Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
File: DY05iX3-Ia7thQlskKRzlvyknUE.mft (raw, json)
Hash identifier: 8YyEqGO+38SC7L5VCAuP3k1K5kvxclAEM7mfeL2tYZQ=
Subject key identifier: 80:EC:DD:56:4A:75:DA:B0:DD:91:BB:30:DB:C9:81:43:34:3D:0A:6B
Authority key identifier: 0D:8D:39:89:7D:FE:21:AE:ED:85:09:6C:90:A4:73:96:FC:A4:9D:41
Certificate issuer: /CN=0d8d39897dfe21aeed85096c90a47396fca49d41
Certificate serial: 019E2F97651D3F194A8EEC1A74CA98985E5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
Manifest number: 189D
Signing time: Sat 16 May 2026 07:01:51 +0000
Manifest this update: Sat 16 May 2026 07:01:51 +0000
Manifest next update: Sun 17 May 2026 07:01:51 +0000
Files and hashes: 1: DY05iX3-Ia7thQlskKRzlvyknUE.crl (hash: p73FW+vQQwIZZMTOcF3pZhSy4QZ+el9gthT2GMJm37Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:97:65:1d:3f:19:4a:8e:ec:1a:74:ca:98:98:5e:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8d39897dfe21aeed85096c90a47396fca49d41
Validity
Not Before: May 16 07:01:51 2026 GMT
Not After : May 17 07:01:51 2026 GMT
Subject: CN=80ecdd564a75dab0dd91bb30dbc98143343d0a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8b:f8:93:c7:50:f9:41:aa:b8:52:cb:14:e9:
8d:58:9b:fd:d5:30:65:b1:48:2e:25:de:68:a8:d0:
65:dd:12:71:ac:a8:e2:1b:3f:6f:5f:65:52:b7:b5:
1c:94:87:08:15:d9:ae:f2:49:f3:f6:c2:05:f0:d4:
ed:9f:f7:ca:e1:9c:04:9e:60:2d:ba:5d:54:57:ba:
2b:13:e6:3d:00:a6:dd:e9:3b:71:4d:53:86:3c:1f:
09:59:b4:f2:1b:66:19:76:fe:e6:05:4b:b6:83:3d:
96:07:3c:d6:10:d6:41:bf:48:79:98:48:b5:c0:65:
ee:8c:01:f4:9a:16:fd:0a:df:ac:0e:67:e4:5f:1e:
e0:cf:d9:8f:c7:17:ba:9c:f2:da:e4:da:a8:53:88:
7a:f2:41:dd:44:70:ae:bc:a9:a2:eb:95:50:ec:b7:
a3:54:38:25:81:42:4a:b2:6b:50:36:41:17:91:4a:
95:b6:69:4e:0d:35:ac:21:1d:4f:62:d0:be:58:8d:
15:02:66:65:9c:2f:87:73:e5:4d:4d:c3:6d:cc:de:
61:5c:8f:1d:5c:07:1c:57:a0:e8:f3:64:4d:aa:5e:
50:19:f6:98:23:35:99:bf:5a:e9:04:67:74:ff:e7:
59:20:de:fc:df:a7:33:2e:0a:62:7c:25:09:40:11:
e5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:EC:DD:56:4A:75:DA:B0:DD:91:BB:30:DB:C9:81:43:34:3D:0A:6B
X509v3 Authority Key Identifier:
keyid:0D:8D:39:89:7D:FE:21:AE:ED:85:09:6C:90:A4:73:96:FC:A4:9D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:ca:03:78:be:a7:8d:17:ca:78:f0:a6:aa:38:1d:ad:c3:0f:
70:80:33:13:a8:92:55:bf:20:c0:de:f2:b1:d2:12:b5:5a:7f:
56:ce:00:7c:45:d4:f1:f9:c0:4e:a0:5a:ad:a1:83:d2:be:2d:
98:68:cd:c0:ef:f0:eb:f5:d4:8d:74:55:6f:af:d1:85:ee:14:
ac:6c:86:13:e2:ff:40:2d:67:7e:4c:16:02:e2:b2:e0:39:d8:
53:24:53:ea:f7:fc:7d:72:93:6a:47:02:0f:4c:ea:57:5f:d6:
68:c0:6a:f5:c5:17:d0:93:6d:f1:e0:e6:ee:91:bb:9a:26:fe:
6c:47:a7:91:2e:1d:6c:f7:b3:86:5f:b7:6f:b4:cc:bd:31:31:
53:1f:e6:b2:ef:b4:31:db:62:61:31:33:46:3f:bb:dc:fb:db:
ee:67:15:38:52:ac:8a:74:cc:4d:8c:c0:c6:81:4d:a5:b8:d3:
82:03:34:fd:f5:a1:45:37:2e:50:05:b2:bf:bd:8e:9d:69:dd:
d3:93:31:35:74:a8:61:3e:8b:01:ae:52:77:4b:50:4b:14:7a:
6c:44:69:ed:76:e2:31:91:1b:b0:82:cd:62:33:a4:01:56:ba:
5a:df:00:f1:0c:b9:b5:0a:3a:09:06:4a:45:27:d8:aa:39:6c:
64:1a:2d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:26:46 2026 by rpki-client