Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
File: DY05iX3-Ia7thQlskKRzlvyknUE.mft (raw, json)
Hash identifier: 0mgaEiNgzFxz6VJt3+214nEEnETcyhfyxxLpnBsJIY0=
Subject key identifier: 66:AB:03:77:56:F7:1A:AF:D5:E6:FE:39:17:B0:1F:C1:AA:69:29:CC
Authority key identifier: 0D:8D:39:89:7D:FE:21:AE:ED:85:09:6C:90:A4:73:96:FC:A4:9D:41
Certificate issuer: /CN=0d8d39897dfe21aeed85096c90a47396fca49d41
Certificate serial: 019F19437D0AACD717E052EC1BF52A3A0496
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
Manifest number: 1916
Signing time: Tue 30 Jun 2026 16:01:20 +0000
Manifest this update: Tue 30 Jun 2026 16:01:20 +0000
Manifest next update: Wed 01 Jul 2026 16:01:20 +0000
Files and hashes: 1: DY05iX3-Ia7thQlskKRzlvyknUE.crl (hash: +sRdYWba5ClvvHy5+6LULBsHzMbJ2kiVNlFIzxyd24c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:7d:0a:ac:d7:17:e0:52:ec:1b:f5:2a:3a:04:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8d39897dfe21aeed85096c90a47396fca49d41
Validity
Not Before: Jun 30 16:01:20 2026 GMT
Not After : Jul 1 16:01:20 2026 GMT
Subject: CN=66ab037756f71aafd5e6fe3917b01fc1aa6929cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:de:7c:ef:0c:72:80:54:a3:c5:af:37:91:f9:
79:67:44:a2:60:41:45:4c:69:2a:23:88:cc:4a:45:
45:c7:59:02:67:bc:32:db:21:e7:0b:ed:1b:26:51:
64:83:4e:08:fb:5a:87:ae:ae:58:cc:ba:1b:9b:f4:
48:0b:dd:63:5e:a6:fd:43:1f:1c:e0:af:2c:6e:4a:
86:c5:50:eb:1c:b9:b9:c8:a5:08:ca:63:48:90:74:
2f:65:7e:f0:d9:60:66:42:46:e4:24:41:41:03:b0:
05:fc:7a:e9:df:56:4d:a5:68:7c:4a:28:ef:4f:e9:
dd:2d:a6:ea:41:83:54:59:46:68:d0:ff:f6:5c:76:
67:c0:3a:3b:76:d7:22:39:28:03:00:8b:9a:7a:c2:
38:22:31:41:36:3e:d7:27:49:b4:ad:ec:de:08:f8:
fd:e5:75:3f:c2:d7:a4:47:ec:78:fc:dc:67:a0:33:
cb:1b:69:6f:48:63:69:bb:eb:e2:fa:49:40:93:ce:
cd:e1:10:f7:74:e3:06:97:f3:96:72:4a:d3:39:b8:
84:c5:d0:8d:49:9a:9f:7a:f6:f3:59:e6:41:4c:d5:
9f:b9:2f:05:71:a4:1d:dc:65:62:9c:dc:75:15:62:
a1:49:38:90:2b:94:95:40:74:65:2f:51:2c:a5:3a:
e8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:AB:03:77:56:F7:1A:AF:D5:E6:FE:39:17:B0:1F:C1:AA:69:29:CC
X509v3 Authority Key Identifier:
keyid:0D:8D:39:89:7D:FE:21:AE:ED:85:09:6C:90:A4:73:96:FC:A4:9D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:22:66:30:c7:d2:5d:b5:d5:d1:27:00:d1:e0:5b:c4:0e:3b:
40:22:0e:48:f1:d3:39:1f:f8:9e:cf:d9:1c:7a:ae:0a:76:3f:
