Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.mft
File: UfF0UrXxvy_3B27gWf8nXAyxEt4.mft (raw, json)
Hash identifier: wsWFkuoBUg6O0qR+wuQByMV+2IhAn/KKI+nbMszV5Ww=
Subject key identifier: 2D:57:D7:39:C1:AE:38:26:6B:09:49:02:2E:B5:E8:4B:85:D2:F7:63
Authority key identifier: 51:F1:74:52:B5:F1:BF:2F:F7:07:6E:E0:59:FF:27:5C:0C:B1:12:DE
Certificate issuer: /CN=51f17452b5f1bf2ff7076ee059ff275c0cb112de
Certificate serial: 019D3A1C7468AF23169612A6DFADFA0E6B02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UfF0UrXxvy_3B27gWf8nXAyxEt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.mft
Manifest number: 0136
Signing time: Sun 29 Mar 2026 15:00:36 +0000
Manifest this update: Sun 29 Mar 2026 15:00:36 +0000
Manifest next update: Mon 30 Mar 2026 15:00:36 +0000
Files and hashes: 1: UfF0UrXxvy_3B27gWf8nXAyxEt4.crl (hash: DiOAtrnMmzaGZtiUzscp4w6FRBwEG7AjicnRCkR0sts=)
2: xnR36Bx0JpfUS9cQokAQPkGelYc.roa (hash: JFUwAB+A5Z2yKD/NiQL6NZtFTms+2uaDA3yF3P2VOQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UfF0UrXxvy_3B27gWf8nXAyxEt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:74:68:af:23:16:96:12:a6:df:ad:fa:0e:6b:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51f17452b5f1bf2ff7076ee059ff275c0cb112de
Validity
Not Before: Mar 29 15:00:36 2026 GMT
Not After : Mar 30 15:00:36 2026 GMT
Subject: CN=2d57d739c1ae38266b0949022eb5e84b85d2f763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0d:5c:4a:30:5f:37:2c:73:28:a2:12:86:0b:
42:2c:4c:ca:f8:8d:96:f5:84:5b:c7:fd:41:81:af:
f0:fc:3f:ba:8b:6f:f9:29:f0:bf:19:2e:3a:95:09:
14:6f:4e:41:69:1e:f8:41:8e:18:b1:2a:ae:0d:18:
bc:d9:08:30:6e:8d:7f:01:03:86:1d:6c:9d:40:a1:
7a:d7:4b:35:cd:61:28:a5:dd:97:30:e1:2a:12:d4:
f0:f6:ec:02:ce:af:5d:16:e7:0b:f8:13:2d:fc:ed:
1c:da:4e:5b:d1:d8:ae:ee:ee:d9:e4:0b:29:2d:cf:
94:87:e2:8b:1b:9f:40:6d:fd:09:54:d8:e6:d4:9e:
5d:11:4a:08:66:1a:96:bb:92:a8:64:f5:c9:16:cb:
d9:73:98:18:a7:53:ec:96:df:6d:a7:a1:72:64:b5:
39:71:4f:18:35:cf:f2:64:1e:a8:b5:5b:7a:dd:0d:
ea:9e:c3:e6:82:95:9e:93:c6:ca:d3:7d:5a:5f:d2:
3d:d5:d0:18:68:9d:5d:d7:76:5e:a5:bd:44:5a:98:
c2:eb:ab:bb:01:84:09:36:12:40:78:c7:96:a9:c9:
b5:2e:0b:07:2a:0e:d7:db:93:b3:0d:21:5b:53:89:
34:23:db:1d:d1:c9:3c:77:c4:bf:4b:5c:82:11:ec:
5a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:57:D7:39:C1:AE:38:26:6B:09:49:02:2E:B5:E8:4B:85:D2:F7:63
X509v3 Authority Key Identifier:
keyid:51:F1:74:52:B5:F1:BF:2F:F7:07:6E:E0:59:FF:27:5C:0C:B1:12:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UfF0UrXxvy_3B27gWf8nXAyxEt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:fe:9e:37:40:05:8f:a6:0c:28:a4:0c:13:d1:dc:5d:1e:c6:
cc:15:06:20:01:a8:d7:b5:bd:fd:54:da:08:3c:e3:10:75:31:
ce:12:f3:34:14:09:25:11:f5:98:c8:f1:8b:c5:1d:5c:11:eb:
e9:6a:56:de:00:f6:c0:43:e5:8c:51:9d:de:a1:6b:90:7b:15:
73:bb:46:3f:f9:00:97:f6:2d:77:8c:3a:58:0f:a0:44:25:84:
9c:7a:ce:d1:0f:ee:9f:95:e6:d2:75:0b:10:a4:29:a6:40:1f:
52:a6:1a:52:6f:ae:29:d4:56:09:ad:b2:97:b0:06:52:ea:50:
b4:b9:e4:47:60:40:b8:28:53:00:2f:5a:0d:f5:d7:7e:73:5a:
d0:44:5f:d5:5b:55:47:84:fa:27:e4:e9:34:43:57:98:ca:c6:
e0:23:f0:24:c2:d0:f2:ab:33:dd:b2:dc:55:40:df:5c:aa:a6:
7a:3f:a0:81:e6:7c:ff:41:65:c8:6f:3d:5b:cf:e0:85:c0:20:
57:aa:ea:7d:b8:27:1b:10:f4:fb:e5:a4:37:b5:f1:6d:21:93:
bd:a9:53:1a:a5:38:08:66:8c:97:50:51:cf:bc:6d:41:bb:d8:
0a:c6:ba:da:a0:eb:0f:4f:77:ea:79:06:2f:91:ed:ea:99:82:
bc:3f:92:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:05:00 2026 by rpki-client