Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: qlU0H6pc94JPZsJHBlBsBI+aLLuJBnNe5UvFmTjlCxQ=
Subject key identifier: 17:C2:EC:ED:D4:AF:2C:81:FA:9F:77:EC:2F:66:23:7A:C4:C4:6A:2A
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 019EC0DBBA3B7820D7240CAA8E8BAB4CE053
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 18EB
Signing time: Sat 13 Jun 2026 12:01:25 +0000
Manifest this update: Sat 13 Jun 2026 12:01:25 +0000
Manifest next update: Sun 14 Jun 2026 12:01:25 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: /OfeT61ipUTXM2XrvxFhnHhWn79OTD/Qrm3Zh0iwpXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:ba:3b:78:20:d7:24:0c:aa:8e:8b:ab:4c:e0:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Jun 13 12:01:25 2026 GMT
Not After : Jun 14 12:01:25 2026 GMT
Subject: CN=17c2ecedd4af2c81fa9f77ec2f66237ac4c46a2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cb:60:cc:67:12:2e:18:43:a3:08:93:0f:a3:
00:88:79:67:64:96:fc:92:8f:fd:da:6b:2a:e1:98:
13:62:2f:21:36:ca:bb:4b:c7:07:40:c2:47:7f:bf:
28:83:38:a3:45:38:74:6d:b0:dd:7e:52:0f:eb:79:
b4:29:2b:4b:34:ba:a0:04:ff:2f:b5:38:a3:ab:cc:
0c:30:bd:09:8c:25:52:d9:4e:51:d0:19:0e:ac:9e:
4c:7a:87:8e:82:78:c5:8a:9f:16:a4:69:50:0e:10:
ea:21:aa:5b:fe:d7:31:02:50:e3:3c:bb:cc:e5:70:
e4:4a:c6:0b:16:c8:14:ec:97:d6:35:be:6a:48:0c:
c0:b7:28:76:34:0b:61:5d:49:5b:e0:75:d7:a5:69:
4a:50:05:77:57:d3:16:73:41:f1:14:cc:ec:3e:66:
89:99:83:90:1d:c3:f0:ef:75:3f:27:6b:e9:fc:a7:
a3:b9:0d:22:4d:f1:e4:bf:14:83:31:21:09:81:b1:
28:f6:0f:e1:94:32:da:b3:04:45:3b:a8:b4:55:df:
19:88:db:dd:50:0c:c4:d1:69:35:f5:45:da:8f:87:
43:00:be:28:f1:77:51:cd:c2:58:ec:37:69:23:7a:
64:d4:a9:43:5e:66:12:6b:1c:3d:f5:fa:20:7d:b2:
01:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C2:EC:ED:D4:AF:2C:81:FA:9F:77:EC:2F:66:23:7A:C4:C4:6A:2A
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:da:7e:61:57:88:c9:d5:ad:ca:3a:f3:86:41:f4:16:6c:12:
c9:70:aa:81:53:9f:4c:5b:e6:aa:56:fe:45:e0:5d:c7:1f:ff:
f9:85:60:3d:93:0b:54:aa:af:0a:f6:33:bb:28:ae:f6:47:e2:
55:8e:37:f6:7f:8a:e9:99:3e:e6:b1:71:98:50:72:9a:f6:4f:
5c:7d:f6:72:e7:a9:28:3d:a6:13:de:cb:c1:77:4c:b0:eb:c8:
b1:b8:52:74:85:a2:df:51:4c:ad:13:b9:1f:9b:b4:70:39:e4:
9b:cc:3f:f3:8f:1b:fd:9d:19:60:da:3d:4f:0c:55:69:8d:77:
48:02:8f:73:35:50:34:89:b6:32:dd:50:c7:22:1c:0c:29:48:
fa:2e:bb:d9:fa:3a:81:85:7a:6d:bf:a9:94:eb:09:ee:36:31:
6c:a1:09:bb:c7:02:3c:c0:20:53:79:bd:b1:c6:d4:6a:f8:5b:
74:fa:db:dc:2c:31:e0:a7:c8:5f:59:98:8a:0c:75:df:13:16:
41:f8:bf:04:26:1a:23:94:2d:5b:90:6f:16:cf:05:e9:90:df:
48:64:25:e7:62:f4:5a:39:b7:91:3e:aa:65:d8:26:4b:8f:1f:
c9:4c:63:2c:03:e0:49:d6:d8:76:3e:7a:f7:fb:9e:94:12:9a:
51:77:a2:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:54:25 2026 by rpki-client