
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: 2WDBDuWl4AHBgaUigoBfiVDTCbtlEfVxCUFe75v3tsw=
Subject key identifier: C4:A4:F5:71:23:AC:AB:B0:45:1C:3B:D1:13:15:94:8D:92:CA:E7:10
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 019F3D506BCAA9724B11C251F4C63EEEAA05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 199C
Signing time: Tue 07 Jul 2026 16:01:48 +0000
Manifest this update: Tue 07 Jul 2026 16:01:48 +0000
Manifest next update: Wed 08 Jul 2026 16:01:48 +0000
Files and hashes: 1: 9pt3MDCay7srVLLtOW6VihLRgqg.roa (hash: t8waBrYlHxhkv2G7wxFbB2b8tWVcdcespy2BiSBs4U8=)
2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: WRm5Ntl0CKKgAqXmRUvtaDKE3HNtsdydFhBAkPbGySc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 Jul 2026 14:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:3d:50:6b:ca:a9:72:4b:11:c2:51:f4:c6:3e:ee:aa:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Jul 7 16:01:48 2026 GMT
Not After : Jul 8 16:01:48 2026 GMT
Subject: CN=c4a4f57123acabb0451c3bd11315948d92cae710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0e:41:9a:3a:36:8f:de:c7:61:5d:7e:66:bc:
2a:ee:a0:cb:cc:b7:6e:4c:3b:f0:94:b5:87:2f:61:
59:e3:e5:8d:43:ca:b8:89:79:e1:0b:5e:aa:52:09:
b5:b5:0b:55:08:be:ec:0e:f2:a1:a4:49:7d:c2:17:
1d:ab:88:30:b4:3e:43:1c:9e:eb:ce:dd:f3:3f:14:
da:a1:40:a0:37:1e:08:98:6f:d5:5e:81:bc:46:52:
5e:c9:93:08:3c:29:fd:51:a8:7d:fa:ec:83:bf:aa:
a2:38:d1:2e:4b:c0:d7:ab:18:d2:a3:20:3e:0d:f7:
55:5f:5a:6a:a2:4c:c3:02:76:98:58:02:e7:f2:e4:
49:06:bd:09:b6:02:ca:a4:42:b7:a8:12:84:24:62:
e1:a4:bc:f2:3f:13:36:c0:49:e5:b8:a7:a3:22:37:
52:dc:0f:33:b3:3f:25:7e:e4:eb:fa:99:e9:96:16:
1e:89:a9:22:31:3b:5e:2e:83:f9:33:b4:19:e1:1f:
4b:50:2c:f3:ce:d2:c3:71:6d:45:2b:44:23:08:a6:
96:fe:75:93:dc:96:ac:8a:88:65:42:d9:03:19:53:
c9:a7:a1:17:90:fb:90:68:c6:44:14:0f:64:35:66:
39:1e:23:36:e8:8b:ec:01:ae:59:c4:a9:e6:f3:6a:
a8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:A4:F5:71:23:AC:AB:B0:45:1C:3B:D1:13:15:94:8D:92:CA:E7:10
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:c9:69:6a:9f:b0:f5:8a:ce:72:d7:4b:31:36:28:72:ed:86:
18:69:01:d5:1e:f4:f7:9e:de:51:80:31:41:01:fb:71:b8:b1:
c9:aa:26:e2:0f:58:39:b5:e3:cb:92:aa:25:07:3a:52:20:89:
20:8c:ed:69:ed:61:8a:5d:66:66:3f:f1:1d:9e:29:39:02:b3:
9a:93:5d:4d:4e:e2:37:b5:6a:22:b2:5b:cf:8f:0a:03:b9:df:
4a:44:83:f6:8c:a7:b5:57:82:43:fd:f5:3b:db:03:a7:83:13:
3c:11:44:9c:df:bc:81:36:b6:71:80:06:b2:d8:66:5d:8b:46:
d1:d9:ce:82:c7:21:be:7f:48:b9:ad:4c:7c:94:02:e2:d9:ac:
0d:42:b3:5c:94:14:94:ac:92:f5:8f:bc:c5:81:e4:09:91:1f:
43:f7:74:95:6c:a7:87:5f:d4:5b:72:d8:b6:4e:3e:a6:a2:2e:
d0:a9:76:5b:42:00:39:30:e2:75:6a:0f:97:0c:47:f6:3b:77:
a9:0e:35:96:28:3e:52:b1:49:0c:bb:1d:71:91:27:ba:76:1e:
f5:42:9a:23:2c:bd:b2:83:4c:bb:20:2e:73:0d:a2:e8:f0:20:
7b:79:26:dc:d1:7e:85:e6:dd:74:1e:1d:13:29:7d:04:37:c7:
89:c8:2b:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 23:10:37 2026 by rpki-client