Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json)
Hash identifier: bH1i74yGG199P8shbokonyPu8LQVWXlwPh6HNSRe+Xc=
Subject key identifier: 8A:DF:9E:83:84:D9:4D:DB:8C:7A:67:DF:13:E5:F2:28:62:2E:EC:30
Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Certificate serial: 019D38668107FFF3E28C79AEC9ECB5DA2EC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
Manifest number: 0C32
Signing time: Sun 29 Mar 2026 07:02:14 +0000
Manifest this update: Sun 29 Mar 2026 07:02:14 +0000
Manifest next update: Mon 30 Mar 2026 07:02:14 +0000
Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: WrXvfs/JOeKQX3f/oRMyEdGw2RfiOcpWmmHxK8YRX9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:81:07:ff:f3:e2:8c:79:ae:c9:ec:b5:da:2e:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Validity
Not Before: Mar 29 07:02:14 2026 GMT
Not After : Mar 30 07:02:14 2026 GMT
Subject: CN=8adf9e8384d94ddb8c7a67df13e5f228622eec30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0e:6c:b7:04:78:fd:81:87:17:52:c1:78:7e:
39:4d:70:fc:34:85:c1:c0:42:71:dd:d3:e0:7b:26:
c9:9d:91:49:2c:d9:57:91:16:be:4b:b3:b4:dd:ac:
74:ae:8c:a4:46:2e:af:eb:7c:88:d1:80:a5:9f:61:
2d:65:8c:08:e1:6a:03:d1:ce:c6:ab:15:26:7f:dc:
d6:12:1c:a7:fc:68:b0:bd:e8:95:59:6b:72:be:02:
a8:1c:f8:7b:1c:d2:32:4d:45:fe:6c:81:84:42:d1:
38:48:d6:4c:41:13:6a:89:ed:58:06:4b:42:93:b1:
9f:21:08:44:9e:85:4e:93:c0:52:dd:5c:5f:52:a6:
58:29:03:0e:e3:37:43:51:0b:aa:fd:62:54:27:bb:
ed:04:6c:40:0a:0b:90:f9:19:af:28:7a:0b:f5:57:
48:74:2d:ff:6d:63:97:28:88:60:6b:ea:78:8c:21:
df:83:0f:15:f5:60:dd:2a:7b:ba:11:3f:0c:83:f4:
6f:4e:49:d8:f4:b9:fe:ca:b5:59:ac:70:f9:57:78:
c7:c6:a3:bb:a1:46:81:cc:8d:7a:02:61:20:7d:5a:
c8:10:fe:7b:54:54:20:14:fb:8a:19:49:62:c3:11:
64:fe:76:a9:03:6b:78:34:95:61:d9:1e:66:07:a9:
49:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:DF:9E:83:84:D9:4D:DB:8C:7A:67:DF:13:E5:F2:28:62:2E:EC:30
X509v3 Authority Key Identifier:
keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:4b:34:9c:63:00:aa:3c:39:00:14:98:06:b0:d6:e8:8e:b0:
33:37:8f:7b:93:22:e4:04:c0:b3:13:96:39:51:0f:6a:bc:bf:
2a:f8:fc:1a:eb:8c:43:a5:f5:19:cd:3d:23:cd:bd:97:f5:42:
da:12:de:51:1d:71:a3:91:7a:26:31:fe:e4:6b:03:5a:61:0b:
6d:a5:18:c7:3f:31:02:af:06:ff:80:bf:79:d2:8a:68:7e:2a:
7d:73:1f:3f:b7:39:f7:3a:4f:d6:03:ab:d9:37:65:f8:62:06:
65:33:95:bf:f3:99:ab:5b:ad:d7:f2:9c:3e:ab:83:8c:89:bd:
e2:3c:f8:1b:1e:72:94:fd:30:9d:29:81:03:7a:df:7c:9b:54:
cc:7e:46:32:bd:52:2c:f2:fc:af:89:fe:cc:93:43:5a:d4:3f:
e9:24:2a:84:c9:e4:d8:d7:be:f8:e1:39:de:d1:58:25:f1:1e:
83:2e:94:7a:f0:14:af:98:cf:9c:f9:46:9d:b3:69:2b:55:64:
5d:21:9c:a1:ce:f9:30:c4:f3:a5:df:69:02:98:df:c7:00:27:
5d:c9:0e:10:00:ec:53:95:2e:90:87:ef:8b:39:8a:15:c3:79:
54:24:c8:f3:41:77:5c:2a:ad:ef:d0:77:df:63:6c:98:de:91:
c1:ad:61:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZoEH//PijHmuyey12i7GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhZmU2ZDdkNWYxZTQ0NzhkMWEwMjUxNzFkYTZiMDM5YjI2
MzAxMWYwHhcNMjYwMzI5MDcwMjE0WhcNMjYwMzMwMDcwMjE0WjAzMTEwLwYDVQQD
Eyg4YWRmOWU4Mzg0ZDk0ZGRiOGM3YTY3ZGYxM2U1ZjIyODYyMmVlYzMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQ5stwR4/YGHF1LBeH45TXD8NIXB
wEJx3dPgeybJnZFJLNlXkRa+S7O03ax0roykRi6v63yI0YCln2EtZYwI4WoD0c7G
qxUmf9zWEhyn/GiwveiVWWtyvgKoHPh7HNIyTUX+bIGEQtE4SNZMQRNqie1YBktC
k7GfIQhEnoVOk8BS3VxfUqZYKQMO4zdDUQuq/WJUJ7vtBGxACguQ+RmvKHoL9VdI
dC3/bWOXKIhga+p4jCHfgw8V9WDdKnu6ET8Mg/RvTknY9Ln+yrVZrHD5V3jHxqO7
oUaBzI16AmEgfVrIEP57VFQgFPuKGUliwxFk/napA2t4NJVh2R5mB6lJ6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIrfnoOE2U3bjHpn3xPl8ihiLuwwMB8GA1UdIwQY
MBaAFLr+bX1fHkR40aAlFx2msDmyYwEfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEt
ZGZiNzliYmExYjY4LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEtZGZiNzliYmExYjY4
LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARks0nGMA
qjw5ABSYBrDW6I6wMzePe5Mi5ATAsxOWOVEPary/Kvj8GuuMQ6X1Gc09I829l/VC
2hLeUR1xo5F6JjH+5GsDWmELbaUYxz8xAq8G/4C/edKKaH4qfXMfP7c59zpP1gOr
2Tdl+GIGZTOVv/OZq1ut1/KcPquDjIm94jz4Gx5ylP0wnSmBA3rffJtUzH5GMr1S
LPL8r4n+zJNDWtQ/6SQqhMnk2Ne++OE53tFYJfEegy6UevAUr5jPnPlGnbNpK1Vk
XSGcoc75MMTzpd9pApjfxwAnXckOEADsU5UukIfvizmKFcN5VCTI80F3XCqt79B3
32NsmN6Rwa1hrQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:27 2026 by rpki-client