Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json)
Hash identifier: pTKjHLgRPvUGuFVwYyQNk0cGqH0TlmtB8okCxHIh94A=
Subject key identifier: 65:E3:F1:9D:E9:0A:B0:F0:15:36:D1:5B:E7:C6:BC:18:7E:8B:4F:AA
Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310
Certificate serial: 019E1CB55609E6B86E7FE615D0A342B44A71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
Manifest number: 124D
Signing time: Tue 12 May 2026 15:01:46 +0000
Manifest this update: Tue 12 May 2026 15:01:46 +0000
Manifest next update: Wed 13 May 2026 15:01:46 +0000
Files and hashes: 1: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: uDLCGbPOomLhrRlssGIp3yITQCdw75dFZERDiXSOwmw=)
2: gQCK6BeO-j5lVpUt90LH641D-Do.roa (hash: IdvQ6sUh6mIJW4ddDEmtmONm3UtG6O5w53GtVLTmX/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b5:56:09:e6:b8:6e:7f:e6:15:d0:a3:42:b4:4a:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310
Validity
Not Before: May 12 15:01:46 2026 GMT
Not After : May 13 15:01:46 2026 GMT
Subject: CN=65e3f19de90ab0f01536d15be7c6bc187e8b4faa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d1:e0:0c:8c:1d:8f:af:3d:06:cb:8e:02:07:
30:ba:6e:23:00:3b:f3:01:7f:e6:9f:46:f6:43:21:
b1:9a:3c:29:69:06:29:79:e2:78:ec:c8:4b:7a:c0:
6b:c9:64:f1:51:33:3c:af:e3:b3:7e:ed:87:01:79:
f5:46:32:8f:de:8e:c4:00:1c:be:69:4b:bb:70:6b:
06:4f:55:dd:82:07:d8:53:d1:f2:2a:48:9e:55:8a:
dc:21:5d:25:1e:b3:69:b6:b3:c0:e4:0b:78:e6:e6:
a4:f3:0d:f2:2d:55:5a:2e:49:1e:4f:8f:a8:cf:28:
f1:51:02:a0:5f:03:d1:00:d1:da:11:05:4d:2b:5e:
e8:5d:b7:3b:6a:b4:f8:7c:86:c2:be:9e:ba:95:cf:
45:39:03:25:54:4f:0c:4f:78:f2:89:33:a3:b9:01:
78:91:4e:e2:e2:4b:6d:df:33:8a:9f:2b:22:23:b8:
f7:72:ff:be:fd:73:50:e6:fa:2d:96:13:26:22:73:
dd:32:39:76:9f:e1:ed:ff:af:59:95:34:5d:b5:99:
98:f2:13:e9:1b:1b:b2:5e:ca:b6:fa:71:ce:c5:66:
ac:31:49:03:78:de:2c:0e:a7:d9:98:0d:32:f5:34:
55:79:90:ad:7e:bc:b0:c2:82:9c:3b:d1:8e:95:53:
8c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E3:F1:9D:E9:0A:B0:F0:15:36:D1:5B:E7:C6:BC:18:7E:8B:4F:AA
X509v3 Authority Key Identifier:
keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:93:56:46:66:13:76:58:68:85:cb:a1:88:13:bd:7a:47:6c:
e0:f4:73:b7:3f:42:32:3d:98:90:ac:84:8b:04:a7:35:6e:7a:
0b:6b:ba:19:3c:8c:b7:39:d3:63:52:ee:5c:f4:10:70:87:4b:
2c:cc:f7:6c:5f:87:57:05:74:c2:ce:1e:68:81:fd:54:84:e9:
f1:05:b5:d8:fc:db:93:59:02:55:6d:67:de:78:f0:43:f7:4b:
61:1f:87:9e:a0:1c:7e:6f:95:04:c2:d1:40:77:ca:b4:90:d5:
8a:30:70:ac:6a:6b:aa:ea:20:a4:ff:63:ef:db:2f:1c:ba:25:
a8:2c:cf:29:51:d0:06:fa:9b:e9:70:34:b1:b7:70:35:5a:20:
7b:13:a4:8a:87:9e:03:3a:36:54:be:77:a0:b3:db:de:8d:c8:
ee:5e:dd:19:29:bd:b2:44:ad:e0:cd:aa:72:d1:7f:64:25:78:
3d:71:05:f1:da:58:a3:9f:e9:6a:46:44:91:26:c7:6e:a2:de:
36:e5:df:19:31:2d:99:17:0d:4f:70:cb:7a:ff:6c:9c:de:39:
02:b6:53:70:30:53:f2:1f:6b:d1:6a:66:49:8a:b5:45:30:3c:
7d:36:d0:0d:29:e6:40:5a:20:db:46:5f:04:92:f0:7c:c4:85:
57:02:5e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:23:11 2026 by rpki-client