Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
File: DdIkCGSH7IZmumFcFdyPR532pI0.mft (raw, json)
Hash identifier: E2wIy8sZ23w+ah7ouXEmSrdTMnXOo3ErGb8eW1qj3WI=
Subject key identifier: 21:E5:D3:94:17:6F:68:B3:7C:01:96:11:E0:10:4B:49:40:3F:FF:BE
Authority key identifier: 0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
Certificate issuer: /CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Certificate serial: 019E1E36185343961AF58EA4450895724C90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
Manifest number: 0739
Signing time: Tue 12 May 2026 22:02:02 +0000
Manifest this update: Tue 12 May 2026 22:02:02 +0000
Manifest next update: Wed 13 May 2026 22:02:02 +0000
Files and hashes: 1: 5uTktA0SznDQPILo7HpGEhZs7Mw.roa (hash: AJB/+7KYGKN+W6lrGm16U2Le5ycdD5eQwXJ/GUey2Vg=)
2: DdIkCGSH7IZmumFcFdyPR532pI0.crl (hash: oG9j+IuUH/u2KxFyNqd9dTAM1RkzlkDC2SGfirSttTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:36:18:53:43:96:1a:f5:8e:a4:45:08:95:72:4c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Validity
Not Before: May 12 22:02:02 2026 GMT
Not After : May 13 22:02:02 2026 GMT
Subject: CN=21e5d394176f68b37c019611e0104b49403fffbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bf:b4:00:1b:a1:9d:1c:f3:a1:b2:71:59:e1:
d3:00:d8:ec:5e:31:53:e6:cf:0b:5e:ba:56:d6:72:
05:ce:bd:a4:8a:d4:b5:d7:21:9f:43:32:7e:c2:d8:
ac:ae:cf:31:4b:69:66:78:66:50:09:3a:27:f5:58:
89:49:f7:ec:62:42:46:cd:a8:15:d3:05:c6:71:fa:
7a:b3:d0:da:a3:8e:21:9a:ac:0a:30:61:4f:db:02:
28:5a:6e:90:47:5b:6a:6b:a5:a6:09:38:42:cb:2e:
24:ea:f8:a0:d5:2b:58:3f:64:fb:5e:5d:5a:73:76:
d1:13:76:06:e9:7c:19:ef:e6:b1:ee:d9:7a:e5:9c:
95:f0:ac:1e:1b:b3:a7:56:a2:dd:cf:f5:a3:d7:55:
10:24:16:e2:83:53:c6:8a:5a:e5:1e:c0:a6:3e:9d:
17:9b:1a:ab:e1:22:f2:a5:73:1d:26:2d:57:8d:ac:
b4:9e:be:f2:a8:94:3e:ab:eb:68:0f:97:3d:5c:6b:
e3:ad:39:30:f9:b8:24:46:2b:80:1f:a5:06:03:6e:
c3:4b:a9:66:0b:46:a5:34:f2:da:6a:8d:99:f8:0c:
42:b3:1e:45:d3:12:a1:7f:42:ac:b1:06:62:6a:d5:
56:e8:04:89:15:12:36:85:ca:43:c6:7f:cb:10:8b:
b7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E5:D3:94:17:6F:68:B3:7C:01:96:11:E0:10:4B:49:40:3F:FF:BE
X509v3 Authority Key Identifier:
keyid:0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:97:7b:51:45:43:b5:25:6d:9d:9d:9e:12:87:8b:07:d1:c6:
0c:9b:4c:1f:31:3c:bb:6f:8c:bd:de:22:2e:4e:16:59:70:11:
