Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: UFAmAKPg+7gVKiTxP0upsCE47TFQ6C3F1JrMxTjZxDw=
Subject key identifier: DD:CD:05:D0:E9:2E:EB:3C:2E:93:A1:A8:62:3A:AF:75:9E:74:FF:7B
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 019D2403258FA33C55ED06D902CC1BD38AD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 0F77
Signing time: Wed 25 Mar 2026 08:01:19 +0000
Manifest this update: Wed 25 Mar 2026 08:01:19 +0000
Manifest next update: Thu 26 Mar 2026 08:01:19 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: az7CKqLbBBJmhkBagWSjI51jyM29K5Br2VFt3/YLNSw=)
2: AvvuwRM1rXoB8yxstk4ZmsXgR1Q.roa (hash: G1ri1MeorzSK/rz57ShZ1na3AYjwABPoQHfjiBcWJn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 08:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:03:25:8f:a3:3c:55:ed:06:d9:02:cc:1b:d3:8a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: Mar 25 08:01:19 2026 GMT
Not After : Mar 26 08:01:19 2026 GMT
Subject: CN=ddcd05d0e92eeb3c2e93a1a8623aaf759e74ff7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:41:f2:0d:5f:1b:1a:30:e7:14:09:3d:37:7c:
11:cf:39:f2:7d:d0:4e:9c:c1:43:af:f4:78:75:cb:
ae:18:f2:9d:ed:6c:02:c9:e6:53:f7:9d:3b:31:96:
9f:a5:50:16:6a:b8:e5:d3:86:49:c4:d0:49:71:54:
5e:ea:7f:8b:50:48:c9:73:26:a8:af:04:5a:88:7b:
3e:83:77:89:9a:cf:b8:b8:b2:c8:2a:09:05:8c:4b:
77:71:b8:52:7f:0e:d9:4d:64:67:08:38:e6:0a:92:
f0:79:0f:1e:e5:a6:e3:b6:43:ca:b3:86:02:66:37:
0d:78:45:25:9a:1d:36:3f:4e:33:a6:a0:f9:45:70:
ef:a9:c2:15:ee:da:6f:18:66:fb:e5:ea:c0:81:83:
84:a1:24:5d:17:f6:5b:31:e9:87:08:cc:b8:24:d6:
d7:10:19:0a:a5:e8:c9:b6:d3:50:78:7d:00:ee:b8:
d0:35:01:66:5e:ec:e1:12:42:f3:c9:ea:e6:f5:5c:
05:68:6e:5c:f3:8e:6f:b2:6b:72:0f:ae:be:18:50:
1c:9e:5b:06:ed:ee:03:0e:f9:41:96:57:29:1a:84:
dc:d5:c3:94:48:ba:7e:04:7f:27:dd:77:1c:5c:9b:
3f:0d:d6:e2:7d:e6:5a:af:9e:0e:4f:a6:81:13:cc:
7e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CD:05:D0:E9:2E:EB:3C:2E:93:A1:A8:62:3A:AF:75:9E:74:FF:7B
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:8f:ca:0c:c9:57:40:21:17:1f:f8:c4:70:76:cd:75:14:83:
37:bc:4e:1a:6f:7d:4b:a8:70:bc:03:3f:aa:7b:b8:38:15:b8:
e5:0e:49:04:ea:73:61:f6:e0:03:37:f0:04:0f:84:fc:8e:37:
8f:45:5d:22:fe:a8:c4:ea:b7:1d:93:92:90:e8:7b:14:8f:df:
1c:d5:79:39:04:29:e2:a1:c3:cd:66:6f:89:04:40:2b:85:4d:
73:cc:15:cd:fd:71:92:00:6a:dc:1c:18:5a:8f:40:cf:ce:a8:
2d:d4:bf:73:9d:0e:62:39:e1:82:3d:e5:83:49:cc:80:0e:df:
b8:5a:ab:32:c9:88:fe:b8:04:1a:f1:c6:26:43:3c:0c:98:34:
a3:58:dd:dd:f5:28:d7:56:aa:7d:9e:0a:70:7b:b2:85:a7:1f:
f0:a7:95:f7:9a:d3:83:53:56:47:49:56:33:b4:e3:85:35:0a:
a8:44:eb:85:d5:7a:35:74:d2:51:33:6d:b7:f6:f6:ff:52:cc:
44:af:f9:c9:3f:4a:df:1b:ce:f2:2b:e6:27:69:48:eb:e3:88:
d3:64:ae:b2:3e:f1:59:2d:0d:0c:b4:dc:cc:8a:f2:f9:55:4a:
e7:29:6c:2f:19:32:e9:74:9d:f5:8a:0e:fe:26:8d:a9:63:b5:
6b:8b:fb:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0kAyWPozxV7QbZAswb04rTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MzIwYmQ0ZWY4NThmZDYyYmIyNDg1ZDA4YjBhODY5MjBl
OTExYzEwHhcNMjYwMzI1MDgwMTE5WhcNMjYwMzI2MDgwMTE5WjAzMTEwLwYDVQQD
EyhkZGNkMDVkMGU5MmVlYjNjMmU5M2ExYTg2MjNhYWY3NTllNzRmZjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokHyDV8bGjDnFAk9N3wRzznyfdBO
nMFDr/R4dcuuGPKd7WwCyeZT9507MZafpVAWarjl04ZJxNBJcVRe6n+LUEjJcyao
rwRaiHs+g3eJms+4uLLIKgkFjEt3cbhSfw7ZTWRnCDjmCpLweQ8e5abjtkPKs4YC
ZjcNeEUlmh02P04zpqD5RXDvqcIV7tpvGGb75erAgYOEoSRdF/ZbMemHCMy4JNbX
EBkKpejJttNQeH0A7rjQNQFmXuzhEkLzyerm9VwFaG5c845vsmtyD66+GFAcnlsG
7e4DDvlBllcpGoTc1cOUSLp+BH8n3XccXJs/DdbifeZar54OT6aBE8x+yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN3NBdDpLus8LpOhqGI6r3WedP97MB8GA1UdIwQY
MBaAFNgyC9TvhY/WK7JIXQiwqGkg6RHBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkRJTDFPLUZqOVlyc2toZENMQ29hU0RwRWNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9iZDgxZTctMzk3ZS00ZDVkLWE1ZjEt
M2EwZmFhMjhiNWFjLzEvMkRJTDFPLUZqOVlyc2toZENMQ29hU0RwRWNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi9iZDgxZTctMzk3ZS00ZDVkLWE1ZjEtM2EwZmFhMjhiNWFj
LzEvMkRJTDFPLUZqOVlyc2toZENMQ29hU0RwRWNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKY/KDMlX
QCEXH/jEcHbNdRSDN7xOGm99S6hwvAM/qnu4OBW45Q5JBOpzYfbgAzfwBA+E/I43
j0VdIv6oxOq3HZOSkOh7FI/fHNV5OQQp4qHDzWZviQRAK4VNc8wVzf1xkgBq3BwY
Wo9Az86oLdS/c50OYjnhgj3lg0nMgA7fuFqrMsmI/rgEGvHGJkM8DJg0o1jd3fUo
11aqfZ4KcHuyhacf8KeV95rTg1NWR0lWM7TjhTUKqETrhdV6NXTSUTNtt/b2/1LM
RK/5yT9K3xvO8ivmJ2lI6+OI02Susj7xWS0NDLTczIry+VVK5ylsLxky6XSd9YoO
/iaNqWO1a4v7Sg==
-----END CERTIFICATE-----
Generated at Wed Mar 25 12:46:20 2026 by rpki-client