Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
File: 3VShBsGZ81M-VritvPpLGsPmkJ8.mft (raw, json)
Hash identifier: AxMS1QAN46BD4Zx9QIfNx/Wz2NWm3yD81Ag3TA6K5RU=
Subject key identifier: A4:0D:22:79:A6:1C:06:9A:A5:BD:D2:E7:B5:90:99:B4:69:4C:BD:A8
Authority key identifier: DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F
Certificate issuer: /CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f
Certificate serial: 019CAB6B81B7BD00C7A8EB4B073B2C5053CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
Manifest number: 0B12
Signing time: Sun 01 Mar 2026 22:01:15 +0000
Manifest this update: Sun 01 Mar 2026 22:01:15 +0000
Manifest next update: Mon 02 Mar 2026 22:01:15 +0000
Files and hashes: 1: 3VShBsGZ81M-VritvPpLGsPmkJ8.crl (hash: VS0Xd9o1789m8zenmq8+QOGYtxgZTlLdBISKdQnxuiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:81:b7:bd:00:c7:a8:eb:4b:07:3b:2c:50:53:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f
Validity
Not Before: Mar 1 22:01:15 2026 GMT
Not After : Mar 2 22:01:15 2026 GMT
Subject: CN=a40d2279a61c069aa5bdd2e7b59099b4694cbda8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6d:e9:2b:04:5c:b0:09:57:26:d6:29:a2:c6:
dc:22:3d:8b:ff:3d:6e:13:4c:65:e4:e8:85:61:3d:
fd:d2:b7:ae:97:66:a1:a7:3f:0f:c4:8f:1b:b3:32:
20:68:77:33:0f:be:66:ac:58:84:61:c1:e5:61:4e:
bc:0f:52:4f:00:ca:b7:46:5f:f3:cb:29:9c:cc:f1:
bc:93:d3:0e:48:86:fa:b4:f5:f2:49:83:bf:ac:55:
ab:e6:8f:30:8a:7f:b4:15:c3:73:7a:3b:92:f8:ab:
68:30:a3:3b:09:40:d8:a2:53:31:94:34:24:9f:59:
36:a5:84:51:27:b1:02:35:8c:46:b2:20:3f:b0:77:
31:f3:91:87:97:21:9c:00:d5:7c:0b:87:18:e4:77:
df:7b:78:92:f4:bd:42:ed:38:a9:38:e0:99:54:2b:
ac:16:99:3e:a4:8e:d6:ff:07:34:26:97:ec:ba:71:
f4:59:e2:85:7d:54:bf:e2:9b:1b:c3:e0:7e:0e:7f:
87:36:c1:50:b2:47:05:28:36:24:8a:22:cc:89:11:
4a:8f:3e:57:56:65:4e:07:2d:0d:c1:0e:f9:d7:1f:
b4:b2:8e:c3:99:14:a6:bf:86:c2:fc:e4:59:e1:d6:
64:14:51:ed:10:46:13:0a:94:2a:14:7f:56:67:f6:
9a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0D:22:79:A6:1C:06:9A:A5:BD:D2:E7:B5:90:99:B4:69:4C:BD:A8
X509v3 Authority Key Identifier:
keyid:DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:53:94:66:49:29:ea:e4:4c:4d:ac:08:e8:f2:3c:82:a8:81:
6a:a4:1b:19:5f:a4:9b:6b:10:8a:2f:67:77:ec:7d:ad:57:e6:
63:68:59:78:52:54:86:b0:43:25:c7:dd:43:e7:14:51:d0:1c:
a0:d0:ed:0d:15:cc:48:ce:16:3a:af:e0:5e:59:81:16:86:12:
07:18:02:8b:4a:c8:3b:00:0d:9c:9d:47:b4:fd:a3:b6:8c:bb:
94:ac:d2:23:83:2c:36:6e:ac:6d:90:7c:bf:7d:15:27:a7:3f:
84:fe:13:74:05:93:fd:55:cb:78:02:38:48:60:f4:a5:c7:6d:
6c:5d:3b:a8:1a:64:f6:ab:bc:6f:07:e6:de:c5:6d:f7:55:c6:
30:05:77:b4:7a:49:75:76:da:bf:dc:cf:61:a2:59:dd:e7:29:
c0:48:e2:bc:68:36:c5:79:82:eb:c2:4f:4a:ec:50:0f:5d:bc:
e2:f7:46:e4:1c:e6:90:50:4f:27:91:c0:5d:5a:2c:95:f3:d0:
6f:a9:17:78:a8:d5:e8:23:8a:f2:93:b2:1f:fd:8e:74:a3:fd:
a5:f7:39:a4:db:57:d3:e2:21:05:15:f9:1e:74:f1:b1:f1:bf:
15:6c:16:ef:88:e5:51:2a:02:c0:93:9d:7f:55:3a:6f:00:94:
1e:b5:ac:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:24:56 2026 by rpki-client