Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json)
Hash identifier: GSpX4hQadJf089FL3OooJcDD8l2QVNGj+QO+r8qVCXY=
Subject key identifier: 50:E9:22:44:23:A8:F8:99:3E:62:24:8B:53:B3:57:63:A2:E8:57:0C
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 019E216D206D4B237A4F2C2809E3898CD151
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 13:01:00 +0000
Manifest this update: Wed 13 May 2026 13:01:00 +0000
Manifest next update: Thu 14 May 2026 13:01:00 +0000
Files and hashes: 1: 9pt3MDCay7srVLLtOW6VihLRgqg.roa (hash: t8waBrYlHxhkv2G7wxFbB2b8tWVcdcespy2BiSBs4U8=)
2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: z4aYM+7xhenC8+VR/B0qZLh0raka/E9f0l6SpC2HGmM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:20:6d:4b:23:7a:4f:2c:28:09:e3:89:8c:d1:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: May 13 13:01:00 2026 GMT
Not After : May 14 13:01:00 2026 GMT
Subject: CN=50e9224423a8f8993e62248b53b35763a2e8570c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b6:0c:28:c2:d1:99:ac:a8:81:7a:7b:98:a8:
b7:ca:0e:f9:9b:0e:07:da:8e:71:8c:a0:c8:a8:53:
66:c8:73:99:4f:65:a6:0d:e5:bd:26:0f:1f:90:7b:
83:f2:3a:06:cb:57:be:ea:c0:0e:fa:06:ba:33:1b:
b1:03:e8:6a:f8:e6:05:98:a0:3f:25:4a:ed:3e:6f:
46:fb:7b:89:5c:4c:68:c6:f6:13:da:de:55:a7:7a:
d9:fe:2f:46:1f:aa:dc:b9:4a:ac:a9:81:98:79:d4:
c9:8b:c2:ba:04:bf:b4:51:66:5f:3a:68:e6:cc:b3:
25:cd:65:40:df:7e:df:91:a3:78:5a:64:70:ab:8f:
e2:09:b2:e5:cd:4c:51:a3:be:eb:8a:f2:51:9f:d3:
79:cb:fb:8d:99:4f:2c:b8:20:5a:6f:06:87:9e:4c:
62:c0:f8:03:5e:3a:e2:81:92:dc:ca:23:18:a8:02:
f6:34:76:6a:17:6f:05:b9:8f:c9:4d:a9:9e:59:84:
7a:90:34:83:a0:e2:93:e3:01:bb:b7:8d:cc:ba:d2:
ad:f0:69:eb:3a:27:06:b5:75:6e:a6:16:76:38:4d:
7d:a9:65:97:44:24:82:51:f1:28:b0:79:1a:73:04:
bd:a5:67:f4:5a:e1:b6:57:0d:12:32:6b:08:bf:bc:
9b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E9:22:44:23:A8:F8:99:3E:62:24:8B:53:B3:57:63:A2:E8:57:0C
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:72:00:e1:3b:f9:99:75:6e:b3:c0:05:f2:b7:30:69:b8:cb:
d8:29:20:15:b6:32:d0:08:b8:ed:ee:33:08:2b:cf:46:2a:c7:
8c:5c:14:23:d0:89:f6:c7:ce:79:18:c8:7e:3c:ea:4f:c0:27:
6f:f1:71:ee:c8:0c:17:8c:d1:59:d1:45:9f:f6:cd:bd:39:08:
80:07:f2:59:f3:f2:67:d8:a1:07:e3:33:30:f3:11:eb:fc:c5:
ff:ff:f6:24:d2:4c:1a:19:06:1c:b6:50:99:24:4a:39:6c:1f:
0b:33:25:76:5a:e0:c1:f2:b1:b0:f4:c9:1d:ad:c3:a0:3f:3d:
e7:93:98:62:ff:96:d3:e5:34:32:30:5a:26:32:17:b1:bf:13:
d0:0e:79:50:67:83:16:a2:24:f9:e1:7c:2e:ac:58:69:8a:54:
db:06:3a:53:52:6b:05:45:c3:8d:9a:0b:85:ba:5f:d3:4f:27:
50:18:31:f3:43:8e:cb:39:a4:8c:5c:d6:4d:a6:d7:8c:26:06:
95:7a:f9:6b:2c:9c:5c:4d:73:ee:41:7c:c6:3a:72:41:ce:34:
04:74:7a:d7:12:68:f6:e8:44:32:e1:a2:c5:45:7d:89:2d:1d:
c4:b9:ab:4b:dc:49:64:aa:be:95:53:ad:fc:a8:85:a9:74:04:
8a:63:eb:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:40:41 2026 by rpki-client