Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
File: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft (raw, json)
Hash identifier: 1EfZQG9wrmJUktQLuNOViZNqXw5X614F2jNuGDBGhWE=
Subject key identifier: 1A:FE:03:24:17:02:49:40:03:BE:DA:4B:FE:16:80:F3:35:CD:5E:55
Authority key identifier: 0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
Certificate issuer: /CN=0d333f72d9e294543825be63729f8034a4517090
Certificate serial: 0198D51630F4C1346DA76470F9B91247A0BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
Manifest number: 0A3F
Signing time: Sat 23 Aug 2025 04:00:57 +0000
Manifest this update: Sat 23 Aug 2025 04:00:57 +0000
Manifest next update: Sun 24 Aug 2025 04:00:57 +0000
Files and hashes: 1: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl (hash: /hRxEPVHTLz1Pyvf2nlgn6aqub4vx+dBkpRsxabZsN8=)
2: IoDHlDbNXO3jlcqfipIcULBON5A.roa (hash: KOgCTDaSahbElR1Ol4oBVrEjOtYhS4W0VzXtKth8BeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:30:f4:c1:34:6d:a7:64:70:f9:b9:12:47:a0:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d333f72d9e294543825be63729f8034a4517090
Validity
Not Before: Aug 23 04:00:57 2025 GMT
Not After : Aug 24 04:00:57 2025 GMT
Subject: CN=1afe03241702494003beda4bfe1680f335cd5e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2a:36:bd:35:71:70:79:16:bf:83:14:81:ad:
aa:46:24:fa:24:58:aa:45:7a:c2:5e:5c:38:ed:03:
c3:00:e4:96:cb:a0:e8:ce:4a:0a:39:54:48:ed:8a:
82:20:ac:dd:4e:a1:c8:5f:27:6d:fa:7a:08:14:99:
07:92:4a:5b:d0:e8:bd:d1:06:fe:a5:af:da:24:eb:
68:85:3a:08:b3:9c:23:c2:a8:1a:b4:e3:f6:b0:b9:
88:e7:1b:cf:73:f9:3a:6e:cb:fa:68:f2:15:a6:db:
e7:11:51:32:95:f6:46:5a:cc:6a:0f:3e:e7:77:e5:
79:2c:1b:60:7f:df:e9:f2:bf:b2:18:a4:97:a9:4e:
c7:9c:7a:a7:2d:d9:d7:15:7f:8a:8c:5d:35:96:b1:
e3:8d:78:0b:b7:42:ef:be:44:fa:b6:1f:bb:69:f2:
f1:72:e1:37:e0:ad:b7:17:8e:2d:31:d9:38:cf:2f:
d6:ca:e4:6a:d0:7e:fc:55:85:dd:66:68:76:95:8f:
40:67:9e:6e:94:93:79:e6:a3:1e:bf:c9:ce:78:b1:
67:72:3f:47:ed:e7:4c:e6:a7:0a:6e:05:fa:58:0a:
83:3a:8d:63:85:99:41:e8:ac:23:5f:36:5d:88:33:
2b:5c:b8:26:ff:bb:bd:5f:62:32:56:95:9b:0a:b2:
60:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FE:03:24:17:02:49:40:03:BE:DA:4B:FE:16:80:F3:35:CD:5E:55
X509v3 Authority Key Identifier:
keyid:0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:8e:ec:db:2e:d2:51:51:2f:e5:36:ee:28:b9:45:fc:bb:3c:
6c:8f:a7:08:03:07:ea:b8:3f:5a:12:0e:94:9a:55:51:e1:c9:
