Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
File: DY05iX3-Ia7thQlskKRzlvyknUE.mft (raw, json)
Hash identifier: Ix4ASNgMquTT5X4nJkqHryw2UyKeHKUzNMIkFXiZXJs=
Subject key identifier: 04:D0:77:9A:DD:34:74:1A:21:83:8E:C6:C4:AA:5A:C0:F4:97:BF:C5
Authority key identifier: 0D:8D:39:89:7D:FE:21:AE:ED:85:09:6C:90:A4:73:96:FC:A4:9D:41
Certificate issuer: /CN=0d8d39897dfe21aeed85096c90a47396fca49d41
Certificate serial: 019D3866479990861084196E68301380D950
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
Manifest number: 181D
Signing time: Sun 29 Mar 2026 07:02:00 +0000
Manifest this update: Sun 29 Mar 2026 07:02:00 +0000
Manifest next update: Mon 30 Mar 2026 07:02:00 +0000
Files and hashes: 1: DY05iX3-Ia7thQlskKRzlvyknUE.crl (hash: fSmTSXvbsNklWq/PRH+4YTt5buxVNeY7O27HmtnMy+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:47:99:90:86:10:84:19:6e:68:30:13:80:d9:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8d39897dfe21aeed85096c90a47396fca49d41
Validity
Not Before: Mar 29 07:02:00 2026 GMT
Not After : Mar 30 07:02:00 2026 GMT
Subject: CN=04d0779add34741a21838ec6c4aa5ac0f497bfc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e7:18:c9:5d:25:dd:c4:2f:94:e7:f1:ae:c9:
2a:cf:51:51:3b:ae:1e:f9:7a:f4:41:e6:e3:06:0d:
4f:cb:cb:d0:31:e0:4a:36:78:45:e8:af:ed:43:14:
4d:7e:e9:7e:67:67:12:e3:85:e9:1c:4c:dd:8e:c1:
58:45:47:cc:c6:94:c0:9f:06:a6:09:10:24:87:0b:
0d:2c:7d:f6:4f:8d:38:61:26:0a:f8:78:76:5a:90:
54:2b:05:04:1d:d0:fd:31:ab:ab:c3:b7:3b:de:21:
8a:69:18:c3:0b:f2:62:19:b6:53:57:e7:f8:07:99:
82:01:eb:1f:97:19:49:8d:ae:f4:42:a1:59:6e:34:
6a:04:0d:ec:02:ac:81:8c:02:c0:31:d5:8b:a3:05:
e1:3c:e0:e7:08:24:9d:bd:e8:0c:10:b0:12:48:00:
85:a0:2a:b9:fc:96:42:2c:dc:b3:e8:92:95:25:18:
e0:bd:1e:42:56:d5:e2:04:31:a3:2d:a1:55:08:91:
5c:a3:41:2f:88:4d:7a:1a:b0:cd:88:ba:b9:b7:4c:
f8:5c:dd:87:58:2e:6d:9e:53:fe:38:a2:cc:ae:24:
c0:63:e1:92:9c:4d:98:87:14:6d:03:b4:e0:68:5f:
2c:92:f5:78:03:f3:99:77:69:cc:e8:61:b5:bb:08:
a7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D0:77:9A:DD:34:74:1A:21:83:8E:C6:C4:AA:5A:C0:F4:97:BF:C5
X509v3 Authority Key Identifier:
keyid:0D:8D:39:89:7D:FE:21:AE:ED:85:09:6C:90:A4:73:96:FC:A4:9D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:c2:d5:84:e9:32:0a:39:40:04:c7:14:ee:f8:83:7d:13:88:
c9:f3:fe:b2:08:c3:ce:f1:da:ba:c2:34:f7:24:92:f4:70:5f:
95:b0:de:65:50:88:9a:ad:79:e2:a1:6c:a9:6a:d2:ee:f6:39:
a7:73:6a:13:1c:aa:87:4d:12:1f:db:b4:84:10:11:6d:49:a2:
c5:0f:e4:40:59:4d:88:f6:95:7f:62:38:12:b0:35:35:9e:b9:
3c:ba:95:f4:36:d2:05:d8:8b:17:cd:04:ee:53:92:65:9c:da:
34:7e:07:4f:04:e1:cd:fb:77:7c:a8:11:c9:f9:31:af:ed:21:
93:b9:1c:dd:9c:db:01:c2:0a:d8:1e:30:ce:cf:fb:a3:ab:bc:
8c:7e:36:3e:27:5d:36:8b:5d:39:12:98:3a:cb:74:fd:03:b7:
32:60:2a:05:4a:b6:61:5b:9b:01:a3:a7:7d:3d:e6:ea:00:31:
fc:b1:e0:90:0b:5a:81:11:ca:88:63:c9:31:f4:18:52:25:76:
c1:de:4c:16:1e:8b:e6:1f:ce:99:e7:c6:b7:ea:99:ec:bf:e0:
18:ef:bc:43:19:20:1b:32:e4:e9:6e:1c:e9:8f:4e:d0:f5:2a:
12:8e:a8:08:a6:b7:66:e8:a3:d8:3e:60:55:c1:a1:90:b1:59:
67:ab:2d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:58:13 2026 by rpki-client