Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier: X2cAEI5DXbx+1Qp1IWxKlMCYL+nXFK0YygvjivkeS3M=
Subject key identifier: EA:E9:A9:AD:F3:2C:F5:6C:C0:45:66:08:A4:CB:41:82:16:5C:C2:EA
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial: 019D3A1C9BDF0FD391B412A2F548EEE04BF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number: 1824
Signing time: Sun 29 Mar 2026 15:00:46 +0000
Manifest this update: Sun 29 Mar 2026 15:00:46 +0000
Manifest next update: Mon 30 Mar 2026 15:00:46 +0000
Files and hashes: 1: NuqvGLGVW54T2_CK4Y8l2k93wFg.roa (hash: DT5naWAM2r0ZiUJDhX9HJ7rLzQINkgWuAJdmInUQ/sA=)
2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: q6z+sSS6cDgwE5wnRHCbV0kdvpItdNSm2aPVGJuGyr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:9b:df:0f:d3:91:b4:12:a2:f5:48:ee:e0:4b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Validity
Not Before: Mar 29 15:00:46 2026 GMT
Not After : Mar 30 15:00:46 2026 GMT
Subject: CN=eae9a9adf32cf56cc0456608a4cb4182165cc2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0f:ff:0b:6f:bf:ac:f2:b3:77:6b:87:c2:59:
70:6b:2f:a4:b6:dd:c1:15:e6:71:25:eb:87:71:81:
dc:b5:db:26:5d:c0:d5:23:6e:3a:25:c2:ac:bf:f7:
f0:be:07:e8:7d:e8:54:7c:4b:9e:bb:51:aa:e4:58:
23:31:01:1a:fd:99:3f:e2:5d:0a:9c:ef:0d:88:28:
e9:39:09:07:62:e9:85:72:00:f5:ba:01:7e:f8:40:
31:16:32:67:b4:8a:a0:ea:94:4e:9a:ca:67:2c:fc:
d3:f4:8d:35:5a:46:66:7b:85:49:3a:8d:01:45:52:
8f:34:92:e1:dd:46:19:08:40:e0:25:b1:5c:9e:c5:
68:fe:01:72:4e:ed:67:6f:b2:aa:df:62:21:f7:5c:
54:ed:68:ca:90:1f:b7:0e:98:be:6e:77:e8:e9:18:
44:12:18:87:bc:84:eb:44:40:c2:79:55:6f:f7:e9:
f6:f5:9a:70:a1:16:0b:9a:cc:02:54:b4:31:ac:28:
8c:fa:e9:d4:ba:5b:58:ac:36:d8:a5:06:8e:9d:88:
5c:c7:2f:8c:ef:f9:ce:5c:3e:5e:0e:70:39:1c:22:
a6:07:2e:97:78:e6:95:39:a6:25:d7:f5:59:e2:be:
d6:fc:f9:77:93:50:6d:2c:1c:80:e0:c8:2a:ad:fd:
03:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E9:A9:AD:F3:2C:F5:6C:C0:45:66:08:A4:CB:41:82:16:5C:C2:EA
X509v3 Authority Key Identifier:
keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:fe:3b:7d:a6:ba:4b:5f:d7:7d:e7:d8:a2:af:1b:15:b6:88:
84:57:25:9b:4d:66:04:65:0f:1f:2a:23:49:4f:84:34:e9:74:
af:12:fe:2a:7d:31:a7:66:f1:23:21:43:8e:d6:f0:bb:d9:0f:
59:c4:47:54:c3:d6:b7:e4:b1:35:f9:1b:69:78:1c:b2:87:a3:
0f:30:7a:4d:62:b1:c4:e4:cd:12:59:98:63:30:b9:bd:2b:9d:
2c:37:5b:fd:f6:4f:ce:c6:15:00:14:77:18:d6:d6:57:09:77:
2e:ad:f4:2b:d5:e4:ff:6b:fd:33:1f:30:cf:a4:c7:f6:b9:4d:
39:4a:79:f4:18:43:66:19:f9:67:5f:09:d4:9d:5e:a7:44:41:
da:54:87:ff:59:12:5f:77:fc:7a:c5:2c:41:60:43:f4:8c:f1:
5a:4b:54:99:79:dc:8d:8e:0a:77:27:76:71:93:0e:8d:2d:eb:
7f:10:9d:fb:f3:a4:15:97:cd:b6:9a:85:69:cf:75:ca:2c:49:
00:e3:4d:d1:cc:f6:9a:d9:00:9c:2c:52:09:b1:0a:b1:a2:74:
a9:29:f7:a6:08:c2:13:14:b1:c4:bf:5e:3c:95:33:b7:06:9d:
26:00:6d:b5:b1:0d:07:bb:5d:ed:5b:7f:17:1b:a9:26:c9:ec:
ab:fb:7b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:24 2026 by rpki-client