Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
File: duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft (raw, json)
Hash identifier: MHb6z9rH0s1u+xcTpTSKgZtZHXi6XOvI9ZDU+NW/dSE=
Subject key identifier: 82:FF:91:C5:80:9A:58:04:3B:5C:8A:D3:53:8A:97:70:47:02:42:50
Authority key identifier: 76:E2:AE:4F:E0:C0:D6:CB:07:49:B8:77:AE:15:5A:62:9F:E2:AF:D6
Certificate issuer: /CN=76e2ae4fe0c0d6cb0749b877ae155a629fe2afd6
Certificate serial: 019D265EF977180EAC608FC1914F4653409C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duKuT-DA1ssHSbh3rhVaYp_ir9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
Manifest number: 1884
Signing time: Wed 25 Mar 2026 19:00:51 +0000
Manifest this update: Wed 25 Mar 2026 19:00:51 +0000
Manifest next update: Thu 26 Mar 2026 19:00:51 +0000
Files and hashes: 1: HuM-fqgyJipWVuJxhHWn42tWfGs.roa (hash: U6kHpEw2y7t9pxRNfk/+X/Y6S7JlFdwGGwL7w7s/5Yo=)
2: duKuT-DA1ssHSbh3rhVaYp_ir9Y.crl (hash: XQZt27GrEWDdyCKnpw39+tQsPIikdtq9ztkpInXCLeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/duKuT-DA1ssHSbh3rhVaYp_ir9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5e:f9:77:18:0e:ac:60:8f:c1:91:4f:46:53:40:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ae4fe0c0d6cb0749b877ae155a629fe2afd6
Validity
Not Before: Mar 25 19:00:51 2026 GMT
Not After : Mar 26 19:00:51 2026 GMT
Subject: CN=82ff91c5809a58043b5c8ad3538a977047024250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b8:36:2f:a8:6c:ce:cb:f1:59:90:33:84:d0:
1c:75:d0:9d:74:10:b1:58:6b:54:d1:14:aa:b3:1c:
1a:6a:27:05:7b:7e:b9:16:e0:82:7d:61:bc:e5:d6:
29:4b:be:6c:ba:40:23:c3:09:57:71:db:cc:16:ba:
38:9b:2c:1d:e6:5b:1d:74:fa:67:09:5d:de:bb:87:
21:60:2b:e4:32:38:08:bb:2c:c6:2d:7b:41:6f:7a:
5a:40:35:ba:f3:f7:b9:5a:35:71:a8:a6:a3:6c:5d:
93:b4:f8:7c:14:e9:35:78:23:86:e9:eb:1f:eb:ac:
81:e2:b0:12:bf:4c:5f:63:c5:60:a7:67:a4:a3:ca:
80:03:ba:a3:1b:cb:a9:b0:5d:69:8e:75:90:e6:d1:
7c:7f:2d:b6:2d:9d:7e:5f:7b:47:9d:97:a6:bb:61:
55:04:77:52:54:a1:e4:a7:c5:cc:eb:e1:8b:b0:29:
b9:c1:a8:78:5c:3d:53:b4:0f:22:c0:eb:88:79:50:
fe:c7:2a:8b:4a:e9:15:dc:53:df:ad:30:ee:f6:48:
9e:85:f4:57:9a:c9:14:b9:6e:e6:fc:36:a9:46:d6:
33:15:0f:e3:a4:da:23:2c:9d:a0:fc:8f:cd:f0:d9:
9b:7a:f2:bc:47:c7:86:25:3f:c1:a2:6c:94:07:42:
da:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FF:91:C5:80:9A:58:04:3B:5C:8A:D3:53:8A:97:70:47:02:42:50
X509v3 Authority Key Identifier:
keyid:76:E2:AE:4F:E0:C0:D6:CB:07:49:B8:77:AE:15:5A:62:9F:E2:AF:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duKuT-DA1ssHSbh3rhVaYp_ir9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:da:b8:85:9f:67:bd:7a:e0:df:c2:60:75:6d:86:d9:11:2b:
3c:98:41:1f:1a:35:9e:70:e0:d1:86:b9:a1:01:f1:20:23:87:
0d:86:65:3f:f7:76:87:ee:d7:f5:be:47:ab:1f:77:2b:62:e5:
36:bb:f0:e0:f0:5e:b4:62:4c:d1:ff:a9:9c:6f:ec:c1:fb:21:
20:19:18:14:50:c6:0c:8d:20:18:34:7b:c5:c2:40:0d:11:1e:
9d:6d:c7:6e:4b:03:62:0c:bb:6a:2d:0a:60:fd:ba:72:5d:41:
1d:5d:1d:07:66:38:fc:47:41:e8:e8:3a:ff:ab:5d:0b:cd:b4:
13:0f:f9:ab:bf:33:93:1e:2c:94:57:71:e0:32:3c:e5:c2:97:
3b:4e:c2:fe:1e:44:19:61:b9:c0:f2:91:54:5c:dd:e9:1b:2e:
f4:4e:3a:d3:c1:3b:bc:f0:6a:33:93:e6:c2:e8:48:0c:a4:60:
af:75:a4:37:eb:6d:ae:ad:95:01:65:5f:b5:5f:cc:18:19:15:
e1:50:63:58:57:f7:49:3e:8c:32:8a:05:4b:f3:a3:94:62:6b:
6f:1c:a6:85:53:c4:59:92:5c:da:08:b5:65:aa:92:7c:0b:c1:
2d:e7:33:db:ad:62:cd:b7:33:d9:21:23:29:e7:96:3a:0d:01:
26:3a:71:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:07:42 2026 by rpki-client