26:5f:39:e0:4d:ce:e8:45:0f:82:67:e1:63:62:42:97:e2:df:
65:38:4b:48:cc:74:2a:51:7f:76:97:26:9e:5b:03:b3:55:92:
68:a3:22:89:10:ca:74:a4:85:7a:1f:eb:2d:e1:55:59:77:f5:
b0:6a:17:1f:0a:a5:e6:49:87:83:1a:3a:6d:4f:7c:bf:11:70:
3b:cd:25:e9:13:f1:ee:94:50:52:31:3c:87:f9:7b:19:31:6e:
f9:e3:93:5c:cd:db:12:eb:2b:9e:f2:07:48:da:db:fb:b0:d1:
02:8e:3e:a5:07:c4:65:7b:32:3a:19:eb:0d:b7:76:6b:c5:33:
b7:b1:a8:9a:2b:ca:66:79:4f:dd:6d:3e:3d:1e:15:3b:fb:03:
aa:f5:b2:8e:bc:88:d2:88:b0:2f:3f:b0:ea:ac:6d:66:2a:72:
03:42:20:88:5d:4b:76:a1:64:35:ee:0b:48:48:e2:8a:49:0b:
a7:c9:4a:4f:c5:ab:75:f6:1d:be:53:5e:83:7a:dc:95:83:09:
b8:a6:6e:64:fa:95:b0:40:0d:c9:b5:db:1e:d8:cc:73:9d:0e:
99:1d:4d:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFjD0wTRtp2Rw+bkSR6C+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkMzMzZjcyZDllMjk0NTQzODI1YmU2MzcyOWY4MDM0YTQ1
MTcwOTAwHhcNMjUwODIzMDQwMDU3WhcNMjUwODI0MDQwMDU3WjAzMTEwLwYDVQQD
EygxYWZlMDMyNDE3MDI0OTQwMDNiZWRhNGJmZTE2ODBmMzM1Y2Q1ZTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSo2vTVxcHkWv4MUga2qRiT6JFiq
RXrCXlw47QPDAOSWy6DozkoKOVRI7YqCIKzdTqHIXydt+noIFJkHkkpb0Oi90Qb+
pa/aJOtohToIs5wjwqgatOP2sLmI5xvPc/k6bsv6aPIVptvnEVEylfZGWsxqDz7n
d+V5LBtgf9/p8r+yGKSXqU7HnHqnLdnXFX+KjF01lrHjjXgLt0LvvkT6th+7afLx
cuE34K23F44tMdk4zy/WyuRq0H78VYXdZmh2lY9AZ55ulJN55qMev8nOeLFncj9H
7edM5qcKbgX6WAqDOo1jhZlB6KwjXzZdiDMrXLgm/7u9X2IyVpWbCrJgqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBr+AyQXAklAA77aS/4WgPM1zV5VMB8GA1UdIwQY
MBaAFA0zP3LZ4pRUOCW+Y3KfgDSkUXCQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFRNX2N0bmlsRlE0SmI1amNwLUFOS1JSY0pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC82NWZlYTItYTNkOS00OTJmLThlNDQt
ODk0ZGZhNWRmMDE3LzEvRFRNX2N0bmlsRlE0SmI1amNwLUFOS1JSY0pBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC82NWZlYTItYTNkOS00OTJmLThlNDQtODk0ZGZhNWRmMDE3
LzEvRFRNX2N0bmlsRlE0SmI1amNwLUFOS1JSY0pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAo7s2y7S
UVEv5TbuKLlF/Ls8bI+nCAMH6rg/WhIOlJpVUeHJJl854E3O6EUPgmfhY2JCl+Lf
ZThLSMx0KlF/dpcmnlsDs1WSaKMiiRDKdKSFeh/rLeFVWXf1sGoXHwql5kmHgxo6
bU98vxFwO80l6RPx7pRQUjE8h/l7GTFu+eOTXM3bEusrnvIHSNrb+7DRAo4+pQfE
ZXsyOhnrDbd2a8Uzt7GomivKZnlP3W0+PR4VO/sDqvWyjryI0oiwLz+w6qxtZipy
A0IgiF1LdqFkNe4LSEjiikkLp8lKT8WrdfYdvlNeg3rclYMJuKZuZPqVsEANybXb
HtjMc50OmR1Njw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:40:44 2025 by rpki-client