Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
File: 3q91C1wrlTnZblZJdyr34Q7-D-o.mft (raw, json)
Hash identifier: 1nVsehEUP3XWGdTwhW9X9/yTUoxjt1odS/oaf90rltw=
Subject key identifier: D9:35:67:79:36:7C:70:66:02:83:3C:B0:F8:BD:F7:3E:95:37:70:59
Authority key identifier: DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
Certificate issuer: /CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Certificate serial: 019D2961260304F54F07B345E973EECDFDAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
Manifest number: 0F18
Signing time: Thu 26 Mar 2026 09:02:05 +0000
Manifest this update: Thu 26 Mar 2026 09:02:05 +0000
Manifest next update: Fri 27 Mar 2026 09:02:05 +0000
Files and hashes: 1: 3q91C1wrlTnZblZJdyr34Q7-D-o.crl (hash: 4MnOIIVK9pWjG+xS3IbLzM0aMBJraWtEmSJJ8uSHdW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:26:03:04:f5:4f:07:b3:45:e9:73:ee:cd:fd:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Validity
Not Before: Mar 26 09:02:05 2026 GMT
Not After : Mar 27 09:02:05 2026 GMT
Subject: CN=d9356779367c706602833cb0f8bdf73e95377059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:61:de:da:18:5f:77:ff:3c:86:5e:d9:ae:c2:
9e:d5:3a:3f:4d:92:c0:b0:74:7f:82:9a:c8:48:f7:
d9:ca:9b:eb:63:0c:41:ac:13:62:a9:fe:e6:ad:2d:
2c:04:ee:b0:69:09:50:6b:96:db:e4:8c:8e:27:c4:
b0:e3:d5:a6:da:4c:95:40:32:10:18:3d:c8:f1:63:
53:12:a8:10:2c:24:08:f3:a5:d4:3b:83:f4:8e:96:
96:8c:85:6a:5c:16:8f:72:bd:c1:4a:eb:a3:86:89:
e6:1f:9d:30:9e:e2:8e:bd:a6:50:60:84:c8:a2:f7:
ec:e4:0c:b7:2f:59:67:30:04:85:7a:85:44:2f:a7:
b3:5b:94:cb:0d:55:58:4c:49:3b:ac:66:70:c9:8d:
4b:a3:64:fb:25:0c:22:43:67:87:c3:22:de:a3:33:
7b:5d:5e:b5:22:75:66:9b:4b:7b:6a:e7:4c:d9:cb:
4b:aa:a5:59:0e:4a:d0:38:fb:52:74:77:7f:f0:0c:
be:1e:0d:44:95:6e:1d:4c:cd:fb:96:17:23:00:ba:
ea:98:d4:ef:17:c9:27:6b:30:4c:9b:17:63:0b:6e:
5c:95:c7:82:bb:57:97:b2:4e:0b:af:a6:a6:c1:e9:
70:9c:31:79:52:b8:84:c0:f9:18:d5:69:2d:5a:05:
89:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:35:67:79:36:7C:70:66:02:83:3C:B0:F8:BD:F7:3E:95:37:70:59
X509v3 Authority Key Identifier:
keyid:DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:f2:f6:68:5f:d4:d4:95:a0:3f:97:ce:39:94:10:69:e5:10:
3e:75:de:cf:8a:b2:27:6f:c0:d7:fa:e9:8f:df:69:0b:30:33:
29:b8:9e:70:63:ad:0b:c2:74:ff:62:8e:8a:7c:e5:2a:b5:83:
1e:45:8a:39:3b:ab:66:19:a9:82:82:7b:b4:c0:cd:36:e3:0b:
22:77:29:8c:03:52:bf:cc:78:eb:23:ed:15:a6:4b:96:62:5c:
18:66:11:83:13:09:59:d0:cd:e1:31:6c:b5:18:bc:9c:8a:78:
02:eb:95:8f:83:38:29:3c:fe:d1:ac:71:13:b7:d4:55:37:28:
88:e5:45:00:ef:a8:96:5e:4a:72:6a:e8:da:59:92:96:3a:03:
ba:2d:1d:aa:7b:86:1b:97:4f:c3:3a:6a:95:e1:db:07:06:8c:
64:2b:6b:8a:4d:86:8c:bd:0f:7a:34:a4:6e:59:56:32:47:bf:
d8:b2:48:4c:1b:29:9a:67:6f:9b:ed:d1:37:ae:f6:99:4c:38:
14:c3:d4:00:b1:80:4a:0e:b7:98:b9:80:ea:f0:17:3f:42:00:
05:1e:6d:40:02:5c:0c:61:86:d6:fe:00:b1:40:a7:59:61:e6:
da:bc:06:6e:a6:9b:61:c8:41:6c:de:8e:8b:53:c4:e0:ca:3d:
a4:87:d4:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pYSYDBPVPB7NF6XPuzf2sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlYWY3NTBiNWMyYjk1MzlkOTZlNTY0OTc3MmFmN2UxMGVm
ZTBmZWEwHhcNMjYwMzI2MDkwMjA1WhcNMjYwMzI3MDkwMjA1WjAzMTEwLwYDVQQD
EyhkOTM1Njc3OTM2N2M3MDY2MDI4MzNjYjBmOGJkZjczZTk1Mzc3MDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjWHe2hhfd/88hl7ZrsKe1To/TZLA
sHR/gprISPfZypvrYwxBrBNiqf7mrS0sBO6waQlQa5bb5IyOJ8Sw49Wm2kyVQDIQ
GD3I8WNTEqgQLCQI86XUO4P0jpaWjIVqXBaPcr3BSuujhonmH50wnuKOvaZQYITI
ovfs5Ay3L1lnMASFeoVEL6ezW5TLDVVYTEk7rGZwyY1Lo2T7JQwiQ2eHwyLeozN7
XV61InVmm0t7audM2ctLqqVZDkrQOPtSdHd/8Ay+Hg1ElW4dTM37lhcjALrqmNTv
F8knazBMmxdjC25clceCu1eXsk4Lr6amwelwnDF5UriEwPkY1WktWgWJyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNk1Z3k2fHBmAoM8sPi99z6VN3BZMB8GA1UdIwQY
MBaAFN6vdQtcK5U52W5WSXcq9+EO/g/qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3E5MUMxd3JsVG5aYmxaSmR5cjM0UTctRC1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS8wMzA5ZmItNmY4NC00N2JjLWE3Yzkt
NWQzMWQxZmU0MjhmLzEvM3E5MUMxd3JsVG5aYmxaSmR5cjM0UTctRC1vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS8wMzA5ZmItNmY4NC00N2JjLWE3YzktNWQzMWQxZmU0Mjhm
LzEvM3E5MUMxd3JsVG5aYmxaSmR5cjM0UTctRC1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAafL2aF/U
1JWgP5fOOZQQaeUQPnXez4qyJ2/A1/rpj99pCzAzKbiecGOtC8J0/2KOinzlKrWD
HkWKOTurZhmpgoJ7tMDNNuMLIncpjANSv8x46yPtFaZLlmJcGGYRgxMJWdDN4TFs
tRi8nIp4AuuVj4M4KTz+0axxE7fUVTcoiOVFAO+oll5Kcmro2lmSljoDui0dqnuG
G5dPwzpqleHbBwaMZCtrik2GjL0PejSkbllWMke/2LJITBspmmdvm+3RN672mUw4
FMPUALGASg63mLmA6vAXP0IABR5tQAJcDGGG1v4AsUCnWWHm2rwGbqabYchBbN6O
i1PE4Mo9pIfUjg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 16:05:38 2026 by rpki-client