14:16:dc:1d:c3:5b:7e:f8:ab:dc:52:5e:41:35:e7:54:c7:6f:
52:a9:b2:02:aa:2a:78:aa:e2:3b:1e:1b:98:09:ad:c2:53:35:
6d:66:f5:3b:b4:f0:a1:37:e2:98:e2:81:35:ba:74:21:4e:e1:
91:f2:04:d3:6f:3d:9b:e1:46:40:60:d2:9b:43:3d:7e:73:ff:
ef:3f:21:5a:50:3a:79:d5:cd:53:33:e4:10:40:38:8e:df:fb:
fd:a3:b2:ae:20:7f:57:3d:d2:dd:87:47:21:be:21:5c:cd:98:
c0:95:55:49:f8:f5:06:6d:67:5a:22:17:c0:f3:74:7d:59:1a:
66:cf:6f:00:5e:3a:3e:48:49:12:a3:98:90:48:32:49:5d:ee:
30:1e:c9:50:c7:b6:09:c8:16:b7:1a:8f:ec:ab:ab:32:ce:2e:
3f:15:2b:5a:f2:3c:50:c8:0a:2f:bf:45:63:62:86:af:ed:b9:
4d:54:d3:69:20:9b:84:37:50:f1:48:0f:a3:95:18:0d:ef:98:
1f:fc:52:7d:40:5d:a3:32:d8:42:b2:ec:a1:1b:89:5d:b1:b1:
37:b7:55:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQ30KrNcX4FLsG/UqOgSWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkOGQzOTg5N2RmZTIxYWVlZDg1MDk2YzkwYTQ3Mzk2ZmNh
NDlkNDEwHhcNMjYwNjMwMTYwMTIwWhcNMjYwNzAxMTYwMTIwWjAzMTEwLwYDVQQD
Eyg2NmFiMDM3NzU2ZjcxYWFmZDVlNmZlMzkxN2IwMWZjMWFhNjkyOWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwN587wxygFSjxa83kfl5Z0SiYEFF
TGkqI4jMSkVFx1kCZ7wy2yHnC+0bJlFkg04I+1qHrq5YzLobm/RIC91jXqb9Qx8c
4K8sbkqGxVDrHLm5yKUIymNIkHQvZX7w2WBmQkbkJEFBA7AF/Hrp31ZNpWh8Sijv
T+ndLabqQYNUWUZo0P/2XHZnwDo7dtciOSgDAIuaesI4IjFBNj7XJ0m0rezeCPj9
5XU/wtekR+x4/NxnoDPLG2lvSGNpu+vi+klAk87N4RD3dOMGl/OWckrTObiExdCN
SZqfevbzWeZBTNWfuS8FcaQd3GVinNx1FWKhSTiQK5SVQHRlL1EspTro+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGarA3dW9xqv1eb+ORewH8GqaSnMMB8GA1UdIwQY
MBaAFA2NOYl9/iGu7YUJbJCkc5b8pJ1BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFkwNWlYMy1JYTd0aFFsc2tLUnpsdnlrblVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC81MDhjNjgtYTczNy00M2E5LWFmMTAt
YmU4MjMxMDk4NTVlLzEvRFkwNWlYMy1JYTd0aFFsc2tLUnpsdnlrblVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC81MDhjNjgtYTczNy00M2E5LWFmMTAtYmU4MjMxMDk4NTVl
LzEvRFkwNWlYMy1JYTd0aFFsc2tLUnpsdnlrblVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxiJmMMfS
XbXV0ScA0eBbxA47QCIOSPHTOR/4ns/ZHHquCnY/FBbcHcNbfvir3FJeQTXnVMdv
UqmyAqoqeKriOx4bmAmtwlM1bWb1O7TwoTfimOKBNbp0IU7hkfIE0289m+FGQGDS
m0M9fnP/7z8hWlA6edXNUzPkEEA4jt/7/aOyriB/Vz3S3YdHIb4hXM2YwJVVSfj1
Bm1nWiIXwPN0fVkaZs9vAF46PkhJEqOYkEgySV3uMB7JUMe2CcgWtxqP7KurMs4u
PxUrWvI8UMgKL79FY2KGr+25TVTTaSCbhDdQ8UgPo5UYDe+YH/xSfUBdozLYQrLs
oRuJXbGxN7dVug==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:32:45 2026 by rpki-client