Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/48ac2a-0a5e-40c4-b3d4-675dcb39e77a/1/UFzsCb_YXbJ2JpY0XWiHHQnV6L0.mft
File: UFzsCb_YXbJ2JpY0XWiHHQnV6L0.mft (raw, json)
Hash identifier: KKLcJD+ulAvCshOm0sdNV8A/2FbEvnyLRoH1xXKQ+3A=
Subject key identifier: 52:C8:C5:FA:BF:0F:D0:49:04:18:B3:9B:45:30:4E:C4:07:FB:44:C6
Authority key identifier: 50:5C:EC:09:BF:D8:5D:B2:76:26:96:34:5D:68:87:1D:09:D5:E8:BD
Certificate issuer: /CN=505cec09bfd85db2762696345d68871d09d5e8bd
Certificate serial: 019D3A1C46EF381A72B01F676E920F6F4E40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzsCb_YXbJ2JpY0XWiHHQnV6L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/48ac2a-0a5e-40c4-b3d4-675dcb39e77a/1/UFzsCb_YXbJ2JpY0XWiHHQnV6L0.mft
Manifest number: 95
Signing time: Sun 29 Mar 2026 15:00:24 +0000
Manifest this update: Sun 29 Mar 2026 15:00:24 +0000
Manifest next update: Mon 30 Mar 2026 15:00:24 +0000
Files and hashes: 1: Qj_3WxS8O8o7wmIyUx4pXMwVqjE.roa (hash: fvtswZKCFIAyXG2d6n+7ikzOJYZU7ZGDE94APklZjBI=)
2: UFzsCb_YXbJ2JpY0XWiHHQnV6L0.crl (hash: XzlsSD1iz0fTltD/bYEjWrZsN1l7JmVCXfmpKydRXdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/48ac2a-0a5e-40c4-b3d4-675dcb39e77a/1/UFzsCb_YXbJ2JpY0XWiHHQnV6L0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/48ac2a-0a5e-40c4-b3d4-675dcb39e77a/1/UFzsCb_YXbJ2JpY0XWiHHQnV6L0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzsCb_YXbJ2JpY0XWiHHQnV6L0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:46:ef:38:1a:72:b0:1f:67:6e:92:0f:6f:4e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cec09bfd85db2762696345d68871d09d5e8bd
Validity
Not Before: Mar 29 15:00:24 2026 GMT
Not After : Mar 30 15:00:24 2026 GMT
Subject: CN=52c8c5fabf0fd0490418b39b45304ec407fb44c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:79:b7:63:af:f1:56:7e:e6:e3:ad:91:3b:68:
c8:63:0c:bb:ab:44:0b:29:ec:a8:62:05:4f:80:9c:
7c:57:16:ef:62:1d:29:58:f3:55:86:4e:e4:ad:18:
8a:8c:5d:f9:8d:2b:fe:00:5b:d0:35:02:c5:65:f3:
48:29:29:f9:1b:0a:ee:76:3d:33:8a:09:8f:88:1b:
d2:3f:e6:cf:54:9c:43:be:4e:ba:8e:c7:6e:82:4b:
dc:3a:ec:34:6f:5d:9a:be:1c:e3:6b:27:a4:e7:7f:
7c:8e:53:80:65:a4:70:24:bc:d6:35:5a:64:e7:4d:
2a:3a:d3:31:da:4f:bb:74:28:52:42:61:06:be:f4:
ee:f4:45:82:4b:2b:cd:7c:3d:7f:91:6f:45:b5:45:
8d:8c:3f:90:38:16:a9:3b:23:d8:4c:cb:dd:96:cf:
cf:07:33:18:19:df:d1:14:e7:a5:be:67:46:bd:0c:
b7:20:e9:77:bf:15:9d:37:d8:3b:07:b0:d0:7a:73:
09:0c:01:c3:d6:af:2b:09:7c:c1:81:f3:69:72:9b:
1c:a0:ea:72:95:8a:be:da:4d:4e:b4:81:82:a0:cc:
a7:d7:ed:21:b8:18:66:0c:05:5a:68:76:21:76:95:
81:a1:6b:ae:ca:86:de:19:ef:ee:cc:a0:7f:41:53:
c4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C8:C5:FA:BF:0F:D0:49:04:18:B3:9B:45:30:4E:C4:07:FB:44:C6
X509v3 Authority Key Identifier:
