Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
File: 3jCrARAqrvMOvUyJHAOAm6rQOeA.mft (raw, json)
Hash identifier: punvlBQK00Hjp4N8jtzQ89PaVNsGFKTtcYL6iTTQ64I=
Subject key identifier: 81:CC:8D:29:CE:21:D3:5F:E7:0F:4F:68:DE:8B:29:B8:2F:8D:F1:B8
Authority key identifier: DE:30:AB:01:10:2A:AE:F3:0E:BD:4C:89:1C:03:80:9B:AA:D0:39:E0
Certificate issuer: /CN=de30ab01102aaef30ebd4c891c03809baad039e0
Certificate serial: 019E216D5549A59469FD538C7EF2BD0C8248
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3jCrARAqrvMOvUyJHAOAm6rQOeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
Manifest number: 02CC
Signing time: Wed 13 May 2026 13:01:13 +0000
Manifest this update: Wed 13 May 2026 13:01:13 +0000
Manifest next update: Thu 14 May 2026 13:01:13 +0000
Files and hashes: 1: 3jCrARAqrvMOvUyJHAOAm6rQOeA.crl (hash: T8wDwNQoiBzgRkk1uS4Gv0OVy5Xc/F+jwF21FqAJ378=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3jCrARAqrvMOvUyJHAOAm6rQOeA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:55:49:a5:94:69:fd:53:8c:7e:f2:bd:0c:82:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de30ab01102aaef30ebd4c891c03809baad039e0
Validity
Not Before: May 13 13:01:13 2026 GMT
Not After : May 14 13:01:13 2026 GMT
Subject: CN=81cc8d29ce21d35fe70f4f68de8b29b82f8df1b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4e:32:c2:a6:b3:b3:b6:f8:a6:95:f8:2c:11:
05:e3:9b:f7:50:6c:50:0f:85:93:78:87:d5:c6:1c:
1e:5a:46:37:79:f3:14:41:cb:a5:3a:78:a8:39:61:
cc:14:ab:6e:d6:f8:c5:7e:7a:ef:f4:16:bd:93:a6:
da:8e:9c:26:00:cf:57:2a:cd:f3:aa:2a:75:5c:c2:
11:d2:c4:6a:c7:fa:ed:54:2b:23:61:48:68:a5:e6:
28:35:0f:7e:7d:46:9a:8b:84:61:f4:75:aa:d3:11:
40:45:91:7a:7c:c9:68:59:7f:c5:2c:65:41:63:4e:
40:83:41:9f:53:a6:1d:58:31:8e:a6:90:b5:2f:4a:
a0:f8:7b:2c:00:dc:6b:5c:99:2f:48:c0:24:47:e6:
d9:00:55:70:01:31:f7:e1:b2:63:ca:7c:2e:15:3e:
c6:79:74:ba:d4:07:05:1f:3f:d8:61:bb:95:49:e6:
ec:87:4c:3c:82:ce:7a:f2:f7:fb:db:ba:d2:06:f1:
e6:b6:a1:7c:89:1a:02:74:b7:68:e1:b1:ab:f3:f6:
bd:10:e5:9c:82:87:9e:53:da:69:09:77:1b:ec:6d:
6f:69:e6:4a:bf:2e:ee:ee:d5:1b:fc:ec:7d:b6:65:
80:37:35:0b:07:de:3c:5c:23:b9:01:da:88:c8:f3:
09:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CC:8D:29:CE:21:D3:5F:E7:0F:4F:68:DE:8B:29:B8:2F:8D:F1:B8
X509v3 Authority Key Identifier:
keyid:DE:30:AB:01:10:2A:AE:F3:0E:BD:4C:89:1C:03:80:9B:AA:D0:39:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3jCrARAqrvMOvUyJHAOAm6rQOeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:e5:03:17:0f:9e:38:dd:91:e2:76:2b:23:cb:10:d7:7d:17:
e9:f3:57:d1:a2:c2:be:ab:e2:93:c4:10:cf:9b:30:17:3e:7e:
3e:37:d8:db:da:ff:d6:cf:e9:14:65:1d:79:a4:d7:96:16:89:
d2:48:2e:bc:6b:a4:f4:26:b5:9a:23:c1:00:0c:57:94:34:38:
4f:b7:34:56:c7:46:30:b9:c2:11:9b:b4:18:36:8c:ef:f2:2d:
ec:9d:b4:fc:60:f8:5c:48:d9:49:f4:78:f3:eb:80:8e:66:04:
96:e2:c4:3d:48:40:e3:93:93:fa:ec:d0:c6:19:84:c2:60:c6:
5d:a1:73:1f:0e:3b:99:57:ff:64:0e:24:de:d8:22:c2:09:79:
39:0f:09:eb:8d:84:04:6b:0c:bf:d8:31:91:fe:c5:f9:9e:fe:
22:0d:ad:dc:9f:80:9c:68:b9:85:63:87:95:19:4f:b1:f3:59:
08:41:c5:db:68:d9:ca:41:77:13:2e:d9:9a:b2:10:23:76:79:
f0:59:bf:f9:87:1e:53:46:c2:0e:69:64:e2:15:8c:43:ba:0c:
40:3c:5b:f0:23:11:14:22:cd:c6:f6:42:31:c2:96:a6:f5:7a:
12:c7:ed:9b:ad:e3:38:91:c6:8a:4d:45:10:6e:8b:3a:e0:ac:
e0:f8:c0:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:05:57 2026 by rpki-client