Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
File: unnFAIApfLnMDMk07jifUMPnPUo.mft (raw, json)
Hash identifier: epwRS6tLF3ku6/H2CvY5OoEfDQ9f7rAlheKNc8UFDak=
Subject key identifier: C0:57:2D:44:A4:F0:CE:DB:69:D1:FF:E6:9E:0A:8D:70:5A:EA:09:CF
Authority key identifier: BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
Certificate issuer: /CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Certificate serial: 019D3A1C4B3E45CDF7D2ACBCA7229BE59FDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
Manifest number: 075E
Signing time: Sun 29 Mar 2026 15:00:25 +0000
Manifest this update: Sun 29 Mar 2026 15:00:25 +0000
Manifest next update: Mon 30 Mar 2026 15:00:25 +0000
Files and hashes: 1: XKauEkhgdHlzhfA3t4VdHxgbGbE.roa (hash: sIffgoQ23PXM37zJ/C0HFWWKObJRqfapVrUOvAIf2kY=)
2: unnFAIApfLnMDMk07jifUMPnPUo.crl (hash: Kecu5ZDrpmq512A+YPQ0rSKb1DFDNoq/qbialADMeTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:4b:3e:45:cd:f7:d2:ac:bc:a7:22:9b:e5:9f:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Validity
Not Before: Mar 29 15:00:25 2026 GMT
Not After : Mar 30 15:00:25 2026 GMT
Subject: CN=c0572d44a4f0cedb69d1ffe69e0a8d705aea09cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:19:ae:94:0a:89:15:9a:df:e9:b0:5d:eb:0e:
af:43:81:0a:1b:53:e4:70:24:68:0c:81:91:67:8c:
ef:e6:5a:32:15:1e:54:39:d0:08:57:82:01:66:69:
7c:2b:51:ca:01:1e:a2:40:9c:cb:b0:1a:95:71:3e:
f1:53:de:46:bc:56:13:da:bf:8c:d7:2e:5e:6d:84:
8a:97:39:82:9e:43:48:6e:99:a6:8a:dd:9c:98:a8:
29:f9:06:31:17:84:4a:55:50:f1:77:3c:d0:cd:e5:
cf:54:95:d2:0a:32:db:f2:8e:7c:1a:14:b1:d4:92:
1c:9f:55:c5:45:67:41:03:61:e1:8f:23:b8:68:92:
07:43:0e:a7:b3:5f:09:bd:ff:4c:08:4d:20:08:a3:
b0:79:5e:0c:99:c8:e1:b1:4c:1a:01:61:b6:ed:7a:
69:ec:c5:3b:b6:19:11:b5:1f:98:88:6f:86:4c:99:
dc:e7:bb:20:4a:fe:84:1c:05:de:40:5c:d4:6a:9c:
07:a8:08:87:b7:3e:03:29:17:df:f2:85:38:fe:13:
26:69:03:3f:97:b8:d6:ee:d3:9f:a0:d9:4d:f8:11:
ad:02:3b:bd:87:ee:bf:5e:5d:f0:e1:2a:18:2a:9a:
6f:c1:a7:f5:0b:1a:f4:f0:ac:a7:89:86:ff:e6:9c:
0b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:57:2D:44:A4:F0:CE:DB:69:D1:FF:E6:9E:0A:8D:70:5A:EA:09:CF
X509v3 Authority Key Identifier:
keyid:BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:89:f5:5f:57:22:07:9f:c7:40:b1:19:dc:9c:9a:82:45:40:
cd:82:28:c8:be:64:f2:f1:53:49:67:9b:89:fc:c4:a5:62:ef:
13:71:6b:82:99:c3:16:4d:ee:7d:d9:94:11:1e:45:9e:95:d0:
1c:80:c2:19:ad:8d:23:0a:8a:e4:3c:8f:9b:ca:a9:c9:d9:ec:
94:8f:d2:4f:35:60:66:58:58:63:16:50:d1:e2:1e:9f:9b:f9:
11:86:47:ab:ef:67:0c:b0:1a:74:47:d5:9c:10:f4:25:3f:38:
dd:d5:53:e3:dd:ab:39:e3:77:c6:0d:f0:14:bd:cc:94:24:9b:
b4:19:35:dc:c6:90:ab:55:e5:2f:59:30:33:02:ee:9f:33:47:
4f:c3:d8:e5:e8:a9:03:7e:94:35:54:de:62:23:29:a8:ae:92:
33:f5:2f:3d:7e:41:f9:d0:f3:75:a7:30:44:f7:e7:4b:33:2a:
04:63:3f:c8:c5:c1:78:bf:4a:0c:69:53:f8:75:a8:cf:75:2e:
4c:14:4d:10:5e:78:a9:e8:61:a1:16:4e:d9:19:c0:c2:25:0b:
b4:52:2a:61:e5:5a:f9:5a:ee:b1:45:08:e1:7b:ae:f5:3d:1c:
81:eb:5a:e7:3a:08:2f:0e:f3:1a:90:74:3f:00:c4:c2:90:6d:
97:90:78:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:25:52 2026 by rpki-client