Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
File: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft (raw, json)
Hash identifier: tMyGW+RMlQDruqcZqAxuZmctg6pgL/LZXhsmogNWHSU=
Subject key identifier: 79:6E:7B:50:F9:BF:FF:CD:92:73:36:75:FC:9C:DD:E4:E4:8F:DE:F1
Authority key identifier: 0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
Certificate issuer: /CN=0d333f72d9e294543825be63729f8034a4517090
Certificate serial: 019D26284A9CC742A2A8F4415D5332C57E01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
Manifest number: 0C7C
Signing time: Wed 25 Mar 2026 18:01:07 +0000
Manifest this update: Wed 25 Mar 2026 18:01:07 +0000
Manifest next update: Thu 26 Mar 2026 18:01:07 +0000
Files and hashes: 1: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl (hash: iNI0eM+iN/FvSLHm0nWdoYmBlYLp+B1QKA0Pk1UwkcM=)
2: EPJNcfb9BYVxiCOl5XxrpQOfiyc.roa (hash: 3iBYjsoElN4nFr95B9VrvRH80hKHxRpzggq/IbclLdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:4a:9c:c7:42:a2:a8:f4:41:5d:53:32:c5:7e:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d333f72d9e294543825be63729f8034a4517090
Validity
Not Before: Mar 25 18:01:07 2026 GMT
Not After : Mar 26 18:01:07 2026 GMT
Subject: CN=796e7b50f9bfffcd92733675fc9cdde4e48fdef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:34:0b:f6:6a:65:e3:af:93:3b:0e:88:30:1b:
73:2f:ae:da:a2:51:14:75:66:bb:c7:91:19:d0:71:
86:04:0d:79:9c:e3:9b:7a:bc:93:32:eb:a1:95:3a:
9b:e2:1c:6d:3d:a9:77:8a:46:a3:31:a7:46:9c:df:
b8:ef:03:17:a0:89:ce:2e:8f:1e:ef:e1:2b:1c:21:
f1:fa:8c:81:1a:cf:ba:ed:b8:a6:9c:44:35:00:1f:
85:89:0a:fc:23:36:ca:33:18:b7:a3:ae:74:d2:a1:
5a:d3:c5:ad:1f:a9:cf:c5:22:c9:0a:d7:20:9e:51:
a9:6f:57:9e:c5:dc:7c:d4:d9:2b:c7:3b:89:c5:f9:
11:93:d8:c0:10:dc:1c:dc:97:e5:1d:db:dc:60:6f:
e7:1b:90:28:62:c8:c1:ed:77:00:69:82:e1:f2:fa:
94:ad:89:d2:b8:20:ac:fe:ad:06:d5:6a:d7:0f:d2:
d9:52:76:7d:bb:7c:a8:7c:11:65:15:4e:90:c1:bc:
d5:1c:16:48:97:74:fc:5b:98:a5:7f:1e:fb:3b:d6:
78:97:5c:8b:da:6a:a4:b4:23:63:54:7f:9b:97:81:
63:d7:6a:85:6a:03:09:11:7c:1e:1f:b5:fe:d6:90:
cb:17:96:5f:c9:c6:e8:4f:69:e0:b2:3a:91:4e:a2:
e3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6E:7B:50:F9:BF:FF:CD:92:73:36:75:FC:9C:DD:E4:E4:8F:DE:F1
X509v3 Authority Key Identifier:
keyid:0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:97:a8:51:93:ac:3e:c9:86:59:ce:2d:44:a3:42:e1:85:0a:
02:60:89:49:71:85:5f:96:8a:a5:b3:51:af:7e:c9:47:99:79:
55:54:5b:d2:6a:fe:46:e2:c5:74:3f:02:f6:af:25:df:84:f9:
f9:c9:be:be:5e:9e:0e:3c:6a:4c:7b:5c:ad:4f:23:71:7d:61:
e3:2f:b6:e2:2e:b9:54:02:a2:96:e9:13:3d:07:12:01:80:1e:
d6:58:49:64:4b:31:3f:c1:d8:4b:d5:eb:7d:9c:47:84:5b:f6:
8c:17:12:e6:1e:6e:be:89:e1:f0:7d:95:8c:ca:dc:bc:13:d0:
e7:9b:b2:5f:a1:65:13:f9:42:42:1b:79:e2:3a:b8:08:c8:c8:
66:b9:f0:57:57:7f:4c:55:71:3f:1b:5e:73:77:16:21:28:7f:
61:f0:5c:00:63:5f:4b:1c:e3:ea:36:81:3c:b4:ca:b0:a0:22:
0a:14:50:6a:cd:98:91:39:3f:f0:16:d6:9d:85:9c:cc:b4:58:
d4:0f:1c:a7:0a:4e:e0:9d:f8:ae:8f:c7:1e:01:23:bb:70:d5:
9e:bf:08:23:09:f1:2b:3c:09:f6:5c:b5:1a:d2:82:a2:10:96:
ca:05:c6:f6:26:7c:32:05:f2:68:43:50:c9:10:6c:89:e8:39:
94:18:b2:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:23 2026 by rpki-client