Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
File: DTr3NGYY2GMOAUanZREkQ-DCyP8.mft (raw, json)
Hash identifier: pqK0P5tHbkEvCKo0SyrtUcVFMPcIGBpmvP0U6ZPSC/w=
Subject key identifier: 4B:B8:5C:B1:62:BA:ED:95:E2:AC:CD:1A:5D:22:AE:D7:09:1D:D1:77
Authority key identifier: 0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF
Certificate issuer: /CN=0d3af7346618d8630e0146a765112443e0c2c8ff
Certificate serial: 019E3184EF9417F0DE7B7A851DCF671CB95E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
Manifest number: 09A3
Signing time: Sat 16 May 2026 16:00:56 +0000
Manifest this update: Sat 16 May 2026 16:00:56 +0000
Manifest next update: Sun 17 May 2026 16:00:56 +0000
Files and hashes: 1: DTr3NGYY2GMOAUanZREkQ-DCyP8.crl (hash: K5MMxanGfvilPC7FE+0NdCsxb+edvB6yRJMGTIqqfRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:84:ef:94:17:f0:de:7b:7a:85:1d:cf:67:1c:b9:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d3af7346618d8630e0146a765112443e0c2c8ff
Validity
Not Before: May 16 16:00:56 2026 GMT
Not After : May 17 16:00:56 2026 GMT
Subject: CN=4bb85cb162baed95e2accd1a5d22aed7091dd177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:21:4e:9a:d4:b8:bd:ca:c9:bc:fd:6a:07:81:
aa:e5:94:15:de:45:69:bf:81:ba:17:1b:6c:30:58:
d3:3d:c0:f4:7e:ae:ac:c6:07:43:0f:3a:c5:41:56:
6f:29:83:82:c9:0a:31:84:a9:af:a9:d5:11:09:38:
ad:6d:76:ab:96:fc:46:a6:fb:dc:fa:e6:dd:0a:73:
86:e0:4f:e7:8c:5d:ac:12:c3:cb:49:f6:80:33:f1:
2f:21:8d:07:62:75:46:6e:44:5f:3f:e7:3e:4a:24:
c2:65:8e:78:49:28:35:a0:fe:b1:66:3a:a9:a2:56:
89:f8:fa:76:a6:0b:44:d6:2a:60:58:35:ee:19:06:
7f:86:eb:c1:bd:c2:d9:bd:48:13:9b:2d:76:d8:26:
56:a7:04:58:c3:00:87:22:6e:90:da:0a:ab:7f:48:
98:41:be:30:ed:28:86:fd:c5:ba:1f:9d:9a:5c:fa:
f6:72:f9:05:7b:8c:9e:9a:91:c8:b0:ca:e6:64:95:
25:59:d6:af:43:e8:95:4b:36:1e:00:e8:c5:dd:7e:
95:6c:a0:32:b5:d9:82:1d:c0:eb:06:03:4b:ad:fd:
ce:7b:5d:01:5f:2e:79:a2:51:63:64:f9:a3:1d:f2:
a4:ca:14:7c:22:9d:de:15:cd:75:c1:04:56:9a:64:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B8:5C:B1:62:BA:ED:95:E2:AC:CD:1A:5D:22:AE:D7:09:1D:D1:77
X509v3 Authority Key Identifier:
keyid:0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:7b:d6:a3:06:6e:82:bb:c7:37:1f:db:de:38:c7:75:f8:fd:
f7:b6:9b:f8:e2:2d:65:51:30:11:2b:3e:23:15:23:56:b4:bd:
22:ac:ee:a4:9c:0b:da:5b:a7:1e:d1:9a:52:d3:88:5f:70:a2:
cb:6b:1e:aa:b1:c2:10:b6:f9:dc:50:4a:70:10:67:60:03:a7:
90:92:a1:cb:cb:00:1c:d7:94:d0:de:4e:14:03:dd:50:00:f1:
17:ee:c2:76:18:b8:8d:b5:08:bc:76:78:89:a7:64:f6:e2:ee:
a7:e9:80:06:81:f6:57:60:3f:3d:69:f1:c7:bd:f0:d0:d8:9d:
84:3d:e0:80:5c:20:75:be:40:6d:05:04:e4:8e:bb:43:92:5e:
ca:da:bc:ff:5d:aa:bb:4c:de:30:5c:15:77:b9:59:68:30:dc:
21:2f:44:dd:48:82:b0:ab:e7:54:81:d0:89:13:44:0a:07:33:
09:3c:48:5a:e5:e9:06:d4:65:84:6c:ad:20:6f:59:4b:8a:40:
59:6e:01:41:8c:40:e1:22:d7:ae:ac:dc:de:c0:85:8a:18:92:
56:65:d2:9e:0a:1b:0b:1a:6f:e0:3f:ad:ff:9d:0a:22:73:85:
37:3e:37:65:ae:80:da:80:eb:b0:77:5f:3d:86:89:a3:9a:a4:
31:c3:39:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:55:57 2026 by rpki-client