Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: uO5o+9fxpxN1S9QYynzk+mw8Gv4+c+1+36bwkNeYKN0=
Subject key identifier: C2:C5:28:4C:0E:18:24:09:A0:3D:6A:D1:04:47:F0:01:B5:93:95:15
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 019D37C052A6F4620621B664B4DC8E2638B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 04:00:44 +0000
Manifest this update: Sun 29 Mar 2026 04:00:44 +0000
Manifest next update: Mon 30 Mar 2026 04:00:44 +0000
Files and hashes: 1: 9pt3MDCay7srVLLtOW6VihLRgqg.roa (hash: t8waBrYlHxhkv2G7wxFbB2b8tWVcdcespy2BiSBs4U8=)
2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: uzzOF9TnnXofSd6V8KzQqr32pc3jvQ0X597RxOf89wQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:52:a6:f4:62:06:21:b6:64:b4:dc:8e:26:38:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Mar 29 04:00:44 2026 GMT
Not After : Mar 30 04:00:44 2026 GMT
Subject: CN=c2c5284c0e182409a03d6ad10447f001b5939515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:88:be:95:75:f1:10:bc:4f:8e:b8:01:3b:30:
37:2b:a5:9e:f7:92:ef:58:4d:0c:64:90:bb:6b:19:
72:2b:01:b4:0c:40:04:0e:ef:10:67:00:da:79:4b:
88:2d:de:b2:06:c5:0f:16:00:29:1a:11:4a:be:9c:
9f:6b:8c:31:a6:83:2d:c5:76:12:4b:8f:df:77:17:
93:9c:b3:d6:bc:dd:13:71:b2:73:29:ed:ca:5c:f2:
06:7a:c6:bc:13:c7:4b:ff:76:25:f7:de:91:2e:75:
81:a7:57:66:ff:03:ab:9a:49:f9:4c:a8:f6:36:2a:
ec:04:b9:7e:5e:bf:83:92:23:f0:6e:d5:e8:20:75:
3c:d9:da:51:d2:89:56:ce:eb:7b:9d:35:6f:72:77:
9c:91:35:de:94:30:1e:d4:ff:68:9b:fc:93:52:d8:
66:38:56:4b:57:3c:8a:13:7d:a6:37:16:96:79:83:
a3:72:4e:51:4d:32:34:dd:e1:33:23:1b:2d:ac:63:
db:89:88:ee:55:df:ed:15:e0:55:26:42:2d:d9:e3:
1e:a8:a3:68:36:16:c0:e5:a8:dd:43:1c:e2:43:46:
5c:9a:30:a5:b6:1f:06:a9:a7:51:f8:0b:1b:83:d5:
a6:58:ae:3e:7a:10:84:c8:62:b2:b5:74:3d:d5:ad:
47:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C5:28:4C:0E:18:24:09:A0:3D:6A:D1:04:47:F0:01:B5:93:95:15
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:33:d0:b9:6e:49:cf:cf:51:88:03:be:0e:d2:da:a1:61:7c:
23:3f:38:c5:f5:df:c9:28:0d:4b:8b:47:6f:be:9a:7b:bf:dc:
b4:11:7a:c3:24:0f:5d:27:9a:94:75:90:78:23:e4:34:40:90:
b0:71:25:33:0a:f2:2a:d3:ce:bb:84:82:b1:35:05:95:e8:a0:
fc:c4:4e:ff:44:15:6c:68:d9:ff:9e:44:7b:56:83:cc:62:81:
69:e0:6c:94:03:43:b2:f1:5f:51:7c:06:d4:e5:98:ca:0a:93:
57:39:1d:0d:0a:2d:e3:39:52:bb:5d:c3:02:2a:34:a2:5a:37:
d8:f4:40:9b:9a:a6:da:9b:ce:a4:ef:10:60:41:05:40:c3:8d:
81:2c:2a:36:89:64:66:01:4e:a0:67:d4:3b:f9:5f:26:3c:a6:
1a:e2:64:8e:20:a3:b4:29:64:2a:e4:00:d1:12:2a:e8:e7:3b:
f4:2f:c4:2f:25:4a:25:fc:ba:48:65:bf:a0:e6:ac:d0:05:d5:
52:72:2b:65:93:a3:d2:d1:7f:cc:94:4a:bb:65:e0:c7:46:93:
39:d6:6c:16:aa:bc:7e:f6:9e:67:f3:3e:82:d4:13:1d:5b:61:
31:6a:f4:c5:d3:bf:2e:52:6b:50:4c:31:df:2b:66:86:17:4d:
66:ce:4e:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wFKm9GIGIbZktNyOJji2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2ZTJiYTVjYzE1MGIzNTNjYmQzNGI5ZjA0NWVhMDUwOTc0
MDg0NGQwHhcNMjYwMzI5MDQwMDQ0WhcNMjYwMzMwMDQwMDQ0WjAzMTEwLwYDVQQD
EyhjMmM1Mjg0YzBlMTgyNDA5YTAzZDZhZDEwNDQ3ZjAwMWI1OTM5NTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAloi+lXXxELxPjrgBOzA3K6We95Lv
WE0MZJC7axlyKwG0DEAEDu8QZwDaeUuILd6yBsUPFgApGhFKvpyfa4wxpoMtxXYS
S4/fdxeTnLPWvN0TcbJzKe3KXPIGesa8E8dL/3Yl996RLnWBp1dm/wOrmkn5TKj2
NirsBLl+Xr+DkiPwbtXoIHU82dpR0olWzut7nTVvcneckTXelDAe1P9om/yTUthm
OFZLVzyKE32mNxaWeYOjck5RTTI03eEzIxstrGPbiYjuVd/tFeBVJkIt2eMeqKNo
NhbA5ajdQxziQ0ZcmjClth8GqadR+Asbg9WmWK4+ehCEyGKytXQ91a1H/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMLFKEwOGCQJoD1q0QRH8AG1k5UVMB8GA1UdIwQY
MBaAFHbiulzBULNTy9NLnwReoFCXQIRNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2Et
NzA0MDVlMzUyOGFmLzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2EtNzA0MDVlMzUyOGFm
LzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfDPQuW5J
z89RiAO+DtLaoWF8Iz84xfXfySgNS4tHb76ae7/ctBF6wyQPXSealHWQeCPkNECQ
sHElMwryKtPOu4SCsTUFleig/MRO/0QVbGjZ/55Ee1aDzGKBaeBslANDsvFfUXwG
1OWYygqTVzkdDQot4zlSu13DAio0olo32PRAm5qm2pvOpO8QYEEFQMONgSwqNolk
ZgFOoGfUO/lfJjymGuJkjiCjtClkKuQA0RIq6Oc79C/ELyVKJfy6SGW/oOas0AXV
UnIrZZOj0tF/zJRKu2Xgx0aTOdZsFqq8fvaeZ/M+gtQTHVthMWr0xdO/LlJrUEwx
3ytmhhdNZs5OWg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:12 2026 by rpki-client