Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
File: uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft (raw, json)
Hash identifier: jbUZzJSal1hruAk9Yq71Lysn/jDBGTCxUWkhnUyN6R0=
Subject key identifier: 44:A0:74:87:96:3F:46:BC:F8:1B:AA:86:4F:8B:AF:12:26:A9:5D:70
Authority key identifier: B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
Certificate issuer: /CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Certificate serial: 019E491FD1F5897CF65C2EA9F60AD858AB00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
Manifest number: 11D8
Signing time: Thu 21 May 2026 06:01:22 +0000
Manifest this update: Thu 21 May 2026 06:01:22 +0000
Manifest next update: Fri 22 May 2026 06:01:22 +0000
Files and hashes: 1: 5pmE9mYBjRhZe38QmWwWm942O9U.roa (hash: I/XtJQhuUGNWJY5SlUg6TDyMur1mKeDTnd/4LdzUf1c=)
2: uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl (hash: 58zZ1h+8KwJoJ1548bT6R+0f2DEYLRzzZbInrGdRV6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 May 2026 06:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:49:1f:d1:f5:89:7c:f6:5c:2e:a9:f6:0a:d8:58:ab:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Validity
Not Before: May 21 06:01:22 2026 GMT
Not After : May 22 06:01:22 2026 GMT
Subject: CN=44a07487963f46bcf81baa864f8baf1226a95d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:39:b7:92:7c:16:0d:c9:74:2a:2b:be:04:aa:
75:b5:02:8e:b4:9c:3d:de:99:42:5e:55:eb:2b:8e:
2c:b9:71:f8:59:a6:58:cc:c9:5f:cd:23:5b:fb:df:
bd:2a:32:37:67:62:24:50:66:42:5e:81:06:2a:d9:
1c:69:bc:91:ab:d1:44:aa:63:86:bf:ad:5e:30:26:
1c:7e:72:24:cf:3b:2b:21:fa:10:54:29:a6:01:df:
b0:28:e0:97:3a:c2:d8:33:9b:5a:32:e2:b6:f7:34:
ff:e9:cc:11:d1:0b:71:4b:ea:58:c1:60:6d:04:81:
11:15:68:5d:ec:57:67:a2:37:46:ae:f8:bc:e7:bd:
32:c4:37:f5:ea:17:2d:3c:51:22:a5:30:bd:33:b9:
e7:58:da:c4:32:76:7d:c7:0f:79:db:84:9e:75:41:
c0:5a:fc:3e:6d:ff:12:c1:08:12:44:9a:a9:b0:42:
d9:35:5c:f6:4a:0a:e6:6c:8b:f6:1c:81:3b:fc:f0:
2a:9d:f7:c5:28:a1:b0:d1:ef:d4:b7:48:82:6b:76:
5e:c6:f7:3f:9c:5e:7a:ac:77:97:9f:41:c0:ae:19:
06:fd:ab:22:ad:69:e9:e2:0a:5c:9f:2f:c2:45:85:
63:a8:6e:83:d6:00:55:2a:d1:a1:36:3c:5b:69:e7:
83:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A0:74:87:96:3F:46:BC:F8:1B:AA:86:4F:8B:AF:12:26:A9:5D:70
X509v3 Authority Key Identifier:
keyid:B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:a9:ec:8a:d6:70:8b:2c:67:68:c0:b7:4b:b3:8c:61:3a:94:
72:54:e0:e7:a6:cc:b5:c3:6b:17:ce:c0:aa:eb:86:0f:3a:92:
cc:99:4e:71:2e:6f:6e:7a:4c:5a:c6:13:c7:c3:bb:cb:11:65:
c7:f5:a4:4b:63:f8:5f:09:26:4c:f9:6a:44:65:1c:ae:10:fc:
a8:c7:e7:a3:00:7a:28:cb:5a:f8:af:6d:e1:c7:48:de:4b:c3:
65:0d:23:68:b6:a6:75:e9:d1:ca:dc:46:57:10:54:2b:13:dd:
dc:ec:a1:bb:f1:6e:ef:ff:ed:76:b6:4d:30:d4:ed:f9:13:35:
fa:d0:6a:a0:99:92:42:d0:08:0e:9a:d3:88:e6:8a:de:ff:7c:
cf:b0:d7:4b:d4:8b:ee:77:7a:a4:9a:36:21:76:ce:78:95:5e:
cf:44:ac:5e:7b:64:1e:db:61:46:7a:9e:71:c1:70:50:2f:04:
01:54:6d:bd:d6:52:24:fe:3d:c3:fd:1e:76:df:ed:f7:f6:64:
b4:0b:46:fb:1e:10:06:0e:35:cb:0a:07:33:dd:dd:3c:64:fa:
63:96:46:e3:3d:ee:c2:22:9f:cd:bb:b0:35:4e:2d:36:6f:89:
fb:b6:79:e0:cd:e6:27:a6:3a:2d:7c:65:1b:0d:e8:17:f7:f6:
f9:26:31:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 14:13:41 2026 by rpki-client