Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
File: duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft (raw, json)
Hash identifier: cswjc37eTR8rnjxRxO0EnzCBtPY0sp+YGgf1FRz0uD0=
Subject key identifier: F6:C9:B9:A5:9B:38:9F:88:97:00:02:68:71:E5:E3:59:2A:9A:89:09
Authority key identifier: 76:E2:AE:4F:E0:C0:D6:CB:07:49:B8:77:AE:15:5A:62:9F:E2:AF:D6
Certificate issuer: /CN=76e2ae4fe0c0d6cb0749b877ae155a629fe2afd6
Certificate serial: 0199FCC69457468D94914C1076F11D7E824B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duKuT-DA1ssHSbh3rhVaYp_ir9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 14:01:36 +0000
Manifest this update: Sun 19 Oct 2025 14:01:36 +0000
Manifest next update: Mon 20 Oct 2025 14:01:36 +0000
Files and hashes: 1: duKuT-DA1ssHSbh3rhVaYp_ir9Y.crl (hash: IxzlteGB8NvbLJg91pgkDCRAyQFR/HQbcdrB8UDeXLo=)
2: x6TyoeiDznZ5SRtqywkNMGfQA5k.roa (hash: 1tj6LlfsRsB/tYIfqw9rOc/KrLH+6NOSUXP1XdEdR5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/duKuT-DA1ssHSbh3rhVaYp_ir9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:94:57:46:8d:94:91:4c:10:76:f1:1d:7e:82:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ae4fe0c0d6cb0749b877ae155a629fe2afd6
Validity
Not Before: Oct 19 14:01:36 2025 GMT
Not After : Oct 20 14:01:36 2025 GMT
Subject: CN=f6c9b9a59b389f889700026871e5e3592a9a8909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c1:5d:db:88:89:59:96:75:2b:1c:4c:db:62:
ca:fe:44:75:e7:34:13:b0:a2:fd:ed:6f:e7:28:55:
b4:c0:f9:d4:85:e2:3b:19:26:6d:8d:3c:a1:75:3f:
10:eb:30:46:06:b4:3b:02:2e:9b:dd:2d:b7:b5:7b:
e1:fd:77:9c:a8:4f:b6:61:cd:1e:42:56:74:59:f9:
c8:65:89:b1:b6:c7:16:c5:91:db:7e:b6:4f:ae:0d:
55:02:0c:47:89:5b:87:17:0b:2f:0e:36:c6:84:13:
bd:b8:89:5a:ee:cc:39:d2:bd:fa:98:1a:57:7c:6a:
0a:49:41:32:88:76:6f:84:4d:64:96:e0:8d:78:42:
9f:d1:65:0e:30:01:1f:db:4b:73:3e:8f:1a:c7:9f:
6d:4f:c2:0b:84:84:c2:28:fd:a7:7b:f4:a0:69:13:
44:86:82:c9:fd:29:3e:f0:1a:55:1f:a9:bc:48:4c:
9b:56:90:88:59:3b:1e:1b:92:e0:a9:4d:15:71:1b:
2c:99:1e:56:86:70:9f:89:49:b7:a5:01:98:23:77:
a5:b8:21:7a:97:d7:3d:00:7c:90:65:29:b5:82:83:
aa:26:0c:43:a3:cb:69:a2:5a:4b:20:2a:b5:37:4b:
dc:17:b1:31:a0:30:ca:ce:f7:c1:be:08:e9:53:3a:
58:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C9:B9:A5:9B:38:9F:88:97:00:02:68:71:E5:E3:59:2A:9A:89:09
X509v3 Authority Key Identifier:
keyid:76:E2:AE:4F:E0:C0:D6:CB:07:49:B8:77:AE:15:5A:62:9F:E2:AF:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duKuT-DA1ssHSbh3rhVaYp_ir9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9a52fd-0364-4150-aaca-41602fdc9fde/1/duKuT-DA1ssHSbh3rhVaYp_ir9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:11:c0:a7:e6:7f:a0:52:94:ca:1c:e8:2e:2d:b6:5b:ed:02:
b4:28:45:6a:61:6c:56:3e:50:bc:41:7b:20:56:4a:ce:65:34:
66:d3:44:9a:f6:1d:fa:d1:d8:67:0f:68:4a:9e:40:69:16:eb:
e3:e4:d0:2e:72:a0:5e:92:1a:25:18:23:16:0b:bf:43:24:9d:
28:7f:c9:5e:5f:d4:05:67:93:0d:e5:c2:e1:4f:5b:98:48:5e:
fd:23:8e:c0:11:0f:f9:32:c0:42:85:10:a3:00:7f:f7:ef:33:
52:b8:59:63:ce:4d:2b:cc:77:3d:00:0f:aa:a2:f4:a7:d9:85:
58:6b:df:ea:ee:b6:ea:16:d6:b5:32:5b:ab:7d:08:23:5f:31:
e5:c4:1d:97:b5:9e:20:15:57:4a:d4:e8:31:78:7d:ff:e6:21:
0f:52:81:fa:7e:21:a7:19:15:8f:6f:c5:1f:f3:d5:e7:aa:18:
1c:14:1d:22:0a:07:29:e4:f8:93:c6:b3:a3:a0:d9:e2:e7:94:
79:ae:d4:76:1d:e8:a2:48:99:18:03:c2:9b:70:7a:a3:4e:cf:
f0:0c:b1:9c:4d:fa:bd:62:b2:a8:5a:70:44:8c:5f:75:5c:34:
0f:b8:f1:31:a9:0d:ad:82:3c:59:50:43:ad:53:ed:4c:86:8b:
a2:3b:9f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:51:18 2025 by rpki-client