keyid:50:5C:EC:09:BF:D8:5D:B2:76:26:96:34:5D:68:87:1D:09:D5:E8:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzsCb_YXbJ2JpY0XWiHHQnV6L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/48ac2a-0a5e-40c4-b3d4-675dcb39e77a/1/UFzsCb_YXbJ2JpY0XWiHHQnV6L0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/48ac2a-0a5e-40c4-b3d4-675dcb39e77a/1/UFzsCb_YXbJ2JpY0XWiHHQnV6L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:6c:b1:b5:69:f2:61:6f:3a:db:5f:c7:b4:39:59:ed:bf:58:
bb:fb:75:13:b6:40:cb:2d:51:5d:88:58:49:b3:7c:35:b9:f5:
51:b8:16:92:99:be:ab:75:1a:51:46:47:9e:a7:9f:c1:8c:91:
08:89:f4:10:3e:d7:c4:cf:7e:8f:1f:11:20:03:7b:ab:e6:98:
0a:a1:8b:20:77:18:97:23:7f:dc:90:fd:ac:96:51:10:45:b9:
f0:da:40:dd:22:5c:1c:68:34:7a:86:05:bd:c5:6c:b9:98:21:
f6:1c:b9:fb:fc:73:b9:6b:d2:5f:d4:f6:e4:d6:b4:ac:c9:3d:
e6:46:84:40:75:5d:33:56:b0:4d:23:9c:5f:3a:23:5d:70:b2:
89:6f:c9:2b:17:ca:f4:dd:d6:bf:82:ae:af:ac:1d:cd:33:39:
2e:7c:3e:8d:c1:db:64:04:7a:35:73:b0:01:cd:1e:bd:20:89:
2b:80:bb:bf:9d:92:61:57:f6:80:2a:a4:c9:df:42:de:f5:4c:
0b:a7:8d:a5:80:aa:5e:a9:52:60:24:3a:13:75:11:0d:c7:2a:
67:e4:93:c1:1a:c1:13:0c:30:d0:43:86:9d:80:3e:08:55:2d:
db:9e:8d:e6:b0:f4:e0:88:e4:a0:21:f9:a8:cf:5a:d1:d7:1c:
39:27:19:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06HEbvOBpysB9nbpIPb05AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNWNlYzA5YmZkODVkYjI3NjI2OTYzNDVkNjg4NzFkMDlk
NWU4YmQwHhcNMjYwMzI5MTUwMDI0WhcNMjYwMzMwMTUwMDI0WjAzMTEwLwYDVQQD
Eyg1MmM4YzVmYWJmMGZkMDQ5MDQxOGIzOWI0NTMwNGVjNDA3ZmI0NGM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXm3Y6/xVn7m462RO2jIYwy7q0QL
KeyoYgVPgJx8VxbvYh0pWPNVhk7krRiKjF35jSv+AFvQNQLFZfNIKSn5Gwrudj0z
igmPiBvSP+bPVJxDvk66jsdugkvcOuw0b12avhzjayek5398jlOAZaRwJLzWNVpk
500qOtMx2k+7dChSQmEGvvTu9EWCSyvNfD1/kW9FtUWNjD+QOBapOyPYTMvdls/P
BzMYGd/RFOelvmdGvQy3IOl3vxWdN9g7B7DQenMJDAHD1q8rCXzBgfNpcpscoOpy
lYq+2k1OtIGCoMyn1+0huBhmDAVaaHYhdpWBoWuuyobeGe/uzKB/QVPEgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFLIxfq/D9BJBBizm0UwTsQH+0TGMB8GA1UdIwQY
MBaAFFBc7Am/2F2ydiaWNF1ohx0J1ei9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZ6c0NiX1lYYkoySnBZMFhXaUhIUW5WNkwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy80OGFjMmEtMGE1ZS00MGM0LWIzZDQt
Njc1ZGNiMzllNzdhLzEvVUZ6c0NiX1lYYkoySnBZMFhXaUhIUW5WNkwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy80OGFjMmEtMGE1ZS00MGM0LWIzZDQtNjc1ZGNiMzllNzdh
LzEvVUZ6c0NiX1lYYkoySnBZMFhXaUhIUW5WNkwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATGyxtWny
YW8621/HtDlZ7b9Yu/t1E7ZAyy1RXYhYSbN8Nbn1UbgWkpm+q3UaUUZHnqefwYyR
CIn0ED7XxM9+jx8RIAN7q+aYCqGLIHcYlyN/3JD9rJZREEW58NpA3SJcHGg0eoYF
vcVsuZgh9hy5+/xzuWvSX9T25Na0rMk95kaEQHVdM1awTSOcXzojXXCyiW/JKxfK
9N3Wv4Kur6wdzTM5Lnw+jcHbZAR6NXOwAc0evSCJK4C7v52SYVf2gCqkyd9C3vVM
C6eNpYCqXqlSYCQ6E3URDccqZ+STwRrBEwww0EOGnYA+CFUt256N5rD04IjkoCH5
qM9a0dccOScZQA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 18:35:38 2026 by rpki-client