Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json)
Hash identifier: 9ag7r1DL6kM4VbywtlT9xJJfK3isgIehEWTrRf2jtTY=
Subject key identifier: A2:43:2C:97:1F:A3:50:78:68:8D:41:24:73:2E:46:42:20:54:6F:07
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 019D39AF5C79DAD4D35548C4B5DE9C0919CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 13:01:26 +0000
Manifest this update: Sun 29 Mar 2026 13:01:26 +0000
Manifest next update: Mon 30 Mar 2026 13:01:26 +0000
Files and hashes: 1: I14lG_8KuHU0CqYJHc9FqXObhcQ.roa (hash: ZF+DnhO3hjJF0AK61h8lfYEMUXQ/Nib4VTQFMRZ8378=)
2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: ToXnMjKKghdgYjZoGn2pysncw/w696lpeIMsqPwHIsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:5c:79:da:d4:d3:55:48:c4:b5:de:9c:09:19:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: Mar 29 13:01:26 2026 GMT
Not After : Mar 30 13:01:26 2026 GMT
Subject: CN=a2432c971fa35078688d4124732e464220546f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cc:58:25:e3:45:0a:1c:57:6b:fb:5b:f9:f0:
95:6e:3c:a9:cd:99:a0:83:4e:2f:30:e2:9f:cf:47:
ae:c6:42:c3:e8:11:60:48:0d:a9:36:13:9b:db:d7:
e8:31:fd:c1:a5:67:66:f1:35:75:83:25:2a:77:64:
32:dd:91:01:6b:a9:45:3e:14:ba:73:5e:35:08:06:
0a:30:b9:9f:77:55:66:08:70:d2:42:62:65:a4:b2:
69:d5:fa:2e:e0:a6:ef:02:37:44:c3:0c:cb:6c:f4:
f6:d5:29:0e:2b:75:ed:a2:bf:74:d8:69:00:75:ea:
da:6a:81:20:f6:14:bc:61:38:4c:b9:45:d0:16:a0:
bc:c1:ec:ed:73:32:57:e4:3d:88:ef:37:c3:6e:87:
40:bb:eb:e1:d7:d6:7d:ae:c5:b0:32:65:f7:34:c6:
88:3b:22:d2:4d:5f:90:de:d8:c5:6b:05:ec:a6:91:
56:5a:e2:7d:1f:de:ea:87:ef:29:94:7c:77:ef:e9:
03:6e:88:0a:21:82:96:39:ac:4e:27:75:c7:9d:ef:
3c:e1:e5:ae:8e:5f:63:05:b2:29:87:0a:9d:4c:46:
03:5e:eb:b8:f3:86:94:79:b5:6c:4c:fa:75:cb:b0:
5f:76:3a:44:99:2e:d6:7a:5a:3d:3b:91:5d:c6:df:
dd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:43:2C:97:1F:A3:50:78:68:8D:41:24:73:2E:46:42:20:54:6F:07
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:ee:97:c2:9f:f5:1c:ce:92:7e:e8:d2:41:57:04:fe:4f:c3:
2f:aa:32:55:a9:8e:61:3a:c8:c6:af:67:51:76:e1:53:8d:4b:
32:47:56:e6:72:00:89:90:ec:0c:27:fc:e4:11:20:9c:a9:19:
59:84:58:95:c3:b2:2c:c4:82:9c:53:a4:d9:cf:15:40:b8:b3:
cb:60:8f:37:d5:ad:a4:e0:82:bb:74:8d:af:61:9a:b9:46:d3:
18:d9:5e:51:a6:aa:04:ef:9e:0e:28:14:94:ea:d9:81:a4:14:
27:26:71:a6:2c:40:f3:a2:a9:57:09:ed:fa:f3:9c:46:a9:73:
bc:49:0a:cd:94:6b:37:6d:53:89:02:89:d3:dd:4c:af:69:21:
be:a9:a3:3a:d3:de:4e:1c:ce:05:4a:d6:6a:d1:fc:59:5b:16:
75:d0:c0:d8:4e:bd:c1:06:2c:9a:2d:c3:67:3b:5e:56:e4:f7:
37:83:6b:83:11:3c:32:95:84:e8:6d:4c:19:a5:5a:63:f3:d0:
ec:9f:5f:07:ed:34:65:f4:32:61:84:5d:81:fa:b9:a7:cc:15:
98:2c:2e:4a:4c:a0:4b:5c:ff:42:c2:8b:57:e9:19:33:81:dd:
00:b2:90:62:28:a5:89:7c:a7:69:d1:4b:a7:72:4a:80:e5:cf:
5e:c2:32:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:48:43 2026 by rpki-client