Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
File: DdL44N6hOH2vkDXSzfTrjJOticw.mft (raw, json)
Hash identifier: DceLGvUBu57dJh5jIHfgm2otPnBAsKlenETA2qSsHJU=
Subject key identifier: 81:BE:7C:8F:E2:0F:A3:72:34:ED:12:E1:DD:FE:D5:88:D2:9F:B3:30
Authority key identifier: 0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
Certificate issuer: /CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Certificate serial: 019E3072E3CF7860B48BAACD1A4C54F41E7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
Manifest number: 13C8
Signing time: Sat 16 May 2026 11:01:36 +0000
Manifest this update: Sat 16 May 2026 11:01:36 +0000
Manifest next update: Sun 17 May 2026 11:01:36 +0000
Files and hashes: 1: AL5mxy8CsYNcqWEtgLjCbmelqwQ.roa (hash: fdkV0rGstUR1Pzncs3bfmTmh9JkFZ1wdI7Ez0Xn02hM=)
2: DdL44N6hOH2vkDXSzfTrjJOticw.crl (hash: L7/kuXJRzv2kdwkVE0yFov6HKaOz5CH9GeF+d5a7Xh8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:e3:cf:78:60:b4:8b:aa:cd:1a:4c:54:f4:1e:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Validity
Not Before: May 16 11:01:36 2026 GMT
Not After : May 17 11:01:36 2026 GMT
Subject: CN=81be7c8fe20fa37234ed12e1ddfed588d29fb330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:46:f6:35:36:31:3c:cc:de:5f:19:46:c1:b1:
b4:93:61:1b:a7:72:97:a7:f6:62:48:71:0d:ce:b3:
0b:ac:9f:18:8f:5f:ac:e7:44:0a:18:9c:77:2d:d0:
c7:29:92:76:10:0e:1a:73:cb:3e:67:81:68:f9:f5:
7b:94:76:c2:e5:72:70:87:85:b7:6d:78:af:c4:47:
59:ff:f2:5d:42:0f:1e:e0:d8:80:b1:84:6a:89:af:
e3:d8:79:87:e7:c6:62:4a:01:01:f2:2d:31:11:c5:
0f:aa:d5:47:a9:47:cc:6e:f1:55:44:be:36:35:75:
2b:07:a2:f0:2c:4c:46:9f:25:a6:c9:aa:d7:a6:29:
43:f9:01:d6:2a:0d:c7:21:db:74:4e:7c:f2:da:0b:
d5:1a:47:6b:b1:2d:bd:e5:ec:fa:e3:a5:53:f7:cb:
b8:6b:8e:23:81:d1:2f:09:3c:80:de:85:02:3d:fb:
1d:d4:49:f3:f8:7c:0a:7c:2f:6c:fb:4f:59:0a:56:
72:ee:be:1a:7e:91:2e:e0:91:ae:42:27:83:27:91:
df:14:71:59:94:79:e4:00:91:df:99:59:14:98:b8:
d2:35:a2:11:1e:e9:c7:27:6c:de:b5:0e:fb:3a:2f:
c7:84:ab:12:aa:c1:16:7e:59:e9:0b:04:ec:e0:30:
e9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BE:7C:8F:E2:0F:A3:72:34:ED:12:E1:DD:FE:D5:88:D2:9F:B3:30
X509v3 Authority Key Identifier:
keyid:0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:72:d8:7d:a8:7d:f7:8b:ba:a1:c9:07:8e:22:25:00:c3:a1:
9a:56:66:14:73:d1:d1:2b:d5:d9:6c:46:48:f0:cd:04:ea:e4:
9c:fd:0a:4a:37:7e:3f:35:16:e1:d8:dd:ce:84:7d:7b:48:bc:
d2:18:d2:c9:f4:bb:cc:62:ec:c9:da:df:62:87:d8:8f:08:91:
63:a5:30:e6:05:9e:67:3a:14:0a:36:7a:94:3f:dd:79:81:e2:
fc:8e:41:20:15:8d:08:27:97:d9:e0:08:c4:77:06:59:ac:33:
0a:01:3e:c7:19:21:98:30:a6:3e:8c:99:56:3b:b2:5f:43:fc:
2b:91:b0:f4:96:9d:0d:28:f9:02:c6:fa:d7:89:18:1a:13:f0:
db:35:ca:57:cf:37:77:ed:47:66:76:aa:a2:cc:59:be:ac:fb:
12:e5:93:9e:bc:a8:3b:f1:6d:0e:d5:f0:91:2d:97:cd:39:60:
24:f9:37:ae:dc:58:3b:5a:0f:f0:d9:46:4f:25:2a:86:e4:43:
24:3b:a3:bf:84:16:59:18:e2:3d:61:aa:25:85:1d:56:58:e5:
8c:8a:d4:e8:23:8e:a7:ce:d5:cc:35:0a:09:47:d9:4a:c6:74:
3d:49:f0:0b:30:29:f1:27:2a:2f:92:09:ee:7a:e1:af:df:75:
60:6d:72:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:43 2026 by rpki-client