Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
File: ufdp1EM7dwTfcD0WRbf-qO-_km4.mft (raw, json)
Hash identifier: HdD4XMbBLLLMgeof7WeFRzy5z9YTkGogWP7mA9niYqQ=
Subject key identifier: 6B:AF:BA:D5:03:0E:B0:37:CF:D4:58:F0:95:6A:7E:96:C4:17:51:5D
Authority key identifier: B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E
Certificate issuer: /CN=b9f769d4433b7704df703d1645b7fea8efbf926e
Certificate serial: 019EBBEB7A7B64D36E85D5FE0D23E84892C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
Manifest number: 195B
Signing time: Fri 12 Jun 2026 13:00:32 +0000
Manifest this update: Fri 12 Jun 2026 13:00:32 +0000
Manifest next update: Sat 13 Jun 2026 13:00:32 +0000
Files and hashes: 1: F9fOaYPqb4gxUHFeWSAIKisXq8Q.roa (hash: PHpRDYyGYnqjTmjt3ejWEskYaaVTFLnfQhZUlCEYSpg=)
2: ufdp1EM7dwTfcD0WRbf-qO-_km4.crl (hash: 3CTtF+50R5Os/d/5YFE5u7pfl+dPgxiB/MVIP+WQTXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bb:eb:7a:7b:64:d3:6e:85:d5:fe:0d:23:e8:48:92:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f769d4433b7704df703d1645b7fea8efbf926e
Validity
Not Before: Jun 12 13:00:32 2026 GMT
Not After : Jun 13 13:00:32 2026 GMT
Subject: CN=6bafbad5030eb037cfd458f0956a7e96c417515d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:88:ce:ba:03:4f:b4:dc:6c:5c:3e:cf:10:01:
19:1a:36:02:71:22:32:e4:b7:a7:7c:b8:98:3b:df:
31:d0:88:d4:d8:6e:73:68:98:71:26:34:ae:fd:60:
bd:75:37:0d:1e:96:b1:78:3d:df:6b:0d:e9:1c:7f:
45:5c:6a:75:5b:db:01:4b:38:4d:a3:3b:4d:a6:28:
bb:63:f8:5c:2c:fc:57:b6:4f:10:fc:36:6e:7c:16:
c2:e3:80:89:d9:06:fc:56:61:2b:1b:6d:76:68:9a:
fd:61:83:b6:87:81:66:82:10:85:6c:15:d8:20:f7:
e0:75:58:94:26:16:80:86:54:78:62:b1:a3:9e:ac:
ec:0f:40:da:1f:c1:02:62:e9:74:c3:fb:5e:8d:7b:
f5:da:e6:38:d6:27:42:6c:6b:96:93:fd:0f:f2:8b:
df:57:69:41:50:f8:f9:51:7c:6e:86:2e:ff:c9:54:
96:f7:4b:b5:76:d2:3a:98:6b:ea:70:c8:85:99:4c:
54:17:0c:9d:a7:11:e2:9f:cb:a4:33:73:dc:2c:aa:
33:4a:78:ee:95:4f:06:7f:62:4f:c8:45:d7:25:f1:
91:af:3e:d6:5b:a4:ca:03:65:9d:97:37:56:59:d2:
52:ca:70:33:f1:19:87:a8:ef:65:0f:98:4a:9e:46:
33:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:AF:BA:D5:03:0E:B0:37:CF:D4:58:F0:95:6A:7E:96:C4:17:51:5D
X509v3 Authority Key Identifier:
keyid:B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:f3:aa:17:cf:b3:7c:0f:09:d8:00:0d:e4:38:0d:f6:a6:84:
61:c9:2c:1c:cf:88:d8:4d:c2:9c:a1:0e:01:67:b8:ee:f0:2d:
c2:81:d0:4c:0b:fd:c5:23:0a:3f:61:97:e8:9e:1e:84:3c:a8:
55:12:b1:55:29:2e:61:88:87:c6:49:67:92:6f:4d:58:dd:49:
1d:b4:f2:6a:1f:24:d4:41:69:eb:84:7c:fe:0d:f2:7f:b7:4b:
bc:dc:4d:1f:fc:15:12:1b:f9:85:38:96:7e:49:1a:3f:7e:f2:
5e:96:97:5b:4d:e9:8b:33:ca:2f:39:ca:78:47:c2:56:bd:ea:
78:97:da:f7:0e:9b:11:12:16:90:a7:b0:a1:35:a5:d7:69:cb:
64:7a:0b:b7:4a:7a:c6:f9:a0:b1:b9:a7:b2:91:ce:a9:ec:d3:
1f:cc:59:0b:c9:9c:ff:94:d1:d6:92:97:0f:b5:60:bf:2c:0d:
f5:17:20:59:d7:d7:3a:5a:98:97:a6:d8:8c:ff:70:f2:1e:b6:
1a:73:90:3d:92:7c:7d:3c:96:fe:44:d0:c0:ce:22:9f:45:36:
b5:58:85:03:d6:7c:d1:f3:ba:0c:86:50:f7:1d:5a:14:d2:7d:
26:b0:46:e5:2d:5d:a5:97:d8:55:2b:13:0d:07:8b:f0:f7:b5:
dd:b1:7f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 16:35:18 2026 by rpki-client