Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: xkznKtWXRwDL055chyzXuDwZFqAamXVXUx6psI6sYGQ=
Subject key identifier: 39:1E:F0:60:7E:BF:61:4F:17:86:DE:A3:85:A3:FF:E5:F4:C1:05:BB
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 019E1EA3A19273BF9EA652F88C22BE59B29C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 1897
Signing time: Wed 13 May 2026 00:01:40 +0000
Manifest this update: Wed 13 May 2026 00:01:40 +0000
Manifest next update: Thu 14 May 2026 00:01:40 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: KuD6PIhLA+jpNbdW14oTTzKpjwWFCyru8QKR1lcLcS4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:a1:92:73:bf:9e:a6:52:f8:8c:22:be:59:b2:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: May 13 00:01:40 2026 GMT
Not After : May 14 00:01:40 2026 GMT
Subject: CN=391ef0607ebf614f1786dea385a3ffe5f4c105bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:35:21:1f:84:19:8b:13:00:09:01:f4:16:c4:
e9:5c:a4:dc:1a:5b:ba:48:7d:3d:c9:63:0c:43:50:
d2:e0:60:8f:48:e6:40:5e:18:19:67:42:a8:a0:68:
f6:e2:d9:4c:7b:41:b8:c0:08:df:8f:3c:79:59:23:
ee:a7:2c:ce:d2:b3:d3:84:74:08:93:29:f6:06:1b:
54:af:0b:da:81:b7:ec:aa:6c:1e:4f:38:73:c5:f5:
88:aa:fd:35:aa:80:ef:90:79:82:45:f5:99:4a:96:
41:2d:f2:a5:31:2e:2c:d8:c6:9b:d0:59:33:f5:e6:
ce:37:eb:37:7d:8a:6c:d3:50:52:57:18:e2:d0:1c:
30:53:10:ec:56:b8:80:d3:4f:bd:03:c4:a2:fb:ca:
68:39:8f:e6:83:6f:de:20:15:ee:4d:b7:c8:fd:99:
dc:88:4a:5c:46:d2:3f:52:2c:64:40:37:dd:9d:53:
9a:4e:26:fe:15:0e:eb:46:a6:96:f0:ba:5f:3c:c3:
0f:be:d9:f8:3e:f5:b7:de:be:78:15:88:fe:22:44:
6b:11:5f:09:27:77:1b:09:bb:54:68:89:c1:10:84:
41:49:e7:e0:ec:d2:0d:8e:26:3f:2d:7e:ae:fe:e8:
5c:f0:a0:72:c7:af:56:64:e3:f6:49:07:49:df:45:
d4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1E:F0:60:7E:BF:61:4F:17:86:DE:A3:85:A3:FF:E5:F4:C1:05:BB
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:4b:ee:c9:13:f6:18:4e:ee:0b:4c:3f:b8:56:6b:1c:26:df:
f7:f2:ed:46:97:58:7e:5b:62:0f:23:2c:ad:8c:c5:99:ab:4b:
1d:17:ee:6e:88:92:1f:85:45:8e:e1:b6:79:6d:b2:22:8f:c8:
7c:9f:ff:a7:38:ff:69:ff:22:a5:41:7f:c4:a4:67:65:87:69:
a0:8e:fe:be:29:6f:3a:89:36:d7:1e:9a:f7:fb:e0:3f:9e:f8:
f8:91:ae:0b:d4:e9:eb:9c:11:95:02:40:23:52:8b:1b:f3:f6:
c2:8d:b6:7c:f6:a8:d3:39:7f:0d:dc:c3:67:fb:57:d0:52:c9:
53:3c:79:42:14:73:04:29:98:53:8c:75:e5:15:9e:ee:d2:9a:
68:7e:12:a8:f8:c5:a1:15:69:9f:b6:8a:b0:67:b2:e1:85:1a:
e8:c9:bb:bd:89:fc:10:d7:ca:aa:6b:cc:6d:d3:10:50:76:ec:
cf:30:29:d0:0b:50:9f:6a:03:c3:50:27:ed:fe:66:9b:2e:e1:
05:b5:8a:b7:a9:ca:1f:73:5b:76:87:49:20:58:6d:91:ca:64:
e2:8d:cc:23:62:37:fc:48:09:8b:1d:7b:68:86:2e:53:51:d9:
a7:df:c7:18:43:68:4f:70:12:b3:28:f5:6e:73:3c:84:dd:fb:
0f:d8:af:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:22:15 2026 by rpki-client