Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
File: uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft (raw, json)
Hash identifier: 7zAJhFYyY7V6xs/wwlrKLDFQKlbpBMDomWkmirxM9Xg=
Subject key identifier: 74:B8:12:2E:6C:66:AE:2F:47:53:C4:AE:12:A7:36:D0:DA:6C:5F:08
Authority key identifier: B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
Certificate issuer: /CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Certificate serial: 019D38D34D8D4B3FDA32DE168B93B952D3BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
Manifest number: 114B
Signing time: Sun 29 Mar 2026 09:01:05 +0000
Manifest this update: Sun 29 Mar 2026 09:01:05 +0000
Manifest next update: Mon 30 Mar 2026 09:01:05 +0000
Files and hashes: 1: 5pmE9mYBjRhZe38QmWwWm942O9U.roa (hash: I/XtJQhuUGNWJY5SlUg6TDyMur1mKeDTnd/4LdzUf1c=)
2: uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl (hash: WAcoOeYE7C5aj17bvH1Ti+jeanKQ7OtzPmZoj5IHNsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:4d:8d:4b:3f:da:32:de:16:8b:93:b9:52:d3:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Validity
Not Before: Mar 29 09:01:05 2026 GMT
Not After : Mar 30 09:01:05 2026 GMT
Subject: CN=74b8122e6c66ae2f4753c4ae12a736d0da6c5f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8d:52:2e:3f:00:d0:17:aa:b2:28:89:4c:33:
59:ae:a8:0b:f1:ee:50:78:63:d9:6d:b3:37:9c:43:
e4:54:69:31:1d:ff:0f:ac:86:d6:69:75:ad:42:a6:
d3:50:51:15:bd:55:c0:b3:9b:95:63:e8:22:ae:b5:
3a:f9:2a:91:40:0c:fc:64:ea:da:31:c4:53:4b:43:
f8:e9:76:a3:f5:61:4c:97:fb:eb:8c:33:43:61:db:
d9:a0:b5:4d:a1:d7:4b:4c:6f:53:e8:46:04:78:cc:
89:7c:a2:28:ab:19:1d:90:f8:50:10:03:3d:88:50:
ab:0f:c1:7b:fc:92:9e:65:70:1c:58:95:43:45:7b:
34:a8:bf:0e:e7:a4:1d:f5:09:1a:43:22:74:c6:f8:
c4:01:29:79:2f:4b:10:ca:4b:12:86:8d:bf:b2:f5:
38:25:89:d3:49:fe:03:aa:42:a8:0a:db:3f:0d:b1:
7a:62:20:8a:c3:68:64:32:30:f8:86:e6:70:c4:41:
d3:74:86:10:fb:f3:b8:37:21:a8:21:31:04:83:68:
72:95:b9:21:a3:bc:e3:a9:54:1a:f8:7d:40:d6:48:
54:99:b9:a9:14:71:bd:91:44:04:4f:0e:44:7f:7a:
19:8f:7f:0a:96:0f:d3:b7:1a:e0:21:c7:fa:77:d2:
ad:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B8:12:2E:6C:66:AE:2F:47:53:C4:AE:12:A7:36:D0:DA:6C:5F:08
X509v3 Authority Key Identifier:
keyid:B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:6b:ef:35:dd:c4:99:09:84:7d:7e:f9:f0:34:73:6a:f9:06:
68:6b:1f:04:b3:45:04:c7:2b:fb:19:42:b1:a7:3f:a4:31:11:
b2:37:b9:54:e7:fe:16:0b:19:01:e4:64:68:63:82:99:a2:a7:
f3:cf:d2:a7:62:fa:6f:db:37:f8:47:ae:1d:b0:5a:87:6a:f7:
f7:cc:1e:64:53:bf:1b:d1:88:14:b6:1e:42:d4:99:c7:09:46:
ff:76:e6:95:b2:9d:e8:ad:d0:ca:15:86:f2:23:03:ef:02:aa:
e6:dd:81:0c:91:10:3e:1b:f7:de:df:dd:d4:7c:24:62:ac:9b:
51:53:96:0b:e0:0b:54:c4:39:4f:fd:27:af:a3:ed:7c:de:e3:
b4:32:7e:e9:16:87:00:9e:4d:67:ca:38:89:78:52:ab:e8:37:
36:bd:51:4c:7e:22:57:87:77:04:62:8f:a1:cb:b3:ce:6f:97:
15:84:1d:e9:6d:02:8a:ec:39:61:b4:73:eb:1e:9d:89:d1:52:
c5:00:6a:45:21:09:18:d3:67:36:d9:52:8a:84:40:79:29:17:
71:bb:bd:3c:fe:63:98:28:80:1e:89:16:65:16:21:a4:a9:f5:
0a:d3:c0:57:4b:89:bd:7f:ff:89:a2:27:17:b8:8c:61:73:25:
2e:27:e1:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:45:38 2026 by rpki-client