Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
File: 3jCrARAqrvMOvUyJHAOAm6rQOeA.mft (raw, json)
Hash identifier: JVf2c+h3/xTGjXryF0bCcFAam8J/lxevwfmZaVg0XqU=
Subject key identifier: 04:3F:11:1A:A6:7B:D5:60:5E:0F:6A:0C:25:13:42:94:91:AD:93:50
Authority key identifier: DE:30:AB:01:10:2A:AE:F3:0E:BD:4C:89:1C:03:80:9B:AA:D0:39:E0
Certificate issuer: /CN=de30ab01102aaef30ebd4c891c03809baad039e0
Certificate serial: 019D2A3C4B73D7C5BF50F09BBD4A21281CE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3jCrARAqrvMOvUyJHAOAm6rQOeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
Manifest number: 024C
Signing time: Thu 26 Mar 2026 13:01:27 +0000
Manifest this update: Thu 26 Mar 2026 13:01:27 +0000
Manifest next update: Fri 27 Mar 2026 13:01:27 +0000
Files and hashes: 1: 3jCrARAqrvMOvUyJHAOAm6rQOeA.crl (hash: 62aN5xcpOzj9oC70LLjuYcFspKW3BwH/K2eibuOllo8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3jCrARAqrvMOvUyJHAOAm6rQOeA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3c:4b:73:d7:c5:bf:50:f0:9b:bd:4a:21:28:1c:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de30ab01102aaef30ebd4c891c03809baad039e0
Validity
Not Before: Mar 26 13:01:27 2026 GMT
Not After : Mar 27 13:01:27 2026 GMT
Subject: CN=043f111aa67bd5605e0f6a0c2513429491ad9350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:70:68:e4:00:1d:87:74:7a:ab:47:e9:38:c9:
cc:c5:20:f3:21:5e:8c:9c:5b:4f:d4:88:e1:e0:2f:
92:f6:23:bd:2e:28:5c:9b:4a:84:40:ed:2a:36:b1:
5e:d5:e3:0a:1c:4c:9f:41:47:f2:b5:64:20:cc:3a:
b3:c3:18:8d:b2:69:bf:62:8e:25:cd:08:37:f6:08:
df:77:60:46:51:59:9f:70:38:09:ec:cd:b5:cd:ea:
f5:0f:b0:00:3e:50:1b:db:c5:fe:c6:10:e9:68:d7:
6c:c1:35:8f:9f:8e:28:87:0f:5b:df:f4:2b:9c:91:
04:7a:cd:14:04:29:88:e4:4b:2c:5b:fe:b5:44:27:
ff:3d:f3:01:97:b6:3f:b5:16:ba:e9:54:07:16:ee:
44:0c:d1:4b:2c:f1:a0:4d:81:d5:40:a8:52:13:9d:
6e:b7:7d:f4:78:17:a2:64:36:f2:ec:d8:54:fb:33:
f7:e4:2f:e8:dc:62:bb:da:f7:ed:e5:6e:40:09:fd:
05:1e:a5:d2:2d:2c:ae:20:0c:63:19:b2:99:87:06:
b9:4a:94:e1:a3:57:fe:0e:c0:fc:7d:36:41:5b:92:
b6:db:c2:37:85:04:b7:69:df:32:d8:ee:b9:3f:57:
c3:c4:1d:d3:3e:2f:f3:9e:7a:01:0f:a0:4f:9d:7a:
26:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:3F:11:1A:A6:7B:D5:60:5E:0F:6A:0C:25:13:42:94:91:AD:93:50
X509v3 Authority Key Identifier:
keyid:DE:30:AB:01:10:2A:AE:F3:0E:BD:4C:89:1C:03:80:9B:AA:D0:39:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3jCrARAqrvMOvUyJHAOAm6rQOeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:ef:bb:d8:fd:0a:5a:a0:6c:d9:de:10:9c:98:28:e3:17:ef:
64:85:e3:ab:0a:77:e0:f9:50:f4:f3:57:eb:b8:c4:ca:c4:7d:
c3:22:da:17:e0:1e:36:0e:76:49:db:b6:13:3c:83:c4:d4:58:
d3:5c:87:a6:5a:6a:1d:0f:d1:d2:61:dd:8d:5c:46:d2:83:c0:
14:e4:14:14:e4:0a:84:8f:a2:5f:53:63:10:69:83:43:6c:25:
a8:04:09:70:51:c6:94:eb:c3:f4:11:4a:ad:a8:30:4b:85:3a:
ff:fc:fe:89:4c:37:bd:ee:55:f1:74:6c:40:2e:c6:95:74:a0:
2a:7f:7d:cd:74:24:49:21:a5:4a:41:bd:82:c9:ac:b8:cd:3b:
39:84:c8:99:a0:0f:12:02:c1:c1:27:9e:aa:c3:1f:6d:c3:d0:
50:e6:7d:0e:b3:66:0e:f8:e2:bd:9e:da:22:b2:35:93:1b:04:
ec:d9:dd:5b:34:93:60:d4:d2:7b:07:c1:9e:b2:15:67:37:d0:
71:ff:c4:cc:6f:49:27:fd:a4:63:06:cb:01:1e:25:c2:b6:ba:
ee:a5:e0:15:ea:02:92:d4:d1:bf:7c:21:76:0b:07:46:96:0c:
62:29:89:32:06:49:90:9e:4b:9c:04:f5:4b:92:4a:b0:b3:df:
bb:41:8e:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:53:22 2026 by rpki-client