93:7d:6b:1a:00:e5:fc:07:bf:9c:0f:7d:44:7c:d3:a1:bc:5a:
08:a7:a6:06:1b:91:9c:a9:b4:cd:6d:e8:7c:5a:42:df:d8:fa:
06:71:64:19:e7:1e:40:0f:48:e9:d8:c1:82:ae:12:a8:63:ee:
38:ea:31:de:ea:47:27:5c:17:a2:0a:df:a9:df:51:29:63:65:
29:e7:97:79:88:90:e9:d7:ed:d5:2f:af:2b:2b:21:43:9b:6d:
5c:60:fa:81:46:42:fe:57:40:c5:25:8a:54:5d:d5:f3:64:bb:
7f:0b:e8:cf:ce:38:89:c6:58:6e:dc:27:8a:79:e8:27:56:be:
44:11:88:b4:8c:29:ea:82:8c:b8:99:21:b7:ce:a2:cd:a9:00:
d8:d8:b4:f0:52:84:d6:79:81:94:56:0e:30:1d:c8:3c:48:0e:
91:89:70:c6:8a:35:61:7c:a4:0f:65:b9:75:1c:67:f6:59:29:
93:2c:eb:cf:1b:4c:66:bf:49:90:02:04:15:9d:4b:91:34:89:
6f:fc:18:56:17:0e:74:7c:f1:4b:9b:d9:91:69:9e:0a:7d:f1:
89:9b:b6:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNhhTQ5Ya9Y6kRQiVckyQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkZDIyNDA4NjQ4N2VjODY2NmJhNjE1YzE1ZGM4ZjQ3OWRm
NmE0OGQwHhcNMjYwNTEyMjIwMjAyWhcNMjYwNTEzMjIwMjAyWjAzMTEwLwYDVQQD
EygyMWU1ZDM5NDE3NmY2OGIzN2MwMTk2MTFlMDEwNGI0OTQwM2ZmZmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtL+0ABuhnRzzobJxWeHTANjsXjFT
5s8LXrpW1nIFzr2kitS11yGfQzJ+wtisrs8xS2lmeGZQCTon9ViJSffsYkJGzagV
0wXGcfp6s9Dao44hmqwKMGFP2wIoWm6QR1tqa6WmCThCyy4k6vig1StYP2T7Xl1a
c3bRE3YG6XwZ7+ax7tl65ZyV8KweG7OnVqLdz/Wj11UQJBbig1PGilrlHsCmPp0X
mxqr4SLypXMdJi1Xjay0nr7yqJQ+q+toD5c9XGvjrTkw+bgkRiuAH6UGA27DS6lm
C0alNPLaao2Z+AxCsx5F0xKhf0KssQZiatVW6ASJFRI2hcpDxn/LEIu3KQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCHl05QXb2izfAGWEeAQS0lAP/++MB8GA1UdIwQY
MBaAFA3SJAhkh+yGZrphXBXcj0ed9qSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGRJa0NHU0g3SVptdW1GY0ZkeVBSNTMycEkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi80NWEzYWQtNGI0Yy00YWFhLTk2ZDkt
Mjk3MTgwMDc5NDIyLzEvRGRJa0NHU0g3SVptdW1GY0ZkeVBSNTMycEkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi80NWEzYWQtNGI0Yy00YWFhLTk2ZDktMjk3MTgwMDc5NDIy
LzEvRGRJa0NHU0g3SVptdW1GY0ZkeVBSNTMycEkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbZd7UUVD
tSVtnZ2eEoeLB9HGDJtMHzE8u2+Mvd4iLk4WWXARk31rGgDl/Ae/nA99RHzTobxa
CKemBhuRnKm0zW3ofFpC39j6BnFkGeceQA9I6djBgq4SqGPuOOox3upHJ1wXogrf
qd9RKWNlKeeXeYiQ6dft1S+vKyshQ5ttXGD6gUZC/ldAxSWKVF3V82S7fwvoz844
icZYbtwninnoJ1a+RBGItIwp6oKMuJkht86izakA2Ni08FKE1nmBlFYOMB3IPEgO
kYlwxoo1YXykD2W5dRxn9lkpkyzrzxtMZr9JkAIEFZ1LkTSJb/wYVhcOdHzxS5vZ
kWmeCn3xiZu2Zg==
-----END CERTIFICATE-----
Generated at Wed May 13 02:23:44 2026 by rpki-client