Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
File: ddl3qipMEMe0evKt2WgESH4idKk.mft (raw, json)
Hash identifier: vibP6kyjIJPKf+pAFlWAMK7g8Y/30hodN7OrYwZT0cY=
Subject key identifier: E7:FE:2B:95:35:D0:1B:39:2A:B3:10:11:07:FD:70:D8:04:23:56:AB
Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Certificate serial: 019EB7D7C55775EFA519BAAFC076CAAA0AE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
Manifest number: 1957
Signing time: Thu 11 Jun 2026 18:00:31 +0000
Manifest this update: Thu 11 Jun 2026 18:00:31 +0000
Manifest next update: Fri 12 Jun 2026 18:00:31 +0000
Files and hashes: 1: ddl3qipMEMe0evKt2WgESH4idKk.crl (hash: doOBB46QDf+UEvWBXWHzCOU1ZUM1GRBmlRDnZFYI7zQ=)
2: loApgUuhhUyY_cfPzGEHPAhUKDo.roa (hash: 0LTaxDqD8Hr++G5h4F+by4f48kCJnGS42cv5zu1L9RE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:d7:c5:57:75:ef:a5:19:ba:af:c0:76:ca:aa:0a:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Validity
Not Before: Jun 11 18:00:31 2026 GMT
Not After : Jun 12 18:00:31 2026 GMT
Subject: CN=e7fe2b9535d01b392ab3101107fd70d8042356ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:df:77:4b:fb:3e:da:f1:62:2b:ee:13:f7:97:
e7:d3:bc:7a:3c:b7:fe:d4:cb:42:98:40:1c:51:ac:
73:80:66:e4:19:3f:73:36:11:71:d8:ed:7e:14:d3:
c8:9c:43:e8:f9:77:a7:76:c4:e9:e9:36:bb:fc:e9:
7b:7a:3b:3b:82:e5:f6:08:7a:5b:7a:57:ad:74:ce:
43:b4:3a:f0:ef:bf:b0:54:54:d0:70:a8:27:89:e2:
3a:58:d5:a6:68:2a:03:68:e0:ab:2d:56:a4:f3:e0:
0c:c1:9a:ef:d4:73:92:ab:cd:58:12:ee:ce:2c:69:
67:ff:68:6a:ed:af:29:16:c7:de:5a:46:68:fd:bc:
56:48:ab:f1:df:61:53:d7:d7:7d:5a:88:92:38:57:
ca:5b:1f:71:d8:c8:71:76:11:88:ec:3b:3d:b9:e4:
4c:db:18:16:dd:d5:1e:01:20:3d:38:ff:bd:64:44:
5f:fc:ad:3c:69:8b:6e:ce:df:32:af:23:a8:60:24:
f9:5e:32:32:d6:a8:4d:0a:2b:4b:63:03:81:77:f9:
4b:d7:78:3e:75:95:ec:e5:d3:ef:b7:dc:e7:8a:1a:
ae:58:ee:57:57:81:24:94:4c:70:d5:7e:57:53:f5:
e2:3e:72:59:35:74:bc:5d:12:e7:b4:87:c4:0c:7f:
f0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FE:2B:95:35:D0:1B:39:2A:B3:10:11:07:FD:70:D8:04:23:56:AB
X509v3 Authority Key Identifier:
keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:b9:d3:dd:76:dd:87:9f:d1:6f:42:3e:e5:69:2c:fa:fb:43:
2f:03:d3:a5:a5:a1:93:f3:ad:02:22:b7:7f:48:8d:d9:95:04:
59:08:be:38:45:f1:cf:a6:64:65:f6:4c:ed:73:2d:be:79:91:
05:2a:41:f9:1a:48:de:60:07:ce:82:17:06:e2:56:ab:2a:df:
fe:cc:77:74:73:5e:d2:97:e4:fd:49:9a:e5:6d:f6:12:13:ef:
6d:50:e4:ea:b6:65:cd:da:81:35:43:af:3b:ef:a9:ce:36:ff:
fc:bf:6a:26:f4:7c:dd:9e:02:3b:c1:f5:7f:3a:93:24:4e:93:
1a:47:db:44:62:af:d2:b6:eb:b2:e9:ca:b1:6b:d3:1a:1a:9c:
36:47:59:fd:af:ed:51:6a:d0:11:b7:83:64:94:e5:84:6b:19:
bd:af:1d:26:38:63:0b:b4:ea:72:3a:24:f2:83:2d:8f:54:50:
31:04:f6:9c:95:f8:b5:2b:fb:38:6d:a8:8d:59:91:7c:17:ef:
3a:91:cc:9c:65:3b:de:45:cd:66:3d:84:41:1d:b0:4a:dc:01:
55:68:be:e8:9c:78:03:06:89:4f:e2:fc:10:83:2b:2a:f8:84:
43:59:24:b9:3e:c1:0c:9b:03:9f:e2:f5:62:dd:74:be:9c:b4:
a2:7f:be:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6318VXde+lGbqvwHbKqgriMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZDk3N2FhMmE0YzEwYzdiNDdhZjJhZGQ5NjgwNDQ4N2Uy
Mjc0YTkwHhcNMjYwNjExMTgwMDMxWhcNMjYwNjEyMTgwMDMxWjAzMTEwLwYDVQQD
EyhlN2ZlMmI5NTM1ZDAxYjM5MmFiMzEwMTEwN2ZkNzBkODA0MjM1NmFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3d93S/s+2vFiK+4T95fn07x6PLf+
1MtCmEAcUaxzgGbkGT9zNhFx2O1+FNPInEPo+XendsTp6Ta7/Ol7ejs7guX2CHpb
eletdM5DtDrw77+wVFTQcKgnieI6WNWmaCoDaOCrLVak8+AMwZrv1HOSq81YEu7O
LGln/2hq7a8pFsfeWkZo/bxWSKvx32FT19d9WoiSOFfKWx9x2MhxdhGI7Ds9ueRM
2xgW3dUeASA9OP+9ZERf/K08aYtuzt8yryOoYCT5XjIy1qhNCitLYwOBd/lL13g+
dZXs5dPvt9znihquWO5XV4EklExw1X5XU/XiPnJZNXS8XRLntIfEDH/wbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOf+K5U10Bs5KrMQEQf9cNgEI1arMB8GA1UdIwQY
MBaAFHXZd6oqTBDHtHryrdloBEh+InSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzct
MTI2ZGY1NDQ2ZGU5LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzctMTI2ZGY1NDQ2ZGU5
LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYrnT3Xbd
h5/Rb0I+5Wks+vtDLwPTpaWhk/OtAiK3f0iN2ZUEWQi+OEXxz6ZkZfZM7XMtvnmR
BSpB+RpI3mAHzoIXBuJWqyrf/sx3dHNe0pfk/Uma5W32EhPvbVDk6rZlzdqBNUOv
O++pzjb//L9qJvR83Z4CO8H1fzqTJE6TGkfbRGKv0rbrsunKsWvTGhqcNkdZ/a/t
UWrQEbeDZJTlhGsZva8dJjhjC7Tqcjok8oMtj1RQMQT2nJX4tSv7OG2ojVmRfBfv
OpHMnGU73kXNZj2EQR2wStwBVWi+6Jx4AwaJT+L8EIMrKviEQ1kkuT7BDJsDn+L1
Yt10vpy0on++LA==
-----END CERTIFICATE-----
Generated at Fri Jun 12 01:08:10 2026 by rpki-client