:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3844500731d55f8988dde98559cfed0b309ab6
Validity
Not Before: Mar 25 14:00:57 2026 GMT
Not After : Mar 26 14:00:57 2026 GMT
Subject: CN=c41aa853a01ddbc24c9ac6fc92cc1ce5a1c39273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:03:44:60:37:4e:10:2d:a3:9e:d7:32:90:54:
84:69:8e:05:0c:ab:66:08:1e:d9:31:5a:e9:5f:2e:
05:37:c9:86:aa:81:14:a3:ad:3c:d4:6b:12:93:3b:
f9:d7:1d:35:d2:ea:cb:b7:85:6c:ed:40:63:86:18:
43:fa:e0:ac:6b:25:e6:43:34:61:e1:dd:f8:82:4d:
0f:d0:58:6c:75:f4:76:2d:ca:1b:ce:f7:12:61:84:
fb:1b:d3:78:cd:1c:e3:76:cb:bb:a4:19:f2:79:a0:
06:04:c1:23:96:09:82:9e:d4:db:d3:83:7a:62:8a:
dc:35:ea:9d:7a:ba:83:e7:6d:59:31:26:cd:86:86:
57:91:44:ae:be:97:20:26:81:8a:5c:b2:00:f4:40:
56:98:9f:25:68:37:93:f0:7b:5b:bc:71:30:3c:4f:
ab:43:0c:c1:cd:5e:54:ac:1a:d1:6e:10:6b:b5:f1:
1f:1b:80:54:39:68:49:b5:14:ae:5a:1a:2e:6b:88:
fa:f1:e9:39:ae:6d:0f:15:c1:59:59:30:36:a6:13:
fd:e1:cc:31:a4:92:19:ab:40:91:99:df:c4:ce:b4:
64:f9:d0:60:33:2c:20:32:2a:76:30:70:13:b5:9c:
2e:4a:66:45:58:ef:35:90:34:1e:05:4f:98:b1:5d:
e0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:1A:A8:53:A0:1D:DB:C2:4C:9A:C6:FC:92:CC:1C:E5:A1:C3:92:73
X509v3 Authority Key Identifier:
keyid:DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ca:b7:f0:e7:52:ea:93:af:38:c2:ad:a7:26:ab:5b:67:32:
b4:ef:ca:8f:84:7d:2b:32:95:81:48:2e:25:68:de:5a:31:6e:
46:00:2b:f1:12:58:2b:b8:bd:e5:14:ab:e1:8b:0a:70:a0:80:
da:af:11:2f:8f:4c:25:dd:75:40:6c:00:8c:27:2d:db:79:44:
e7:c1:13:63:b7:99:79:da:e3:1c:59:2e:20:c0:93:df:e2:e9:
e3:74:53:a3:d3:46:c2:c4:1e:2a:85:d7:c0:ed:cf:25:88:5a:
c4:8e:5b:51:1e:40:bd:81:e1:b2:be:6a:29:f4:80:13:e5:6c:
8d:fc:3d:c9:97:a0:aa:32:56:aa:e3:b0:5c:07:62:9b:fb:7c:
14:9b:a9:11:8a:60:dc:73:c9:ab:43:70:38:a1:0f:e0:c2:99:
89:f3:0b:79:c1:63:b1:8b:62:e4:c4:e3:7c:c4:dd:74:9b:fb:
7c:dc:c1:2a:a7:7d:45:cc:d5:8c:4f:12:04:35:7d:cd:da:18:
16:a6:40:ed:b9:32:e9:2f:84:7b:c6:75:7b:a9:7e:15:b7:8b:
af:18:7e:33:be:fc:e9:39:47:53:e7:70:eb:6d:0d:63:c8:69:
ea:74:99:fe:5a:8d:22:87:75:4a:92:b8:58:5d:80:09:55:83:
59:dc:3e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:29 2026 by rpki-client