Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
File: DT66aHPFtQdbPEOff-61SvHxDak.mft (raw, json)
Hash identifier: HZbK3Ao/MAaWSXZZgxGTs6kqq2anuM0ViTI8uh36SK8=
Subject key identifier: D8:8E:BB:AE:0F:B0:E2:A6:BE:32:76:26:F0:D6:1A:B9:A8:68:16:6D
Authority key identifier: 0D:3E:BA:68:73:C5:B5:07:5B:3C:43:9F:7F:EE:B5:4A:F1:F1:0D:A9
Certificate issuer: /CN=0d3eba6873c5b5075b3c439f7feeb54af1f10da9
Certificate serial: 019E303BD64DF190D0188A8B6A07E1DDB705
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
Manifest number: 1917
Signing time: Sat 16 May 2026 10:01:28 +0000
Manifest this update: Sat 16 May 2026 10:01:28 +0000
Manifest next update: Sun 17 May 2026 10:01:28 +0000
Files and hashes: 1: DT66aHPFtQdbPEOff-61SvHxDak.crl (hash: XmLjUFZFTQeUjKWguZaGhl/IRek6dKvEeLzpYiEd8ds=)
2: UHX8LoJItxLXbSSkLElmcrzzhts.roa (hash: j+K6pcnA4SNCVnoj07hqtnhu76mvNIjpIA6tG3zdI5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:d6:4d:f1:90:d0:18:8a:8b:6a:07:e1:dd:b7:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d3eba6873c5b5075b3c439f7feeb54af1f10da9
Validity
Not Before: May 16 10:01:28 2026 GMT
Not After : May 17 10:01:28 2026 GMT
Subject: CN=d88ebbae0fb0e2a6be327626f0d61ab9a868166d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:4c:df:2c:2a:0c:ae:09:3d:bb:5b:12:10:
c2:d2:c5:90:c6:6d:bf:17:d9:28:d6:ca:98:e5:6f:
78:24:36:8b:2d:91:d5:64:03:38:eb:d0:2e:e0:ed:
41:ea:09:df:4c:c1:54:f0:aa:19:95:67:87:6c:d3:
d1:fc:64:4e:98:8e:0c:c6:d2:d5:f7:08:f6:1c:b2:
10:25:cd:7b:71:33:f3:05:35:4a:df:8c:7b:ea:41:
91:71:bd:36:80:f8:63:3e:44:56:48:fd:02:87:b0:
b3:76:c8:73:78:ad:61:e0:06:ba:83:2d:79:2a:b2:
61:86:7a:f2:c4:13:34:a5:b5:af:30:55:e8:af:ca:
c0:63:8f:62:d2:30:6b:01:ae:d7:31:78:a6:76:10:
7f:eb:ed:42:4d:ad:91:0b:d1:d3:6c:50:a1:74:db:
41:07:8c:16:69:63:e3:ae:32:52:a1:fd:f4:e4:8e:
6c:5e:54:e5:b0:30:a2:9d:d3:73:22:91:8c:98:91:
9e:5c:e1:b1:26:24:0d:95:2d:80:82:ad:e2:6d:d0:
88:69:e7:3a:2d:f7:35:ab:ec:12:64:b7:7d:d7:af:
95:47:ea:a0:3f:4f:32:7d:d6:52:4a:a4:ee:17:6b:
8d:0a:ed:20:37:bf:3e:ad:c5:ff:7a:1d:92:51:e8:
3c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:8E:BB:AE:0F:B0:E2:A6:BE:32:76:26:F0:D6:1A:B9:A8:68:16:6D
X509v3 Authority Key Identifier:
keyid:0D:3E:BA:68:73:C5:B5:07:5B:3C:43:9F:7F:EE:B5:4A:F1:F1:0D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:94:fb:f3:40:4b:62:b2:d2:b1:b7:77:a3:0e:fd:09:f5:91:
95:c9:ea:07:d3:42:40:98:b5:bb:72:ac:7d:a5:97:8d:a0:9d:
d3:8b:18:be:ea:3f:31:d3:60:4d:c7:8f:0f:f8:2f:9f:bb:0e:
3d:63:ac:a9:41:f6:0b:16:d9:f1:a9:5e:5f:c3:d2:15:a6:0e:
b7:36:97:ba:3f:27:71:fc:a3:46:55:b9:4c:e2:7e:b4:c9:19:
83:5b:2a:1a:7b:61:f5:f9:bd:0f:71:7b:4b:49:60:fc:cf:1e:
e3:57:92:48:83:d7:26:8a:ff:cf:fc:71:f5:b0:80:c8:69:11:
34:ed:f4:8d:98:0e:d9:f8:5b:56:9e:dd:56:e3:57:75:5d:2f:
e0:22:2c:02:37:d0:d0:85:16:28:82:d9:d6:cd:e2:5f:b5:3a:
21:44:03:46:c3:6f:35:7d:10:ee:b0:69:a9:ff:5e:71:6e:87:
72:44:ba:71:6f:fd:4d:33:f6:13:cf:15:ed:36:60:0f:56:6a:
9f:60:34:ad:58:c1:d2:21:9f:ce:1c:4c:96:bc:9b:b2:a3:24:
7d:02:9b:84:59:69:9a:d5:84:e4:87:83:3a:66:c4:83:80:ed:
55:4b:d0:f6:0b:df:6d:bd:02:2d:bb:35:86:6e:8c:6a:2d:97:
13:1d:91:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:24:45 2026 by rpki-client