Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
File: ddl3qipMEMe0evKt2WgESH4idKk.mft (raw, json)
Hash identifier: qo3Uo9jWzIf7DKrWuaidMSKY3unsqHNuX0caoY5bKlc=
Subject key identifier: 90:C9:C7:38:67:21:E7:1A:E0:EA:B7:EC:B9:55:48:D0:74:A6:7E:2E
Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Certificate serial: 019D378906AD983CE726B98F974F4B6C1480
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 03:00:20 +0000
Manifest this update: Sun 29 Mar 2026 03:00:20 +0000
Manifest next update: Mon 30 Mar 2026 03:00:20 +0000
Files and hashes: 1: ddl3qipMEMe0evKt2WgESH4idKk.crl (hash: PBJxhnnAus78Kf8un4XUMCDzSj1AAbD2aG8cmvRKPow=)
2: loApgUuhhUyY_cfPzGEHPAhUKDo.roa (hash: 0LTaxDqD8Hr++G5h4F+by4f48kCJnGS42cv5zu1L9RE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:06:ad:98:3c:e7:26:b9:8f:97:4f:4b:6c:14:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Validity
Not Before: Mar 29 03:00:20 2026 GMT
Not After : Mar 30 03:00:20 2026 GMT
Subject: CN=90c9c7386721e71ae0eab7ecb95548d074a67e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d5:b2:95:b4:15:27:ab:4c:4f:ab:13:1e:83:
34:0c:49:7f:49:6d:02:4c:f8:32:4c:91:c9:b8:d7:
ee:b9:ee:2b:2a:30:7e:0f:01:21:99:9a:d6:8a:46:
83:8b:f6:f4:48:c3:59:8c:b3:c4:97:c7:22:a2:0b:
04:e1:3f:e1:7e:e0:81:0b:ae:5d:44:5a:7d:fe:ed:
51:e2:a0:1f:09:2c:f8:72:3c:44:28:27:62:37:2e:
cb:30:5d:ea:5c:4c:38:a4:3e:03:38:53:2f:ca:bc:
bf:41:a2:18:ba:32:c7:89:fd:7b:d1:27:4a:f3:3c:
ba:9b:56:56:26:67:e2:22:f7:f4:5a:48:a5:5a:62:
71:04:9f:5c:f0:49:e5:b7:0c:ae:69:47:d1:d5:d4:
35:d6:70:cf:ce:5e:bc:50:1f:c6:c6:3c:14:f7:2e:
6d:5e:f6:05:b9:0c:9b:d1:af:9c:50:31:aa:a8:18:
6e:ab:c4:90:6c:d7:7f:1e:d9:d5:71:75:d7:29:b2:
a0:d6:bd:cf:41:e7:e8:c8:57:5a:3b:f8:58:6a:52:
6b:fa:9c:5d:f5:cb:8e:4a:c1:d2:cd:72:db:db:83:
6f:b9:ef:22:44:ae:74:91:5f:d0:85:90:58:60:c4:
09:f3:e9:55:ea:52:15:e3:91:f3:84:57:69:4c:40:
d8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C9:C7:38:67:21:E7:1A:E0:EA:B7:EC:B9:55:48:D0:74:A6:7E:2E
X509v3 Authority Key Identifier:
keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:77:d7:93:9a:93:5a:2e:74:be:fc:4c:50:cb:d8:04:17:92:
d8:f4:b9:13:30:0c:f0:e7:f8:18:d8:37:aa:cd:af:4d:c3:3a:
80:17:97:ff:d4:1a:19:09:5c:a1:c5:81:69:11:52:f2:f5:22:
a5:e5:b9:2c:81:94:07:34:d5:eb:86:be:87:dc:43:da:07:07:
45:17:73:2d:5c:9a:7d:f9:10:90:34:f8:06:c7:69:7c:8a:5c:
69:bc:57:79:2b:92:1d:f5:d9:dc:e5:cb:65:90:5a:44:67:61:
d6:8e:e9:27:ea:8c:d7:ea:d0:81:34:d8:53:25:68:84:ad:2e:
bc:4c:9e:ce:3f:31:e1:d1:88:5a:00:ea:ff:31:aa:11:52:84:
b9:41:08:f0:18:5c:7a:20:b3:3b:07:ee:4f:4a:cb:97:48:fa:
6f:47:6f:19:49:23:db:de:02:93:dc:8e:cf:d6:16:9b:47:23:
96:e2:d0:89:53:1f:b6:09:62:8d:e1:f1:62:13:2e:ed:9c:11:
de:f2:63:e5:8a:62:49:6d:55:10:39:94:ab:74:86:60:52:72:
0c:94:ed:e8:2c:38:c3:88:d6:ce:8b:91:e2:f3:5e:26:11:ec:
f1:ae:d6:e3:70:e1:97:58:a0:d1:93:69:de:bf:14:6e:50:d6:
49:8e:00:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:38 2026 by rpki-client