Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
File: 3dStS_QUF7o4OE1lvC0HwPaFCeE.mft (raw, json)
Hash identifier: 0pv7bZ3ZFVXMkmLGDVS4N8crwkHYXLHa5zn3YhnXaw8=
Subject key identifier: 0D:31:E4:51:4A:0D:8E:8F:ED:B5:B9:95:E3:AB:AF:A6:92:95:58:61
Authority key identifier: DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
Certificate issuer: /CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Certificate serial: 019CABDA0E7FC83E7703C362DC93E4740CD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
Manifest number: 17D7
Signing time: Mon 02 Mar 2026 00:02:00 +0000
Manifest this update: Mon 02 Mar 2026 00:02:00 +0000
Manifest next update: Tue 03 Mar 2026 00:02:00 +0000
Files and hashes: 1: 3dStS_QUF7o4OE1lvC0HwPaFCeE.crl (hash: SytfT6LbYjmtbuNLsrLJBAInaSfUCDImAlXEjMdyQ5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:da:0e:7f:c8:3e:77:03:c3:62:dc:93:e4:74:0c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd4ad4bf41417ba38384d65bc2d07c0f68509e1
Validity
Not Before: Mar 2 00:02:00 2026 GMT
Not After : Mar 3 00:02:00 2026 GMT
Subject: CN=0d31e4514a0d8e8fedb5b995e3abafa692955861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:1c:8b:2c:88:2e:4d:4f:4c:f3:5f:17:77:
69:3f:2b:e0:6b:6a:a2:71:c6:c6:61:89:99:54:6d:
9c:be:12:1d:df:df:91:15:1c:db:0d:76:e5:d6:d6:
c8:4e:43:97:34:99:58:c4:45:c0:7f:5c:20:69:51:
7a:33:6f:3b:30:99:d0:83:e4:69:d2:f1:c4:4a:cf:
ee:4a:a8:8b:cd:fb:e2:e6:41:a2:4f:c5:c6:e7:93:
29:98:c8:07:85:d1:c2:73:09:39:14:fe:4d:2c:e8:
ab:11:2d:a8:df:2e:aa:65:be:df:cb:2a:0a:b3:78:
a2:df:31:69:b6:46:4f:de:23:5c:60:73:35:ac:c0:
42:97:ed:59:5c:15:f9:13:ea:3a:3a:76:73:23:21:
28:e1:d4:22:66:4d:a4:16:ee:af:e2:83:3a:7b:39:
ce:45:18:5c:d6:d2:08:48:a7:1d:b8:27:eb:25:ba:
9b:2f:78:2c:c1:90:cc:a7:db:9c:26:cd:4a:da:46:
d5:e7:f1:f3:e0:f9:86:a7:bb:98:ef:12:9e:cd:4c:
70:6c:df:8a:52:2e:49:48:06:ad:70:32:0b:e4:ab:
86:d3:2b:3a:ab:51:0a:fb:6c:e3:d5:19:1b:fa:5c:
4f:fe:9b:74:11:85:d6:04:1b:da:e7:67:34:7a:8e:
8c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:31:E4:51:4A:0D:8E:8F:ED:B5:B9:95:E3:AB:AF:A6:92:95:58:61
X509v3 Authority Key Identifier:
keyid:DD:D4:AD:4B:F4:14:17:BA:38:38:4D:65:BC:2D:07:C0:F6:85:09:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dStS_QUF7o4OE1lvC0HwPaFCeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/094969-13ed-4c14-8575-7bc8c20a235a/1/3dStS_QUF7o4OE1lvC0HwPaFCeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:0c:e0:5d:18:f7:35:a4:62:17:91:e1:e8:c9:34:a2:30:47:
ba:68:22:0a:20:f2:de:75:ca:ad:b0:8c:96:3e:f1:f7:c8:80:
9e:ae:a8:bd:13:13:f8:3a:82:a9:d0:99:d0:be:32:4a:59:61:
6d:6f:27:96:1b:cd:d0:44:0f:9e:7f:77:80:07:85:bb:21:a8:
eb:2b:71:b9:69:7b:17:06:66:98:85:c1:83:e5:7b:9e:51:31:
8b:7b:d4:32:92:0f:f8:c5:64:8f:d9:db:25:24:7e:da:71:1a:
8b:f8:04:06:7b:0f:04:42:01:9d:d6:1d:d5:1b:cd:63:7f:93:
e3:b0:50:dc:46:23:d9:d6:a9:62:40:48:b2:cf:da:6e:d4:62:
39:d0:58:b8:c1:3a:82:85:99:01:f4:be:07:a1:64:31:55:00:
d9:c5:73:2c:65:45:50:be:d9:62:91:ad:46:20:9d:64:ba:5d:
50:f0:f8:9a:87:4a:e9:b9:f3:80:12:40:b7:3a:6b:5a:bc:6e:
26:9c:4e:e6:30:24:43:0a:e1:9b:cb:c0:b4:4a:26:8c:6a:d0:
2b:06:5a:1a:20:53:a8:84:29:2a:3f:e1:9d:93:be:23:df:37:
c3:3e:f4:c3:1a:91:9c:f3:a2:f3:ec:2a:fa:c1:7e:de:c8:51:
c9:7e:5a:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:44:55 2026 by rpki-client