Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
File: UnFDjiPOkl5mwlmYEiG1toOi8I8.mft (raw, json)
Hash identifier: Y8L5gJfa+lRnidYJ/z3Sd7+boQSayLe6506gS2ZDBic=
Subject key identifier: 92:02:9D:25:D1:5F:31:0B:E0:A0:65:5C:6E:62:02:47:78:D7:7E:7A
Authority key identifier: 52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
Certificate issuer: /CN=5271438e23ce925e66c259981221b5b683a2f08f
Certificate serial: 019D3940B6B936389297120DF9134543CE24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
Manifest number: 0DF4
Signing time: Sun 29 Mar 2026 11:00:35 +0000
Manifest this update: Sun 29 Mar 2026 11:00:35 +0000
Manifest next update: Mon 30 Mar 2026 11:00:35 +0000
Files and hashes: 1: UnFDjiPOkl5mwlmYEiG1toOi8I8.crl (hash: hc2rIz3d/dFnMdx0PZqT8Paq/sstXGBqt+ivYQtdD5Q=)
2: o-iJD6qSKBcMDFIpOFvRxAvVB68.roa (hash: h1nVK1njqo5/GGkuCAVn8ZtCHKNzAogi9mgaa3QkB+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:b6:b9:36:38:92:97:12:0d:f9:13:45:43:ce:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5271438e23ce925e66c259981221b5b683a2f08f
Validity
Not Before: Mar 29 11:00:35 2026 GMT
Not After : Mar 30 11:00:35 2026 GMT
Subject: CN=92029d25d15f310be0a0655c6e62024778d77e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c2:df:d2:0a:19:0e:c8:5b:85:36:31:7c:2b:
c0:1a:c4:61:1c:06:4e:8c:cc:df:d6:27:61:7e:5c:
fe:d8:cd:ad:83:e3:13:94:2d:38:d6:6a:b8:ba:9e:
ba:35:a7:15:20:54:31:ee:65:bd:30:a7:c8:20:17:
74:93:82:7a:90:ee:89:5e:a2:df:f5:fe:b1:af:9b:
f5:de:b2:0f:4b:60:47:87:54:8c:c1:98:f1:05:a1:
91:04:c2:5c:fa:a6:d4:2e:47:70:a0:18:46:4f:23:
81:10:67:ec:c8:df:29:42:b4:e5:eb:56:77:45:a7:
43:7b:c5:bb:03:8d:01:87:45:18:8a:80:30:e5:97:
3c:9e:f3:69:f4:04:56:cb:9a:27:da:2f:39:37:d9:
a6:4b:40:98:0c:2e:c7:1b:98:76:1e:b1:03:02:c1:
87:82:68:da:8e:fb:6a:d3:66:93:81:76:d6:19:c7:
c8:9c:d8:cf:f7:81:40:a9:ce:18:05:08:32:e0:ba:
1c:98:31:7b:37:52:75:3c:d0:5f:0c:c4:93:2c:6d:
e9:67:c9:8d:6c:4a:d3:f2:7f:22:57:ec:74:c5:e0:
24:f6:e0:bb:e3:8d:90:72:20:85:4f:e0:13:01:88:
c0:06:51:bb:5b:89:4b:f1:b0:50:29:79:56:4d:b3:
b5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:02:9D:25:D1:5F:31:0B:E0:A0:65:5C:6E:62:02:47:78:D7:7E:7A
X509v3 Authority Key Identifier:
keyid:52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:13:fa:73:04:81:48:cf:7e:ba:66:a2:30:3e:fd:6c:2e:7f:
13:61:26:63:ab:98:a6:52:7b:30:86:ad:bb:2f:08:54:eb:4c:
e6:03:db:55:0a:21:dc:50:0b:cd:e1:f9:94:52:0d:ea:32:33:
42:5c:bf:71:13:eb:d5:68:5a:47:81:b6:a2:1b:0b:27:ac:71:
7c:12:e6:ef:45:a7:97:65:22:31:8d:97:fb:dd:05:46:d3:d0:
dd:0b:84:2d:a5:4e:d0:a2:ec:7d:3f:e2:cc:62:78:73:64:14:
de:d5:43:af:1c:e6:48:2b:36:21:bf:3b:f0:59:a1:73:d5:9f:
80:05:1b:48:ce:e5:63:eb:f2:76:1c:41:53:52:19:20:19:ad:
66:34:c2:e2:49:d2:4e:91:46:1d:a4:ac:aa:f6:52:6e:21:25:
bb:a8:01:e4:4c:22:6b:d4:8a:89:4d:d4:b1:ec:96:cd:8b:f4:
ec:92:01:53:a9:b2:59:ae:ea:23:4d:ce:01:fe:83:ff:b7:25:
3d:06:90:1f:32:fd:79:99:a9:20:0f:8c:1c:8d:8e:46:30:76:
39:e9:f0:63:f9:46:64:1c:f7:ae:95:11:99:86:aa:b9:fb:42:
c7:28:bd:f7:e6:98:89:2f:13:11:44:00:44:98:77:20:97:a8:
30:de:25:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:35:48 2026 by rpki-client