Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.mft
File: 3APMhzX27sAjqfI6BLLpDVOpIVI.mft (raw, json)
Hash identifier: u1HIOPCCVZ8i8hhZVqBo/wLaR0y31KbPjYN5cKOW63g=
Subject key identifier: 77:FA:41:11:1C:A0:8C:0D:1F:84:A8:12:BE:24:9F:8F:06:4C:F3:26
Authority key identifier: DC:03:CC:87:35:F6:EE:C0:23:A9:F2:3A:04:B2:E9:0D:53:A9:21:52
Certificate issuer: /CN=dc03cc8735f6eec023a9f23a04b2e90d53a92152
Certificate serial: 019EC06E407B1FF4BDDDDD61A4175EDE3122
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3APMhzX27sAjqfI6BLLpDVOpIVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.mft
Manifest number: 09EB
Signing time: Sat 13 Jun 2026 10:01:51 +0000
Manifest this update: Sat 13 Jun 2026 10:01:51 +0000
Manifest next update: Sun 14 Jun 2026 10:01:51 +0000
Files and hashes: 1: 3APMhzX27sAjqfI6BLLpDVOpIVI.crl (hash: 9mc15qJI+OMaemRGHx5Vk7ATAWXjfga0h8fFOKf9s/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3APMhzX27sAjqfI6BLLpDVOpIVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6e:40:7b:1f:f4:bd:dd:dd:61:a4:17:5e:de:31:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc03cc8735f6eec023a9f23a04b2e90d53a92152
Validity
Not Before: Jun 13 10:01:51 2026 GMT
Not After : Jun 14 10:01:51 2026 GMT
Subject: CN=77fa41111ca08c0d1f84a812be249f8f064cf326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:eb:19:28:91:6d:e1:2e:e0:72:21:a4:e4:6c:
bc:64:87:1f:d2:c0:ce:76:66:f5:2a:f4:6b:06:a5:
71:74:9e:63:bd:1c:a2:9a:66:95:6c:cd:dc:31:82:
f0:5e:f0:20:ac:85:1a:84:61:ec:07:b4:37:04:99:
e8:17:7e:21:c0:c4:80:c2:df:be:58:09:2f:51:bb:
97:ab:8b:ca:f8:ce:95:c2:bb:8a:e4:7a:eb:9d:c8:
11:82:5b:52:24:a7:8e:84:24:b6:bc:80:81:07:df:
8a:c0:6c:47:4a:78:5d:8f:9f:61:4c:aa:75:a3:d1:
4e:3f:1a:1e:f3:8d:93:1f:b1:3e:5b:d4:b4:c1:12:
00:9d:7f:72:df:91:d4:61:c9:0a:34:ab:98:8e:a6:
51:88:cf:ae:1c:a8:12:66:a5:05:f9:21:39:04:f6:
82:d1:76:25:6b:84:bd:45:1f:02:24:b2:e6:a8:ae:
41:af:55:ce:5f:6b:0a:16:30:82:fa:58:41:b3:66:
8e:70:5c:b5:75:9c:6a:e5:b6:20:6f:1b:63:60:3d:
77:e6:d2:d5:da:c9:f7:63:70:57:03:71:69:a2:78:
c8:f6:d8:1c:9d:fd:29:af:00:4e:44:f8:80:bf:be:
7d:71:d7:f8:87:5c:ca:24:31:ec:d4:ae:d9:0f:b0:
bb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FA:41:11:1C:A0:8C:0D:1F:84:A8:12:BE:24:9F:8F:06:4C:F3:26
X509v3 Authority Key Identifier:
keyid:DC:03:CC:87:35:F6:EE:C0:23:A9:F2:3A:04:B2:E9:0D:53:A9:21:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3APMhzX27sAjqfI6BLLpDVOpIVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:01:d8:ad:c4:20:cf:0c:9d:4a:6f:92:34:28:11:61:a7:9c:
16:8e:8f:94:38:a9:f1:62:04:b2:4f:74:99:60:b9:cc:20:8f:
c1:87:2f:c1:bb:b3:08:5a:40:81:64:86:40:e4:1c:18:a7:e7:
76:c3:74:a5:06:83:bd:5c:67:38:7e:83:2f:40:9f:a7:cf:8d:
17:37:84:f6:f3:c2:4a:55:26:47:e3:9b:ff:17:46:f3:3f:5b:
7e:b8:0e:46:b2:24:ef:77:19:1f:20:58:68:87:46:7a:4e:82:
c4:0c:8c:6b:c4:bc:37:77:9b:00:0b:ad:ea:ef:89:14:cc:58:
6f:54:7f:7d:71:77:9c:d5:82:60:f1:c7:b9:8a:28:e6:3e:ea:
4a:e9:5d:c5:e1:b1:18:40:35:2e:ab:a0:2e:f3:d4:ee:2d:ba:
99:02:14:2b:f8:31:d7:41:91:0f:29:b1:c0:50:ef:d8:d1:22:
65:3a:42:07:db:4e:d4:ac:af:91:75:60:4e:33:a3:e5:52:75:
04:cb:8b:2f:ac:6b:1c:42:b7:f9:80:d9:79:4b:bb:58:f3:96:
52:c6:11:42:23:c8:93:76:f3:74:d1:2b:49:34:17:f1:e8:b1:
0d:49:36:66:82:ca:e1:36:b8:d4:f6:4b:6f:e6:5a:28:41:c0:
8f:9e:42:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:37:22 2026 by rpki-client