Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
File: DdL44N6hOH2vkDXSzfTrjJOticw.mft (raw, json)
Hash identifier: gBJhth08Hg5FznpaQ2RCYJdHffNPxeAyyyIIjPt5QbU=
Subject key identifier: 44:85:C9:10:51:B4:BE:C9:42:93:2D:60:F5:11:3F:80:15:B2:36:68
Authority key identifier: 0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
Certificate issuer: /CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Certificate serial: 019D3940D6C9E65C9AA6B04359B5C407A3D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
Manifest number: 1348
Signing time: Sun 29 Mar 2026 11:00:43 +0000
Manifest this update: Sun 29 Mar 2026 11:00:43 +0000
Manifest next update: Mon 30 Mar 2026 11:00:43 +0000
Files and hashes: 1: AL5mxy8CsYNcqWEtgLjCbmelqwQ.roa (hash: fdkV0rGstUR1Pzncs3bfmTmh9JkFZ1wdI7Ez0Xn02hM=)
2: DdL44N6hOH2vkDXSzfTrjJOticw.crl (hash: Xb/GAz01DniOD/AwXPaSj+HjvD8ZmO5y+sT6bxG93p8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:d6:c9:e6:5c:9a:a6:b0:43:59:b5:c4:07:a3:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Validity
Not Before: Mar 29 11:00:43 2026 GMT
Not After : Mar 30 11:00:43 2026 GMT
Subject: CN=4485c91051b4bec942932d60f5113f8015b23668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ca:af:67:70:c0:fa:9b:04:6f:59:8b:4c:ff:
26:1e:13:c8:c6:c1:9f:a6:25:9f:52:f3:62:fc:69:
ee:e4:b4:30:56:ba:22:47:ea:9f:93:38:bc:03:c7:
9d:23:ff:13:f9:0d:c1:8f:eb:b4:4e:f3:fa:9a:df:
f4:57:dc:8e:71:74:d1:28:71:17:c0:61:cc:25:70:
e6:a7:eb:da:ad:a8:b2:e9:7a:d5:88:07:13:24:58:
3d:8b:f4:fb:25:c1:b8:c7:3f:bb:cf:c9:ef:6e:b4:
c1:4c:e4:a2:43:62:66:5a:96:16:fc:29:d8:d5:e3:
65:c1:f4:ee:f2:33:3d:77:21:bb:58:27:06:34:1c:
d6:f9:47:5f:84:ba:73:ac:f6:f1:f1:19:b8:f5:73:
3c:bc:fb:e7:43:77:94:2a:5c:43:5c:54:42:2b:ff:
ad:fd:37:af:e8:26:0a:7b:69:cb:b6:ab:0e:1b:91:
5d:53:a7:5d:95:51:8b:12:62:f4:9d:43:49:cc:e3:
25:8d:94:ec:9e:c9:f9:87:c0:b7:62:cb:c2:df:b4:
f1:00:1e:81:c9:25:2a:48:99:f2:1f:d0:ab:6f:86:
7e:e4:79:c7:d1:d2:5b:6a:8b:cf:dc:f2:47:af:27:
e7:52:97:cc:f4:27:ca:2f:80:a9:1a:82:38:42:4a:
cb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:85:C9:10:51:B4:BE:C9:42:93:2D:60:F5:11:3F:80:15:B2:36:68
X509v3 Authority Key Identifier:
keyid:0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:f4:a3:21:99:2e:1c:96:bc:c5:76:30:fb:4b:ab:a0:45:bb:
8f:9e:25:7b:83:b7:fe:65:e1:69:35:ab:05:7a:ea:8a:a4:84:
75:98:74:17:2b:0c:31:29:cf:9b:c6:ad:0b:08:94:13:5a:72:
75:19:82:75:fd:44:f5:73:d4:bc:46:9c:c3:ee:c8:2d:c0:a0:
86:5a:db:3a:8c:47:b0:7f:f4:53:98:b1:46:0d:f1:e1:4e:0b:
07:b2:7c:c8:e0:a9:2e:16:ea:e3:fa:c1:47:29:da:06:81:0d:
30:98:93:c3:4f:2d:21:fb:7b:8a:88:28:f8:e1:4f:a5:01:1b:
e3:97:03:c6:11:f6:5b:cd:95:18:74:1b:77:97:3c:bf:cb:34:
b2:38:2b:96:ba:4c:d6:7b:3b:b1:15:61:b2:79:6a:09:60:aa:
47:f7:80:3c:f3:b6:c1:bf:c2:5c:18:9c:07:1b:94:6e:aa:56:
e3:bc:61:96:a3:f4:b5:f6:b3:58:aa:e9:24:ba:e1:b0:94:ee:
5a:d0:02:b7:b0:23:51:fb:48:87:3e:b3:7c:09:7b:32:d0:26:
ff:b0:e1:ca:9b:2f:2c:f4:5a:e1:d8:61:4f:83:d2:32:e0:f9:
2e:1d:9a:26:a8:a7:81:ab:0b:87:65:f6:92:b0:52:c1:16:94:
68:91:14:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QNbJ5lyaprBDWbXEB6PSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkZDJmOGUwZGVhMTM4N2RhZjkwMzVkMmNkZjRlYjhjOTNh
ZDg5Y2MwHhcNMjYwMzI5MTEwMDQzWhcNMjYwMzMwMTEwMDQzWjAzMTEwLwYDVQQD
Eyg0NDg1YzkxMDUxYjRiZWM5NDI5MzJkNjBmNTExM2Y4MDE1YjIzNjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMqvZ3DA+psEb1mLTP8mHhPIxsGf
piWfUvNi/Gnu5LQwVroiR+qfkzi8A8edI/8T+Q3Bj+u0TvP6mt/0V9yOcXTRKHEX
wGHMJXDmp+varaiy6XrViAcTJFg9i/T7JcG4xz+7z8nvbrTBTOSiQ2JmWpYW/CnY
1eNlwfTu8jM9dyG7WCcGNBzW+UdfhLpzrPbx8Rm49XM8vPvnQ3eUKlxDXFRCK/+t
/Tev6CYKe2nLtqsOG5FdU6ddlVGLEmL0nUNJzOMljZTsnsn5h8C3YsvC37TxAB6B
ySUqSJnyH9Crb4Z+5HnH0dJbaovP3PJHryfnUpfM9CfKL4CpGoI4QkrLjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFESFyRBRtL7JQpMtYPURP4AVsjZoMB8GA1UdIwQY
MBaAFA3S+ODeoTh9r5A10s3064yTrYnMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9kM2Q0NjYtZDk1MS00YzUyLWIzMzAt
YWE4NDg1Y2YzMDY4LzEvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC9kM2Q0NjYtZDk1MS00YzUyLWIzMzAtYWE4NDg1Y2YzMDY4
LzEvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR/SjIZku
HJa8xXYw+0uroEW7j54le4O3/mXhaTWrBXrqiqSEdZh0FysMMSnPm8atCwiUE1py
dRmCdf1E9XPUvEacw+7ILcCghlrbOoxHsH/0U5ixRg3x4U4LB7J8yOCpLhbq4/rB
RynaBoENMJiTw08tIft7iogo+OFPpQEb45cDxhH2W82VGHQbd5c8v8s0sjgrlrpM
1ns7sRVhsnlqCWCqR/eAPPO2wb/CXBicBxuUbqpW47xhlqP0tfazWKrpJLrhsJTu
WtACt7AjUftIhz6zfAl7MtAm/7DhypsvLPRa4dhhT4PSMuD5Lh2aJqingasLh2X2
krBSwRaUaJEUvQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:02:13 2026 by rpki-client