Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: 3Yjit5oOEqZIhW4/URyKq9iF1fD7AozqAPTbNFSp254=
Subject key identifier: BE:53:CC:C7:0B:BA:39:05:B4:1E:A8:0C:1C:20:73:92:2C:4B:8D:A4
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 019D99628429574F00A519AA79C410C46CD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 1852
Signing time: Fri 17 Apr 2026 03:01:03 +0000
Manifest this update: Fri 17 Apr 2026 03:01:03 +0000
Manifest next update: Sat 18 Apr 2026 03:01:03 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: 5u14baOkd9dWMvZMFw9EHiXZN3UuPu8O2CneGijeJrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:84:29:57:4f:00:a5:19:aa:79:c4:10:c4:6c:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Apr 17 03:01:03 2026 GMT
Not After : Apr 18 03:01:03 2026 GMT
Subject: CN=be53ccc70bba3905b41ea80c1c2073922c4b8da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a5:56:c0:e3:c6:f9:01:98:70:3b:16:3a:9f:
a4:65:8a:cd:2a:d4:dd:01:3a:99:b7:ab:cc:a2:6f:
64:43:9d:e3:bf:c5:e9:3d:5c:5e:34:4b:f6:78:77:
e0:00:28:12:51:7f:40:af:69:fc:6c:09:cb:c5:92:
48:38:bb:7a:55:9b:86:39:cd:de:1a:73:75:ef:f3:
be:a7:9a:e2:fc:8e:fe:fb:ed:b5:1e:e8:f4:a7:50:
55:bd:a6:d5:fe:31:70:48:2e:69:a9:64:22:ea:a6:
ce:d1:29:4a:60:62:eb:fb:f2:9e:c8:d5:9b:0d:be:
2d:a8:cd:2a:81:2c:cf:59:a4:de:bb:b6:db:d1:7e:
d0:88:fc:f0:33:7b:c4:4d:4d:76:13:21:70:dd:9d:
26:0f:fe:2c:e4:e4:b1:e7:ef:6f:ff:5c:a5:64:8b:
72:31:46:25:cb:4a:56:53:c8:31:58:b5:d5:19:5f:
aa:4f:18:8e:70:02:c5:6d:4a:9f:1e:33:70:f1:4f:
d5:f3:51:52:3a:86:67:3b:ee:ca:d4:75:70:5a:53:
12:cc:b8:3f:c2:1f:a9:a6:30:a1:96:2d:4f:c3:f7:
05:cc:ee:d4:05:3f:be:c3:f4:fe:aa:63:f1:31:48:
16:67:34:cb:3b:e0:bc:16:ff:d1:44:4b:7c:e9:ff:
7c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:53:CC:C7:0B:BA:39:05:B4:1E:A8:0C:1C:20:73:92:2C:4B:8D:A4
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:98:21:e6:da:b3:35:70:01:b8:71:97:da:d8:77:e4:f3:90:
53:0a:e7:fe:a7:a2:bb:d7:b4:57:56:66:9d:90:01:12:61:32:
f8:02:28:09:de:40:0f:2d:ba:03:e4:01:01:33:81:3f:28:b5:
98:c1:eb:ee:08:22:82:2d:37:44:95:5b:9c:58:2e:45:a3:36:
04:74:32:e3:e3:5d:fa:af:7e:71:f3:28:33:99:27:1d:6c:aa:
07:c2:7a:63:45:76:ca:b6:bd:21:81:12:89:fa:04:c6:78:fb:
c0:24:a5:ac:e7:25:94:46:ef:3d:27:fe:3e:60:09:cc:14:d1:
1c:9a:89:bd:7b:90:48:6b:4f:8a:88:bc:4c:1e:63:2c:0a:88:
ae:21:09:3e:13:ff:62:c5:4c:7f:ec:97:e4:c1:de:cf:09:5b:
b7:00:ec:4d:89:1c:b5:3d:19:11:2d:7f:b9:1f:87:a8:92:15:
b3:5b:8a:32:27:09:de:31:5d:f2:3b:ac:45:af:38:91:56:1d:
d6:ed:94:5e:2d:3b:0c:d3:40:9d:6b:98:1b:e8:bd:a3:66:e7:
3b:fd:d6:2a:a9:f5:ea:a1:2c:99:f4:7d:26:c5:4c:83:5c:5a:
9a:dd:8b:40:45:2a:c4:ec:bf:52:94:83:d9:ad:d4:ce:9a:c2:
97:7b:b4:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:22:01 2026 by rpki-client