Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft
File: uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft (raw, json)
Hash identifier: hg2+uZrceEJtZwQLAAMIm/Z/pXjEcXQg3Ek3ci+HlkQ=
Subject key identifier: C9:35:72:9F:E1:1D:84:AF:A6:3B:E5:53:FE:FE:20:65:FC:BB:9A:DC
Authority key identifier: BA:26:7B:8E:21:53:FB:FC:99:03:84:7B:45:02:A2:BE:F4:4B:56:E6
Certificate issuer: /CN=ba267b8e2153fbfc9903847b4502a2bef44b56e6
Certificate serial: 019D37F703F053D1400C017AB1C3D78E9BD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uiZ7jiFT-_yZA4R7RQKivvRLVuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft
Manifest number: 0229
Signing time: Sun 29 Mar 2026 05:00:28 +0000
Manifest this update: Sun 29 Mar 2026 05:00:28 +0000
Manifest next update: Mon 30 Mar 2026 05:00:28 +0000
Files and hashes: 1: U3z2UwwtJfDwPF04tJx4HYAWqfA.roa (hash: HuQjDIAqN0uW/r+0BXG7wnBu0UWfqjaAQNHtUxgCY7s=)
2: uiZ7jiFT-_yZA4R7RQKivvRLVuY.crl (hash: YlxvzvJxBZ+fewBCuAN3HnFiWKh3RljaIiXKfQiKy7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/uiZ7jiFT-_yZA4R7RQKivvRLVuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:03:f0:53:d1:40:0c:01:7a:b1:c3:d7:8e:9b:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba267b8e2153fbfc9903847b4502a2bef44b56e6
Validity
Not Before: Mar 29 05:00:28 2026 GMT
Not After : Mar 30 05:00:28 2026 GMT
Subject: CN=c935729fe11d84afa63be553fefe2065fcbb9adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b8:21:4b:27:54:4d:d7:27:3b:f2:20:cb:75:
65:8a:e4:ee:9a:79:8e:eb:27:1b:33:96:60:79:5c:
b6:0c:62:6a:e8:04:e3:02:bf:b6:4a:9f:df:3c:f9:
18:b1:d9:4c:ed:b7:59:0a:20:b1:e8:3c:18:60:5b:
aa:7e:b0:a8:c7:60:d1:c6:d7:3c:29:37:3e:ba:73:
c7:fe:08:7d:60:e4:fb:31:d6:94:5a:e9:50:63:73:
43:21:ff:b0:39:0a:4e:1e:5b:d0:7c:e7:77:88:06:
10:4f:13:8c:15:4c:85:d9:60:58:8d:19:e2:c6:3d:
77:15:2f:66:ed:5b:e5:a7:db:f3:dc:3b:95:d6:0e:
f5:49:48:44:00:18:20:1b:7a:e6:d8:44:33:46:1c:
b3:c9:4d:4a:ea:fc:3f:0f:35:f0:97:37:df:41:a1:
49:00:db:4c:3a:30:d4:8d:96:63:55:56:09:ac:53:
22:41:9c:10:48:85:e7:36:1a:4d:b9:05:83:05:a0:
23:78:d7:a5:46:f0:bd:c1:f2:31:bd:d6:92:98:ba:
63:0f:23:fa:9c:f7:6c:72:52:7e:d0:9b:7a:f4:3b:
fe:4a:f5:72:7f:47:4e:13:e0:21:ca:68:0f:68:fc:
fb:79:7d:23:e8:d6:8c:25:a3:85:ce:c5:5f:9f:6b:
7c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:35:72:9F:E1:1D:84:AF:A6:3B:E5:53:FE:FE:20:65:FC:BB:9A:DC
X509v3 Authority Key Identifier:
keyid:BA:26:7B:8E:21:53:FB:FC:99:03:84:7B:45:02:A2:BE:F4:4B:56:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uiZ7jiFT-_yZA4R7RQKivvRLVuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:6e:54:ca:a2:bd:96:0c:77:e9:d5:37:92:d5:1e:ea:5d:76:
6c:1e:ce:34:c6:df:ad:18:f6:07:84:a3:30:30:12:f4:91:5f:
d0:9f:9a:b0:94:76:95:c9:1a:70:da:62:4d:93:2f:80:fc:e7:
7c:fb:0a:43:85:d5:ea:7a:eb:2c:54:6c:35:ff:df:23:08:f8:
09:f0:17:6f:e1:07:d0:81:5f:bc:1b:26:2e:25:1d:6d:b0:d7:
99:95:22:3e:72:65:46:0f:06:66:14:dd:01:6e:4c:09:0c:9f:
c1:d4:ce:8c:c3:c9:c3:53:24:c5:7d:ed:76:62:7e:f5:0b:f9:
e3:da:62:d7:c9:1b:fe:8b:1a:60:1b:7a:50:7d:39:1b:55:33:
21:c3:b7:d7:cb:71:a9:53:89:e0:f3:a6:f1:3f:6c:5c:d1:11:
47:c3:ab:09:55:71:ef:69:f1:26:40:09:1d:32:d3:f6:6c:3a:
a0:36:9e:af:1c:c8:dd:c1:30:f5:ff:63:39:e4:f3:03:51:eb:
68:0b:be:f4:bc:b8:64:b3:c1:53:de:75:ab:ff:33:33:54:30:
3e:11:ec:2b:97:3e:98:a5:65:3d:4b:93:e1:77:f4:18:2b:99:
01:58:d2:a5:86:56:e1:3b:45:3d:4e:1e:8f:0b:f1:f4:12:97:
3e:8c:4b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:25 2026 by rpki-client