Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: Q7GLWuG/bNdunTGok/V4AvWNeruHa1ogjIOWsodFVOo=
Subject key identifier: CA:9C:36:E0:8E:A9:28:C0:71:8C:B0:AF:E1:87:48:EF:83:35:74:B9
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 019D9A3E4EC5384CA0903F03448522830BCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 07:01:07 +0000
Manifest this update: Fri 17 Apr 2026 07:01:07 +0000
Manifest next update: Sat 18 Apr 2026 07:01:07 +0000
Files and hashes: 1: 9pt3MDCay7srVLLtOW6VihLRgqg.roa (hash: t8waBrYlHxhkv2G7wxFbB2b8tWVcdcespy2BiSBs4U8=)
2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: vzMuggNOyVYr1mLAluMDqIApYnV1LAnDoZHveI7eaz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:4e:c5:38:4c:a0:90:3f:03:44:85:22:83:0b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Apr 17 07:01:07 2026 GMT
Not After : Apr 18 07:01:07 2026 GMT
Subject: CN=ca9c36e08ea928c0718cb0afe18748ef833574b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:22:19:68:4a:b7:a8:ba:11:96:a6:e5:64:4b:
73:1b:7d:de:ec:d7:66:08:96:c3:b9:21:66:60:f7:
95:79:97:2e:37:03:e2:9c:6c:3d:b1:b7:fb:83:4a:
60:02:b0:a0:51:03:46:27:cf:46:f0:bd:3a:f0:8a:
30:06:c4:53:2e:5f:85:8d:dd:e5:4f:3c:ca:d8:d2:
62:0a:7b:d0:51:64:dd:fd:e1:e7:26:a7:fa:95:97:
be:eb:5a:0a:e2:32:49:9c:3c:ad:e1:b0:bd:76:cd:
b5:4b:d9:c4:d0:46:50:03:e7:5d:9b:19:44:cb:d7:
6a:79:96:88:50:40:ab:61:ab:20:b9:4b:94:f1:ab:
61:e1:f0:35:c6:de:78:64:d1:21:eb:72:b9:dd:4c:
66:54:4a:14:f1:eb:25:fe:27:47:73:c1:f3:84:77:
d7:c4:8b:c2:25:dc:b3:14:6b:dc:28:e1:7d:e6:a7:
7a:e8:11:29:56:e7:f6:7b:de:fb:2f:28:7d:3c:cf:
3c:b9:f6:20:19:4a:9c:42:5c:11:1d:49:17:d0:e4:
fd:bb:f3:5c:f7:86:bd:f9:fb:47:6d:01:20:b6:8c:
90:5b:c8:ff:06:1d:1a:37:62:1e:b6:51:52:1c:c3:
2b:d0:e3:09:09:5a:ec:2a:21:8f:3d:e6:0f:80:ba:
24:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9C:36:E0:8E:A9:28:C0:71:8C:B0:AF:E1:87:48:EF:83:35:74:B9
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c0:2f:bf:21:d5:73:6f:fc:bc:9d:dc:78:33:49:db:a3:b9:
50:03:3b:be:03:af:53:c1:12:09:20:f7:27:bf:e1:5c:84:ec:
62:34:99:fc:43:4f:4f:ef:3f:d5:a2:dc:55:7c:d3:c9:a8:2b:
ba:bf:9f:b7:ec:7d:81:59:0d:bc:0a:d1:b0:ce:1c:eb:3c:d4:
12:c9:91:4a:a5:e7:30:0a:9a:f5:8a:25:b9:8e:d0:1d:d0:4c:
00:3e:13:14:84:34:44:58:79:b0:87:0b:99:32:8a:a7:bb:0b:
6d:96:15:d9:70:65:48:a0:33:ce:78:a0:db:ef:ee:56:9a:3f:
39:49:eb:20:10:4e:68:b6:a7:cc:37:83:5c:ad:43:05:9f:0b:
6d:e4:94:de:e1:a9:a7:d7:a5:96:f6:df:d3:05:60:a2:b8:ee:
ad:b2:c1:33:6e:3b:1d:df:67:77:2c:91:1a:54:2a:7d:6c:e0:
50:14:e6:2f:a2:23:2c:f7:4c:70:05:5a:ea:f2:81:3e:6f:38:
26:e9:aa:d3:71:d1:66:69:47:77:7d:d2:7e:28:b8:74:06:01:
4e:6c:d0:7d:4e:d0:7b:a3:99:3d:37:60:23:23:5a:9d:ef:ec:
29:50:8e:4d:62:32:07:91:5b:e2:21:a7:af:52:04:91:53:a6:
93:e4:f3:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:33:23 2026 by rpki-client