Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
File: ddl3qipMEMe0evKt2WgESH4idKk.mft (raw, json)
Hash identifier: s9umeW4bW1DoGx31uCKAbK5TXW2czTs4bd0Egs3ETyQ=
Subject key identifier: EC:11:A9:ED:15:35:3D:52:AB:A6:F6:90:76:90:F8:83:20:D3:F4:31
Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Certificate serial: 019D26288AE0106A4E95F8C0237A323B04D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 18:01:24 +0000
Manifest this update: Wed 25 Mar 2026 18:01:24 +0000
Manifest next update: Thu 26 Mar 2026 18:01:24 +0000
Files and hashes: 1: ddl3qipMEMe0evKt2WgESH4idKk.crl (hash: xihSqBpTNq/TwwwMw8Wf95osWbIFuYTmAehf+MdY5JY=)
2: loApgUuhhUyY_cfPzGEHPAhUKDo.roa (hash: 0LTaxDqD8Hr++G5h4F+by4f48kCJnGS42cv5zu1L9RE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:8a:e0:10:6a:4e:95:f8:c0:23:7a:32:3b:04:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Validity
Not Before: Mar 25 18:01:24 2026 GMT
Not After : Mar 26 18:01:24 2026 GMT
Subject: CN=ec11a9ed15353d52aba6f6907690f88320d3f431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0b:52:ae:cd:11:a5:d1:87:e9:6d:93:d8:1b:
58:a7:45:eb:72:d2:f8:dc:a5:4a:23:bc:98:be:f5:
e4:cf:96:37:9a:ce:ed:06:cb:e8:f4:47:1c:fc:d9:
8d:dd:b4:73:bc:3e:46:1a:cc:9f:c4:d4:da:48:03:
e1:25:11:0c:35:ec:9d:16:e8:73:5d:e1:6e:02:72:
9b:f8:24:82:ad:04:e7:fa:14:4f:8c:b4:64:e4:90:
dc:f1:5e:13:99:c6:85:84:7b:d8:0e:e2:74:70:2c:
94:d7:fe:9d:71:6e:89:04:26:6f:1d:d4:56:5c:83:
07:08:55:fa:e8:04:6e:a4:8f:b8:75:c7:51:aa:08:
42:3b:46:bc:b4:d4:53:f0:31:9e:c9:c2:06:f2:d3:
e0:2e:9d:a9:64:0a:de:17:eb:49:de:9f:79:cc:f6:
7a:1b:9f:2f:99:bd:c2:4f:52:cc:e7:c5:77:47:8b:
1b:7f:d0:d0:0b:03:d0:d8:54:61:3a:30:a4:25:78:
24:1b:02:88:5b:67:c9:33:72:8d:67:41:56:0b:d9:
41:fe:42:28:fa:e1:ed:67:7d:7d:fa:f9:7f:e7:63:
42:4d:94:07:9b:51:e0:8a:c7:5a:a5:3f:64:64:c9:
e0:54:b9:1a:3f:f5:c7:83:5f:74:03:f7:08:7b:37:
5d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:11:A9:ED:15:35:3D:52:AB:A6:F6:90:76:90:F8:83:20:D3:F4:31
X509v3 Authority Key Identifier:
keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:c6:db:cb:fe:0e:1b:ff:7c:d7:7a:09:63:6b:5c:ed:93:b4:
e7:72:4b:3e:9c:80:2b:54:3f:3e:22:04:e3:4c:7a:c6:8b:27:
e7:e0:5a:1d:ac:5f:f2:d1:58:d9:89:90:7b:9e:22:09:87:27:
4a:46:3b:9c:83:c6:e5:39:10:62:d3:6d:f8:83:1c:52:58:50:
6c:ee:a7:3e:9d:6e:fd:9e:17:62:17:0b:b4:5b:c5:48:7f:3d:
0f:2c:1b:5d:25:51:dd:86:f5:0d:7c:89:be:0b:cb:09:a7:d2:
fc:67:fa:64:bd:60:b5:a0:de:cd:a8:b4:3e:2d:9f:52:b1:0e:
e5:80:a3:6b:4e:30:db:72:b1:55:a6:d5:12:cc:91:d6:ca:66:
00:c9:85:ec:8c:f1:88:f0:0b:d9:3b:36:e0:f3:be:2c:03:61:
76:a6:8e:38:ce:93:18:b2:4b:52:e4:42:c4:59:5d:17:a2:e5:
ea:15:ea:26:3a:c6:4f:88:81:ce:80:2f:20:44:65:5e:39:1b:
43:99:67:5b:1a:6f:6f:c8:ee:e6:03:31:4e:21:d3:44:91:b4:
55:9d:cf:ee:84:18:8a:2f:5d:3a:6a:53:bb:21:92:7f:ae:e9:
13:e5:4c:8d:94:a9:18:79:ab:b5:0d:4c:4a:b5:05:a6:d5:7a:
83:41:69:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mKIrgEGpOlfjAI3oyOwTYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZDk3N2FhMmE0YzEwYzdiNDdhZjJhZGQ5NjgwNDQ4N2Uy
Mjc0YTkwHhcNMjYwMzI1MTgwMTI0WhcNMjYwMzI2MTgwMTI0WjAzMTEwLwYDVQQD
EyhlYzExYTllZDE1MzUzZDUyYWJhNmY2OTA3NjkwZjg4MzIwZDNmNDMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wtSrs0RpdGH6W2T2BtYp0XrctL4
3KVKI7yYvvXkz5Y3ms7tBsvo9Ecc/NmN3bRzvD5GGsyfxNTaSAPhJREMNeydFuhz
XeFuAnKb+CSCrQTn+hRPjLRk5JDc8V4TmcaFhHvYDuJ0cCyU1/6dcW6JBCZvHdRW
XIMHCFX66ARupI+4dcdRqghCO0a8tNRT8DGeycIG8tPgLp2pZAreF+tJ3p95zPZ6
G58vmb3CT1LM58V3R4sbf9DQCwPQ2FRhOjCkJXgkGwKIW2fJM3KNZ0FWC9lB/kIo
+uHtZ319+vl/52NCTZQHm1HgisdapT9kZMngVLkaP/XHg190A/cIezddoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOwRqe0VNT1Sq6b2kHaQ+IMg0/QxMB8GA1UdIwQY
MBaAFHXZd6oqTBDHtHryrdloBEh+InSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzct
MTI2ZGY1NDQ2ZGU5LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzctMTI2ZGY1NDQ2ZGU5
LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAncbby/4O
G/9813oJY2tc7ZO053JLPpyAK1Q/PiIE40x6xosn5+BaHaxf8tFY2YmQe54iCYcn
SkY7nIPG5TkQYtNt+IMcUlhQbO6nPp1u/Z4XYhcLtFvFSH89DywbXSVR3Yb1DXyJ
vgvLCafS/Gf6ZL1gtaDezai0Pi2fUrEO5YCja04w23KxVabVEsyR1spmAMmF7Izx
iPAL2Ts24PO+LANhdqaOOM6TGLJLUuRCxFldF6Ll6hXqJjrGT4iBzoAvIERlXjkb
Q5lnWxpvb8ju5gMxTiHTRJG0VZ3P7oQYii9dOmpTuyGSf67pE+VMjZSpGHmrtQ1M
SrUFptV6g0Fpww==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:27 2026 by rpki-client