Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/4512a0-73fa-4426-b5e9-74b778c0b546/1/upsYDHz0DC3X-keDflGa37wisD0.mft
File: upsYDHz0DC3X-keDflGa37wisD0.mft (raw, json)
Hash identifier: r6kvwvI3nRnd9WabLuLHQlNElGNL5O8dLJKMGaJy09c=
Subject key identifier: 1B:24:1A:D3:B4:67:59:93:27:47:EF:54:02:8B:C6:5E:75:69:04:C7
Authority key identifier: BA:9B:18:0C:7C:F4:0C:2D:D7:FA:47:83:7E:51:9A:DF:BC:22:B0:3D
Certificate issuer: /CN=ba9b180c7cf40c2dd7fa47837e519adfbc22b03d
Certificate serial: 019D390A31A328CFEA714A6BC3B7EB473DD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upsYDHz0DC3X-keDflGa37wisD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/4512a0-73fa-4426-b5e9-74b778c0b546/1/upsYDHz0DC3X-keDflGa37wisD0.mft
Manifest number: 01FB
Signing time: Sun 29 Mar 2026 10:01:02 +0000
Manifest this update: Sun 29 Mar 2026 10:01:02 +0000
Manifest next update: Mon 30 Mar 2026 10:01:02 +0000
Files and hashes: 1: upsYDHz0DC3X-keDflGa37wisD0.crl (hash: tmZH58X+Rkzx/DRpjjodQcCiZUtLi0pX0nAHFErUzKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/4512a0-73fa-4426-b5e9-74b778c0b546/1/upsYDHz0DC3X-keDflGa37wisD0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/4512a0-73fa-4426-b5e9-74b778c0b546/1/upsYDHz0DC3X-keDflGa37wisD0.mft
rsync://rpki.ripe.net/repository/DEFAULT/upsYDHz0DC3X-keDflGa37wisD0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:31:a3:28:cf:ea:71:4a:6b:c3:b7:eb:47:3d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9b180c7cf40c2dd7fa47837e519adfbc22b03d
Validity
Not Before: Mar 29 10:01:02 2026 GMT
Not After : Mar 30 10:01:02 2026 GMT
Subject: CN=1b241ad3b46759932747ef54028bc65e756904c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6e:26:e2:a8:f5:19:af:05:7d:7b:41:a8:e9:
fd:10:b0:53:97:48:54:1d:e6:cb:b7:84:4c:42:7f:
24:43:f0:bc:c7:13:ea:a0:25:55:a7:00:aa:14:a4:
5e:2e:99:f7:fa:dd:1a:ac:41:d9:e7:f7:63:01:f0:
b2:18:4e:5e:e4:e9:ba:90:4c:f0:59:59:5a:6d:f2:
f5:27:50:1a:64:e9:ff:ea:52:00:55:a7:3e:f7:7a:
8f:26:70:5d:5e:e8:cb:a4:08:73:7a:5d:cc:97:2e:
15:3d:1e:17:c7:50:11:5d:e8:79:ba:e8:47:ca:c5:
b2:a8:dc:6f:b1:88:51:4e:55:30:d7:58:73:23:c0:
35:63:c0:bb:95:74:a1:26:19:07:1b:8d:81:f7:d5:
31:28:d9:c9:08:79:de:f4:d6:e4:bb:e0:78:53:e7:
10:2f:75:81:cf:96:1f:ec:30:af:5b:68:50:07:7f:
72:0d:cd:f7:1b:95:b2:ad:2e:00:5c:87:cd:ad:4c:
9e:06:5b:b9:fd:79:cd:2a:09:9f:f9:e9:48:b8:c8:
08:11:14:8c:ae:29:b1:23:c5:11:b9:27:0f:42:4c:
9d:42:85:8b:30:de:e2:c8:bb:22:17:00:ac:c3:a3:
33:d4:5b:7c:94:9b:9e:5b:fb:66:c9:ba:58:15:36:
82:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:24:1A:D3:B4:67:59:93:27:47:EF:54:02:8B:C6:5E:75:69:04:C7
X509v3 Authority Key Identifier:
keyid:BA:9B:18:0C:7C:F4:0C:2D:D7:FA:47:83:7E:51:9A:DF:BC:22:B0:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upsYDHz0DC3X-keDflGa37wisD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/4512a0-73fa-4426-b5e9-74b778c0b546/1/upsYDHz0DC3X-keDflGa37wisD0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/4512a0-73fa-4426-b5e9-74b778c0b546/1/upsYDHz0DC3X-keDflGa37wisD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:28:a3:de:10:df:67:70:36:d7:e9:88:2f:af:5a:3b:bb:0c:
00:90:5a:bc:31:e3:74:ed:07:47:8a:8d:78:bd:54:ce:c4:eb:
11:e4:31:32:53:e9:4f:e6:0e:17:34:d8:24:d3:c4:11:61:7b:
5c:7c:99:4f:95:93:b3:a9:b1:a6:cd:cc:bd:db:85:c6:fe:6d:
a4:d1:7c:28:f0:13:96:a3:54:18:28:35:86:82:16:bf:2b:6d:
cc:2c:08:55:9a:1b:22:67:26:bb:00:82:55:bc:be:fa:37:83:
37:b5:9c:55:ba:e1:a5:0b:8c:8d:99:c1:c1:58:bb:ef:a9:71:
10:65:64:10:47:ca:91:5e:24:39:ea:36:ef:75:5c:b5:13:80:
15:b9:7c:da:29:32:6c:6b:45:2b:bb:d7:3a:5a:0f:d0:05:b4:
96:ff:fa:58:1a:e3:dd:0c:aa:63:c6:98:bc:8b:da:6d:f1:f6:
8d:ee:bf:72:37:5f:5c:6c:b7:4f:a6:a3:9e:15:b0:48:5f:dd:
74:12:31:59:18:86:8f:b9:f9:15:d8:de:63:6a:0d:36:0b:6f:
54:b3:d8:93:94:7c:5e:a7:44:6c:25:d9:50:0d:52:e1:9f:9f:
68:34:a7:9d:67:c4:cf:33:00:bd:38:39:ad:b7:02:32:3f:4f:
c3:fb:a2:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:46:33 2026 by rpki-client