Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
File: 3DC4_dBG72WGgJfwNrinyFVyqtA.mft (raw, json)
Hash identifier: Utpz2XofQJiTn1jGy/GZW13n8XmsKKvt5Jbw8EUR39g=
Subject key identifier: AB:6C:AA:94:E6:62:13:55:80:15:04:2A:31:AA:5C:BD:15:B3:D1:83
Authority key identifier: DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
Certificate issuer: /CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Certificate serial: 019D9B504BD2C61609A710AB43D7BEA30499
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 12:00:23 +0000
Manifest this update: Fri 17 Apr 2026 12:00:23 +0000
Manifest next update: Sat 18 Apr 2026 12:00:23 +0000
Files and hashes: 1: 3DC4_dBG72WGgJfwNrinyFVyqtA.crl (hash: mC8KqOe0/ij9x4k5MIQiusYguhfCOhjog2aJQkrlvho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:4b:d2:c6:16:09:a7:10:ab:43:d7:be:a3:04:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Validity
Not Before: Apr 17 12:00:23 2026 GMT
Not After : Apr 18 12:00:23 2026 GMT
Subject: CN=ab6caa94e66213558015042a31aa5cbd15b3d183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ea:16:f6:bb:ec:91:c8:cb:30:e8:c3:d2:85:
98:73:f1:fb:e8:4e:20:a3:ee:c4:b8:22:4c:f1:c3:
3e:7a:60:48:5e:b1:d8:f2:fa:17:52:c7:33:5d:c9:
4b:53:e2:0e:31:7e:16:bc:4c:a9:20:96:9e:8b:5c:
ce:13:80:e9:3b:16:d4:29:b2:40:98:1b:7d:27:c6:
90:f9:da:bf:95:a4:aa:93:d3:78:ff:0d:17:cd:f1:
af:a1:69:04:8a:99:8b:84:1b:82:b0:ae:25:20:8d:
1b:80:85:45:62:d3:6e:81:a9:9f:db:73:c3:26:68:
71:d9:5b:b0:88:1f:6a:9a:bb:9e:b5:6d:8b:66:68:
57:b3:91:29:b0:59:1f:56:d9:83:e4:ed:8a:19:b8:
02:2a:f8:19:48:2b:16:51:53:49:3e:45:3e:84:07:
65:06:42:81:1e:ce:2a:18:d9:41:57:90:38:3e:63:
5d:7a:04:12:cb:5b:c6:be:fc:53:8b:3f:3b:f3:23:
d1:f1:03:3e:bd:79:ca:3a:37:dc:38:fc:b4:fc:b6:
d9:1a:34:3c:32:80:5c:38:3f:93:fb:56:e7:c3:d3:
10:73:e8:72:d2:35:de:8a:22:e5:47:0c:31:4b:ae:
c8:f8:b0:14:5f:82:ed:91:f7:56:62:70:e0:6f:ec:
eb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:6C:AA:94:E6:62:13:55:80:15:04:2A:31:AA:5C:BD:15:B3:D1:83
X509v3 Authority Key Identifier:
keyid:DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:42:a5:e3:61:0d:2a:1d:12:22:d4:a2:91:48:2b:c1:4d:42:
77:66:6b:0c:5a:ee:d1:42:b4:5d:a6:fc:c0:e8:80:a4:e1:e6:
a7:09:a4:a9:6f:ba:07:45:14:0b:d7:2d:cd:39:eb:47:74:e1:
f1:54:62:10:60:dd:41:0d:6c:b4:48:2a:a3:6e:fb:71:e2:4c:
60:2f:40:3c:22:2b:2f:24:4f:66:a8:aa:42:39:42:68:ff:c7:
07:8e:6e:ec:fc:ab:b7:1d:a2:10:0b:fe:f5:17:bb:c1:5a:49:
ea:7f:39:79:07:a4:13:a6:28:a1:8c:31:4b:85:46:f0:c9:a4:
0e:de:4b:14:a0:c5:c1:fc:a5:ff:e1:3c:2d:a4:83:6e:f2:d6:
f9:fc:40:4d:16:ee:63:24:01:f3:75:3e:48:47:12:9d:f5:00:
1f:e5:94:11:54:ad:04:3d:13:55:18:b0:8d:fb:7a:b4:c5:52:
f0:f8:a6:49:05:83:12:a6:1e:d3:7a:0b:5f:c0:e7:fd:17:e4:
9c:8c:99:85:36:5b:64:b5:6f:02:50:45:74:f7:13:0d:66:bb:
4f:11:ea:7b:52:40:ba:a5:a2:d5:ce:07:d5:d9:01:3c:77:92:
32:57:80:b1:63:d3:95:41:da:c2:2d:41:28:95:46:c6:ef:80:
e0:ab:37:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bUEvSxhYJpxCrQ9e+owSZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMzBiOGZkZDA0NmVmNjU4NjgwOTdmMDM2YjhhN2M4NTU3
MmFhZDAwHhcNMjYwNDE3MTIwMDIzWhcNMjYwNDE4MTIwMDIzWjAzMTEwLwYDVQQD
EyhhYjZjYWE5NGU2NjIxMzU1ODAxNTA0MmEzMWFhNWNiZDE1YjNkMTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+oW9rvskcjLMOjD0oWYc/H76E4g
o+7EuCJM8cM+emBIXrHY8voXUsczXclLU+IOMX4WvEypIJaei1zOE4DpOxbUKbJA
mBt9J8aQ+dq/laSqk9N4/w0XzfGvoWkEipmLhBuCsK4lII0bgIVFYtNugamf23PD
Jmhx2VuwiB9qmruetW2LZmhXs5EpsFkfVtmD5O2KGbgCKvgZSCsWUVNJPkU+hAdl
BkKBHs4qGNlBV5A4PmNdegQSy1vGvvxTiz878yPR8QM+vXnKOjfcOPy0/LbZGjQ8
MoBcOD+T+1bnw9MQc+hy0jXeiiLlRwwxS67I+LAUX4LtkfdWYnDgb+zrUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKtsqpTmYhNVgBUEKjGqXL0Vs9GDMB8GA1UdIwQY
MBaAFNwwuP3QRu9lhoCX8Da4p8hVcqrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYt
MjlhMGFhNmM0YWQxLzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYtMjlhMGFhNmM0YWQx
LzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWkKl42EN
Kh0SItSikUgrwU1Cd2ZrDFru0UK0Xab8wOiApOHmpwmkqW+6B0UUC9ctzTnrR3Th
8VRiEGDdQQ1stEgqo277ceJMYC9APCIrLyRPZqiqQjlCaP/HB45u7Pyrtx2iEAv+
9Re7wVpJ6n85eQekE6YooYwxS4VG8MmkDt5LFKDFwfyl/+E8LaSDbvLW+fxATRbu
YyQB83U+SEcSnfUAH+WUEVStBD0TVRiwjft6tMVS8PimSQWDEqYe03oLX8Dn/Rfk
nIyZhTZbZLVvAlBFdPcTDWa7TxHqe1JAuqWi1c4H1dkBPHeSMleAsWPTlUHawi1B
KJVGxu+A4Ks3Vg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:49:57 2026 by rpki-client