Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
File: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft (raw, json)
Hash identifier: CChOyBjiDyWDRfRYxplT0cauyMa5V8dTmVt6TGFuNxM=
Subject key identifier: B0:8C:3A:54:E8:31:09:DA:3C:8C:DD:CA:6B:A2:91:A0:70:55:90:87
Authority key identifier: 0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
Certificate issuer: /CN=0d333f72d9e294543825be63729f8034a4517090
Certificate serial: 019E1D59C314909C71F3281DACA26636CFAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
Manifest number: 0CFC
Signing time: Tue 12 May 2026 18:01:22 +0000
Manifest this update: Tue 12 May 2026 18:01:22 +0000
Manifest next update: Wed 13 May 2026 18:01:22 +0000
Files and hashes: 1: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl (hash: +Vky0zGx4ngPpLRz+itQU1vw6vqVJv2mQ77NaUgYXP0=)
2: EPJNcfb9BYVxiCOl5XxrpQOfiyc.roa (hash: 3iBYjsoElN4nFr95B9VrvRH80hKHxRpzggq/IbclLdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:c3:14:90:9c:71:f3:28:1d:ac:a2:66:36:cf:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d333f72d9e294543825be63729f8034a4517090
Validity
Not Before: May 12 18:01:22 2026 GMT
Not After : May 13 18:01:22 2026 GMT
Subject: CN=b08c3a54e83109da3c8cddca6ba291a070559087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:11:84:e5:c9:51:c0:ae:74:3d:ed:49:0b:dc:
0a:f5:05:02:73:65:9d:42:6a:bb:08:cd:27:28:cf:
81:d6:3d:8b:86:8a:5a:c4:52:07:b1:83:31:ec:30:
87:4e:07:6c:3a:6e:01:7b:f7:5e:9c:19:42:23:91:
99:14:bd:c1:77:3f:f4:a5:b3:d8:79:b5:14:97:b9:
58:14:b1:0b:e2:5c:e2:e3:46:fd:cd:09:b8:4f:e1:
cf:82:04:e1:9b:20:4a:46:c9:bd:5c:8e:09:81:3e:
73:32:b2:fa:d2:85:fe:24:83:28:8d:79:5e:47:e1:
cc:4b:76:f1:6c:64:84:f1:4f:cd:10:dc:79:0e:60:
fc:c3:fc:9e:df:cd:fd:d9:5b:9d:ec:dd:33:79:00:
29:a5:a9:42:58:83:b8:d5:34:ff:fb:34:27:95:0f:
18:cc:ed:05:8f:29:96:39:8c:bd:e2:82:50:d6:c6:
2a:e5:c9:54:d6:26:d7:14:07:24:cd:d9:cb:fe:15:
36:ff:9e:61:84:08:07:0b:7c:2b:70:f2:60:47:45:
4c:8f:cd:00:5a:38:8e:4b:d1:2e:58:9b:43:9e:b1:
62:08:b1:62:1b:fd:a8:f4:34:57:b4:d8:b0:8a:79:
be:21:30:6a:ae:b6:72:74:6d:5c:b6:92:77:b8:7e:
e7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8C:3A:54:E8:31:09:DA:3C:8C:DD:CA:6B:A2:91:A0:70:55:90:87
X509v3 Authority Key Identifier:
keyid:0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:d2:7a:67:86:1a:b9:2d:a5:6a:5e:68:72:34:b8:76:43:1b:
da:66:07:02:96:46:ea:d7:f4:eb:3b:b7:74:25:2e:f3:af:c9:
07:6e:73:61:fc:ec:ca:e3:88:fc:92:af:35:79:be:4f:40:31:
13:b4:7b:43:36:df:a4:d0:ae:b9:97:0c:03:b2:1f:1a:c6:5b:
1d:03:da:ce:2b:ff:de:9d:79:d2:d1:88:5d:9f:a4:79:6e:d4:
19:0e:23:4e:65:03:a1:59:3d:ab:8f:53:56:79:9a:96:ab:46:
12:92:3a:38:cd:45:7c:1a:06:19:0a:76:77:ca:ab:67:18:71:
d3:c5:e3:5f:37:e8:dd:46:15:83:2f:33:1f:83:b0:81:22:1f:
a6:00:4f:be:89:7a:6c:64:56:28:09:26:31:dd:0f:af:41:77:
08:35:47:87:e6:af:26:f1:9a:f9:b0:24:53:65:21:3a:43:4e:
b0:f2:8b:5e:7f:e1:03:5e:25:37:a3:c6:3f:bd:ab:13:14:6b:
c4:c9:e4:00:2a:21:a2:63:3c:0a:31:bd:df:f8:d2:b3:bf:9f:
9e:41:ee:6b:58:57:e5:fb:ac:5e:27:a7:da:7c:06:1a:c2:ae:
76:89:b8:a2:b6:8d:30:ca:0a:84:08:a7:a4:28:9c:6a:0d:de:
e6:05:00:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:13:33 2026 by rpki-client