Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json)
Hash identifier: AyD1wkW/hx39JnJaRjiSd2+guIER+nQi4rglVcakLGM=
Subject key identifier: 38:42:67:B7:D9:36:82:7C:BC:69:7A:92:B2:29:A8:77:86:1E:26:8B
Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310
Certificate serial: 019F17C29271BF29998E4396FA4227FBD139
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
Manifest number: 12CF
Signing time: Tue 30 Jun 2026 09:00:55 +0000
Manifest this update: Tue 30 Jun 2026 09:00:55 +0000
Manifest next update: Wed 01 Jul 2026 09:00:55 +0000
Files and hashes: 1: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: gtoZ1/Squll2HZdivwwPi9ql0vfao0u20wgQ5GEnSnQ=)
2: gQCK6BeO-j5lVpUt90LH641D-Do.roa (hash: IdvQ6sUh6mIJW4ddDEmtmONm3UtG6O5w53GtVLTmX/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c2:92:71:bf:29:99:8e:43:96:fa:42:27:fb:d1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310
Validity
Not Before: Jun 30 09:00:55 2026 GMT
Not After : Jul 1 09:00:55 2026 GMT
Subject: CN=384267b7d936827cbc697a92b229a877861e268b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:77:bc:5c:c4:b9:09:93:c4:78:af:79:c0:45:
cb:3d:ea:d3:70:53:23:a7:45:cc:38:88:e8:96:f7:
79:5f:39:25:d6:a9:40:c7:d1:1e:45:a6:0c:d7:25:
17:6b:74:01:7b:cb:47:70:2e:60:d0:95:a2:3d:75:
6f:6f:aa:e4:cb:d4:c0:e2:9d:6c:70:c7:42:13:56:
ef:4f:0d:c9:dc:a6:9c:d7:30:19:72:44:3e:32:f8:
e2:54:04:a9:70:eb:a2:8c:49:a9:6a:46:5d:fc:43:
80:76:47:77:5b:eb:2c:db:4e:d8:25:a4:1e:ef:f2:
53:11:37:74:dd:39:d8:cc:5b:3a:07:d6:f9:10:b3:
6f:62:c6:54:53:22:bb:a4:af:9b:d0:f0:aa:d3:af:
1f:6a:fa:30:42:91:49:68:be:a3:fd:8d:ee:a1:2b:
76:50:88:76:58:14:9f:1d:30:10:70:fd:fb:09:90:
ca:2a:fc:73:ce:70:1e:b6:43:9d:c0:3c:3b:54:d8:
77:df:1b:8c:2d:2d:73:59:19:90:8e:f9:a2:6c:98:
c3:50:a2:d7:d5:e3:5e:1a:8e:d1:3d:6c:7e:c5:c1:
4a:35:8e:88:87:92:7d:ec:17:d0:25:28:19:00:60:
d4:39:2e:1a:73:f2:49:c9:c1:ab:bd:5a:f5:c8:cd:
07:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:42:67:B7:D9:36:82:7C:BC:69:7A:92:B2:29:A8:77:86:1E:26:8B
X509v3 Authority Key Identifier:
keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:10:da:f2:cd:c6:e1:12:24:9b:44:3e:59:39:cb:ab:70:a1:
ca:7f:6b:58:d7:f4:f7:2e:5c:5f:53:b1:0b:00:b1:92:21:b7:
51:3c:9a:0c:95:20:1e:50:d4:42:26:e9:61:2d:86:71:df:ea:
2d:63:18:71:fc:8e:6a:0a:09:06:a5:36:bf:e4:df:5c:fd:e4:
42:4b:3e:c5:94:88:e5:cf:b1:f1:0a:81:51:44:59:8d:e6:0c:
52:13:80:c7:5b:c9:20:9e:c7:b1:4d:ae:23:90:eb:5e:5a:c8:
5c:77:3e:80:dc:c3:b6:de:b7:b9:7f:78:46:73:8e:e0:a8:c3:
cb:cd:0f:96:6f:b0:60:1f:54:94:35:d8:19:4c:6d:c6:e4:e5:
23:6d:83:37:ab:3d:2f:e3:75:8c:36:8a:22:57:b5:fd:4b:5d:
3e:bc:43:46:0e:fc:f8:3c:fa:ba:17:18:8f:c1:5d:ff:51:31:
95:93:21:aa:f9:06:a9:b8:cc:a8:6a:46:12:e4:8e:a4:9e:7c:
f2:b3:9d:ba:a5:8d:76:a3:a6:28:dd:7b:46:5e:06:13:5b:32:
c8:36:0e:b8:1d:76:32:ed:07:a3:e4:f9:6e:49:ac:c4:ca:14:
4d:3f:cc:fe:c4:89:4f:cb:8e:65:9f:80:11:d8:04:32:46:d4:
e8:6a:3d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:17:29 2026 by rpki-client