Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
File: DdIkCGSH7IZmumFcFdyPR532pI0.mft (raw, json)
Hash identifier: 4WARDhTjpcwWa9BM0VMulK0mD6JkGoNDPtxelspG0SI=
Subject key identifier: FF:FD:78:DE:71:DE:34:21:4C:FC:4A:20:2C:D8:BE:12:5C:93:EF:0D
Authority key identifier: 0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
Certificate issuer: /CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Certificate serial: 019D2704E7731C9681B0B3F692F2433B338A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
Manifest number: 06B9
Signing time: Wed 25 Mar 2026 22:02:05 +0000
Manifest this update: Wed 25 Mar 2026 22:02:05 +0000
Manifest next update: Thu 26 Mar 2026 22:02:05 +0000
Files and hashes: 1: 5uTktA0SznDQPILo7HpGEhZs7Mw.roa (hash: AJB/+7KYGKN+W6lrGm16U2Le5ycdD5eQwXJ/GUey2Vg=)
2: DdIkCGSH7IZmumFcFdyPR532pI0.crl (hash: Y0hmjvC4SMbSfN9lfXxyVpX0uNtR+J9P85BVX9+RUbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:e7:73:1c:96:81:b0:b3:f6:92:f2:43:3b:33:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Validity
Not Before: Mar 25 22:02:05 2026 GMT
Not After : Mar 26 22:02:05 2026 GMT
Subject: CN=fffd78de71de34214cfc4a202cd8be125c93ef0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d8:94:00:d3:02:84:3c:54:18:be:96:5e:5e:
fc:3c:3a:5b:a2:35:5b:0e:c2:e5:9b:02:48:59:d9:
68:bc:09:80:9f:0c:83:fe:bb:73:eb:8e:8f:93:b9:
14:e2:3f:fd:22:0b:91:9c:67:43:40:eb:d2:ee:52:
47:7c:43:76:eb:d8:04:99:4d:84:fb:38:f2:7f:1d:
34:e2:74:84:7c:bb:79:da:35:da:d6:14:02:fe:0b:
c8:fe:ac:fb:fd:ff:01:b2:f7:6e:29:f8:88:45:c9:
4a:80:88:b2:54:5a:06:08:a1:60:1b:84:89:0f:61:
a4:a8:bc:2e:5e:f7:23:a1:7b:09:b5:94:89:c9:1d:
31:e7:b3:45:d2:f7:04:2e:1c:82:57:e2:d9:cf:bc:
4b:75:b2:39:61:7b:87:1f:1d:ed:9a:fb:9c:1b:93:
b0:16:00:3f:4b:28:b3:cc:35:90:c7:10:78:9f:c1:
09:ff:20:70:ac:4c:53:e0:2f:04:f7:a5:53:fe:92:
32:28:99:59:30:bf:f0:24:5b:9f:e1:98:2a:cf:39:
86:44:c4:4d:a6:ab:41:8e:66:86:59:cf:13:22:7d:
83:4d:8b:53:0d:44:02:a7:a4:d6:ee:5a:b8:28:79:
44:8f:4a:5b:99:a3:c0:96:4f:d8:a3:39:a1:47:f1:
29:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:FD:78:DE:71:DE:34:21:4C:FC:4A:20:2C:D8:BE:12:5C:93:EF:0D
X509v3 Authority Key Identifier:
keyid:0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:89:28:82:03:ae:bf:3f:fd:05:42:b1:10:85:f7:76:65:38:
51:3f:7d:82:5b:95:d4:78:28:34:6e:d3:eb:01:46:2e:25:40:
87:51:4b:4d:8c:ee:84:3a:b8:fc:07:10:36:00:b4:4e:d8:fb:
68:ae:ff:93:4d:6b:47:c1:4d:70:26:95:c7:f5:61:a1:d7:74:
15:67:92:81:22:5c:64:36:33:9e:b1:e1:a9:be:92:78:22:0a:
4d:8e:23:bf:9b:63:78:dc:90:39:ea:94:15:72:23:38:08:03:
e5:b7:fc:56:d7:81:3d:05:f6:d6:ab:cc:9f:93:8f:7e:50:54:
1c:98:89:4f:6d:10:fc:31:f7:bd:d7:05:8c:3f:af:5d:11:29:
92:d9:ae:bf:5a:56:ef:54:32:3a:ef:19:bf:e9:7e:0e:e4:81:
49:4d:e0:bc:95:cd:99:ca:c2:85:da:47:a7:66:9d:70:62:76:
92:4f:6a:aa:8f:0a:33:e6:b5:bb:e0:31:66:e6:2d:25:67:55:
1f:51:8e:21:5a:97:25:6f:0c:bf:b2:1e:2f:e4:82:18:a6:52:
68:c9:8a:6f:ce:ef:c9:85:84:20:40:8b:b4:03:30:50:a1:fa:
28:94:31:2b:64:f2:57:35:bd:2d:3f:30:c3:f8:33:2e:dd:a4:
e8:fa:0a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:58:05 2026 by rpki-client