Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json)
Hash identifier: izEq+hbntnGxHqEZ8KG+EBNu90yAAd28jt1acNGtgHg=
Subject key identifier: AD:1E:EA:A0:84:31:DF:A6:28:4E:2F:43:20:2F:83:F5:D4:8B:F5:73
Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310
Certificate serial: 0199FDA1BCBAE47CD665F5D46F532723048E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
Manifest number: 102A
Signing time: Sun 19 Oct 2025 18:00:59 +0000
Manifest this update: Sun 19 Oct 2025 18:00:59 +0000
Manifest next update: Mon 20 Oct 2025 18:00:59 +0000
Files and hashes: 1: 5yn4zHauZM75VAijpeMoQrgxCO4.roa (hash: XNQWDr0wgLOmyX40wHgFFl4XUTUYTIzKWa/lVOSFR8o=)
2: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: cqUiczxFzDcXuH+U4PUZksgfy9vhrCQcYoNOIVgnrIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:a1:bc:ba:e4:7c:d6:65:f5:d4:6f:53:27:23:04:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310
Validity
Not Before: Oct 19 18:00:59 2025 GMT
Not After : Oct 20 18:00:59 2025 GMT
Subject: CN=ad1eeaa08431dfa6284e2f43202f83f5d48bf573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c9:b0:5a:41:3f:b7:94:a1:54:fe:dd:33:43:
27:20:9c:25:b3:39:f1:51:de:98:76:dd:6c:d3:ba:
29:4d:8c:e8:cd:96:5f:29:27:2a:b8:0d:24:ce:88:
59:2b:2a:ad:54:c5:7c:eb:94:37:be:12:ac:a3:76:
66:b3:84:33:48:84:96:1b:95:d2:0d:8d:8f:69:4c:
16:bc:2d:d3:d7:cb:27:a6:e8:4b:21:a0:a7:86:46:
dd:49:4d:66:92:76:22:f4:44:f8:03:13:99:94:32:
01:c4:fd:52:1f:67:3c:01:64:57:80:63:57:0d:4b:
71:7f:3f:5d:d9:df:e8:a4:58:fa:e9:ab:2e:18:2f:
b0:9f:cb:4d:07:5f:68:77:f6:ae:ea:31:06:73:16:
fb:b5:ad:8f:df:a7:38:61:fe:e1:9c:a2:d6:fc:1b:
24:2b:40:51:71:6b:bf:ee:b7:b0:3f:f2:d7:a2:39:
26:4c:c5:a3:d5:09:35:f5:72:34:8a:c0:5c:be:6c:
c0:91:fb:6a:9e:5b:93:1a:e7:b2:7f:44:24:31:3c:
d2:71:c2:c7:94:98:89:cc:8e:f7:51:ae:79:cf:c8:
bd:d4:d5:fc:86:e7:40:48:49:36:30:de:1e:4f:e7:
4f:0f:a0:2c:6b:cc:a4:a2:4a:7e:25:2b:5f:ee:2d:
8a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1E:EA:A0:84:31:DF:A6:28:4E:2F:43:20:2F:83:F5:D4:8B:F5:73
X509v3 Authority Key Identifier:
keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:64:65:da:42:07:97:8f:6d:62:2b:ff:07:46:d1:51:81:f0:
81:79:71:65:aa:76:6a:88:e6:49:3e:8d:99:dc:d9:60:18:ba:
a3:9f:0d:ab:4a:1a:32:86:ef:28:a3:a2:7e:a7:65:3a:4d:05:
f2:f7:85:29:0d:9d:17:9c:90:43:c1:ce:56:f0:90:2c:ba:86:
d9:9c:4c:56:1e:e8:47:f3:ff:76:ca:e0:66:6e:c2:3f:14:ed:
36:71:44:10:42:92:b9:e1:7d:3e:fb:da:84:dc:5a:9c:9c:c7:
37:5e:a8:c1:37:0e:de:f0:26:37:c5:49:76:ba:1a:dd:df:e0:
5f:22:69:6c:f7:ce:f3:ff:01:c8:36:60:aa:cf:fb:78:ee:cd:
51:b0:d1:9c:7e:c7:03:b6:8f:f4:fe:5e:ee:f3:e2:c8:16:97:
cb:0c:d4:15:f5:c5:02:99:e1:50:4a:e3:4e:c5:08:2a:c4:3d:
58:10:34:b0:79:1c:e5:02:ff:06:b1:3f:fc:02:f0:c0:5a:8a:
04:0d:a5:99:88:e9:a4:03:9a:a5:fb:dc:82:97:8a:40:d1:71:
62:8e:63:7e:b5:9d:3c:27:5a:6f:78:c9:76:f1:b3:73:a7:15:
f9:c4:37:81:2b:d6:52:bd:af:1f:26:c3:da:86:cb:0d:32:0b:
d7:24:04:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9oby65HzWZfXUb1MnIwSOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNDFkMGE2ZTZkZjJlMThjMjU2NzMyMzY4ZDZlNzY4Mjg5
MzEzMTAwHhcNMjUxMDE5MTgwMDU5WhcNMjUxMDIwMTgwMDU5WjAzMTEwLwYDVQQD
EyhhZDFlZWFhMDg0MzFkZmE2Mjg0ZTJmNDMyMDJmODNmNWQ0OGJmNTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwcmwWkE/t5ShVP7dM0MnIJwlsznx
Ud6Ydt1s07opTYzozZZfKScquA0kzohZKyqtVMV865Q3vhKso3Zms4QzSISWG5XS
DY2PaUwWvC3T18snpuhLIaCnhkbdSU1mknYi9ET4AxOZlDIBxP1SH2c8AWRXgGNX
DUtxfz9d2d/opFj66asuGC+wn8tNB19od/au6jEGcxb7ta2P36c4Yf7hnKLW/Bsk
K0BRcWu/7rewP/LXojkmTMWj1Qk19XI0isBcvmzAkftqnluTGueyf0QkMTzSccLH
lJiJzI73Ua55z8i91NX8hudASEk2MN4eT+dPD6Asa8ykokp+JStf7i2KKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK0e6qCEMd+mKE4vQyAvg/XUi/VzMB8GA1UdIwQY
MBaAFA1B0Kbm3y4YwlZzI2jW52gokxMQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ODM3YjItMGRmMC00ZjVhLTgwZGIt
NjJiNjQwYjAyZTJiLzEvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC85ODM3YjItMGRmMC00ZjVhLTgwZGItNjJiNjQwYjAyZTJi
LzEvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL2Rl2kIH
l49tYiv/B0bRUYHwgXlxZap2aojmST6NmdzZYBi6o58Nq0oaMobvKKOifqdlOk0F
8veFKQ2dF5yQQ8HOVvCQLLqG2ZxMVh7oR/P/dsrgZm7CPxTtNnFEEEKSueF9Pvva
hNxanJzHN16owTcO3vAmN8VJdroa3d/gXyJpbPfO8/8ByDZgqs/7eO7NUbDRnH7H
A7aP9P5e7vPiyBaXywzUFfXFApnhUErjTsUIKsQ9WBA0sHkc5QL/BrE//ALwwFqK
BA2lmYjppAOapfvcgpeKQNFxYo5jfrWdPCdab3jJdvGzc6cV+cQ3gSvWUr2vHybD
2obLDTIL1yQE9Q==
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:10:17 2025 by rpki-client