Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
File: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft (raw, json)
Hash identifier: a/MgDfsz5UPQ1Qa+AFxskEdBf8ofhTwBS4xCKsvuyDk=
Subject key identifier: 90:59:09:09:6E:33:75:00:01:F9:0C:FE:91:0D:B8:79:32:C9:9C:89
Authority key identifier: 0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
Certificate issuer: /CN=0d333f72d9e294543825be63729f8034a4517090
Certificate serial: 019E30A9325A3E127289356CBFEE87E1ECE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
Manifest number: 0D06
Signing time: Sat 16 May 2026 12:00:55 +0000
Manifest this update: Sat 16 May 2026 12:00:55 +0000
Manifest next update: Sun 17 May 2026 12:00:55 +0000
Files and hashes: 1: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl (hash: tr6LCHAS072ETmus6BDnG+53BYU++3VUlR0plrEF620=)
2: EPJNcfb9BYVxiCOl5XxrpQOfiyc.roa (hash: 3iBYjsoElN4nFr95B9VrvRH80hKHxRpzggq/IbclLdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:32:5a:3e:12:72:89:35:6c:bf:ee:87:e1:ec:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d333f72d9e294543825be63729f8034a4517090
Validity
Not Before: May 16 12:00:55 2026 GMT
Not After : May 17 12:00:55 2026 GMT
Subject: CN=905909096e33750001f90cfe910db87932c99c89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:38:9d:42:18:8e:dc:d5:8f:0f:70:73:a2:68:
c6:24:e7:28:b5:a2:75:70:65:7b:c7:61:d0:e7:75:
a1:e6:88:e5:38:93:1e:9b:35:bb:7e:22:f1:77:8d:
40:86:86:ba:6a:1e:82:c5:1d:66:ff:64:1d:19:94:
c0:9a:28:39:c9:83:11:d4:5c:94:95:f6:34:7d:6e:
b5:4c:d5:6d:7b:70:95:4a:81:1c:66:89:f0:79:fd:
cb:fb:c6:78:61:a4:ec:11:72:04:72:bf:50:5a:72:
f2:45:0d:69:c9:d1:af:eb:20:4e:e0:55:03:da:01:
46:7e:06:42:e7:37:dc:f5:9b:3e:a7:fd:84:c5:74:
a7:c3:dd:be:fd:4e:38:95:3f:9f:1b:4b:bb:0e:03:
23:22:83:af:b1:47:3b:c9:b6:b4:52:5e:75:9f:3d:
78:75:24:46:b4:ba:aa:2e:22:ef:fd:7d:8e:8a:d1:
df:90:6f:ff:ec:a1:75:36:e5:87:d2:87:e1:90:7b:
68:ad:7a:4f:3b:7c:8b:0f:6d:03:6f:85:b7:93:07:
37:ab:ea:a7:05:b7:43:d5:9d:56:b2:84:52:93:4f:
e0:a9:c9:d6:e3:68:19:ba:d6:cc:54:68:16:03:0e:
77:5f:ae:15:dd:bb:e8:03:a5:e6:c3:d1:d3:3e:a6:
c0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:59:09:09:6E:33:75:00:01:F9:0C:FE:91:0D:B8:79:32:C9:9C:89
X509v3 Authority Key Identifier:
keyid:0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:75:fa:10:0a:88:6a:44:f8:35:d1:81:8e:09:82:fe:39:88:
5f:5e:6e:7e:a4:32:f9:e6:94:cb:4e:2c:cd:64:93:93:36:ec:
2f:fb:b1:0f:ed:16:39:a4:81:81:2a:c2:ec:33:f7:e1:b2:e8:
58:1a:ab:59:de:61:e6:79:83:f4:87:7d:5b:bd:8a:ca:73:e7:
c3:87:79:ed:eb:c5:cb:bc:9f:0c:80:8e:b8:a8:39:48:8c:88:
e1:df:1c:a4:ae:98:bc:f4:8d:d9:0d:2a:6a:ee:5d:f7:b4:81:
b2:b9:4d:67:1e:10:bc:5b:cb:53:f0:be:97:09:2d:67:40:10:
1d:8f:16:60:6e:ff:61:70:04:02:da:20:37:cf:c0:90:f1:9c:
e4:25:56:e3:68:96:a7:3e:08:82:73:50:1d:28:b2:c5:d5:a5:
aa:82:20:9e:be:2e:72:4a:31:81:20:62:35:0b:24:1d:a9:c0:
04:3d:9d:22:f5:ac:ed:4b:8c:29:b0:f6:73:d1:fc:fc:29:5c:
04:42:42:d9:0a:04:5a:aa:49:5b:d5:1d:f3:ea:55:48:2e:8d:
b9:89:d7:e9:e6:db:e0:7d:9f:04:08:db:fe:15:57:b9:8f:5d:
f0:07:ac:7a:6e:3a:e2:51:af:d8:28:c3:c6:7d:8d:81:22:b8:
a5:c2:79:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:12:32 2026 by rpki-client