Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier: NpPlO5aP8GLseirUZp+0qkjYKBip3Dxwxdwqyhd7O1s=
Subject key identifier: 4B:0F:9B:FF:5A:A6:A7:21:8E:8C:C9:08:26:5F:45:6B:0B:DC:12:D9
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial: 019EB87C69DB745BB9DAB4EF68D6D662772A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number: 18EA
Signing time: Thu 11 Jun 2026 21:00:21 +0000
Manifest this update: Thu 11 Jun 2026 21:00:21 +0000
Manifest next update: Fri 12 Jun 2026 21:00:21 +0000
Files and hashes: 1: NuqvGLGVW54T2_CK4Y8l2k93wFg.roa (hash: DT5naWAM2r0ZiUJDhX9HJ7rLzQINkgWuAJdmInUQ/sA=)
2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: d3o1yz03JMG+eXtBBtn1gB41Drg+OU83HTtl33bR8Yk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:69:db:74:5b:b9:da:b4:ef:68:d6:d6:62:77:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Validity
Not Before: Jun 11 21:00:21 2026 GMT
Not After : Jun 12 21:00:21 2026 GMT
Subject: CN=4b0f9bff5aa6a7218e8cc908265f456b0bdc12d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:95:7b:3b:d7:50:5c:b9:c1:80:b5:47:a7:2e:
04:e8:f5:92:f9:d9:e2:4a:8e:b7:88:76:13:7b:81:
d9:76:c3:2b:7b:bd:cf:c0:5e:70:37:4a:ff:89:b6:
8d:73:8c:7b:1c:38:7f:42:a1:dd:ef:ba:fc:f1:90:
ce:81:55:56:40:36:f7:2a:b1:f7:24:03:a6:30:22:
1d:16:b4:11:0d:ab:d0:31:0a:13:dd:61:c3:30:fa:
f3:5d:8d:12:f5:2d:cf:5a:41:4d:28:5f:ee:3c:01:
92:eb:d0:b6:ef:f1:20:c0:33:06:a9:06:5e:14:0c:
12:28:9d:65:ed:d2:bd:34:8e:2e:b6:0f:db:33:4e:
d4:3d:fa:9c:28:a9:68:d1:75:be:cd:98:64:a2:01:
81:79:22:63:99:2c:bf:3a:4c:8f:1f:28:49:76:dd:
d6:04:12:41:48:10:2a:f4:5d:3d:27:a3:f9:f3:58:
1e:b6:01:4e:a4:2d:a9:0a:e3:8d:02:62:7e:ef:ee:
04:68:d8:97:a3:8e:d2:0d:64:14:72:16:18:24:8f:
7a:e5:bd:e6:af:3f:5c:20:1e:39:f3:fd:16:72:b6:
d2:fe:48:f4:d3:d9:c1:d3:02:77:74:a3:b9:50:29:
c1:9b:11:60:70:e3:36:01:c5:a1:dd:76:c9:3c:89:
07:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0F:9B:FF:5A:A6:A7:21:8E:8C:C9:08:26:5F:45:6B:0B:DC:12:D9
X509v3 Authority Key Identifier:
keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:9e:49:df:11:4d:57:95:84:fa:c9:d2:32:d2:f6:3b:af:96:
92:9b:42:08:8f:ab:d9:95:f3:f5:18:e1:2b:4d:f2:f7:69:ba:
02:ad:83:00:e2:d5:74:15:40:30:10:14:8e:17:fd:4f:6d:e0:
45:77:a3:53:c3:b2:06:7d:f8:ea:6f:92:e6:01:39:21:f3:34:
97:ce:c9:2d:f8:cb:ee:85:8f:02:92:a6:94:b9:2a:48:d6:5a:
20:38:2f:c7:e2:4f:a1:95:16:09:33:7e:46:99:83:6a:ca:29:
82:57:5a:31:79:95:d1:ed:6d:ba:76:38:b6:5d:33:bc:e3:11:
36:3d:21:66:dc:53:21:10:04:3d:38:7c:69:df:03:dd:b9:75:
c5:58:b7:37:d0:26:6f:1f:eb:f6:68:35:13:86:5a:3c:4b:32:
fd:6c:04:14:3e:c2:ab:53:ab:c4:5e:a5:80:e7:98:24:58:3e:
be:ee:97:6c:2e:10:bc:aa:b3:ad:f4:bb:51:b6:36:28:6d:f8:
4d:32:15:54:50:09:e7:6c:aa:e2:a0:a0:a7:3a:cd:3d:7d:b0:
45:4a:3e:9a:65:63:07:eb:ae:87:07:55:ee:e8:92:5f:fa:9f:
bc:b9:d8:56:cf:3a:d0:4a:1b:3c:e2:77:3f:89:0d:b7:0c:6e:
4a:91:06:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64fGnbdFu52rTvaNbWYncqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMmQ1ZmQzMDlkZDZjYzZjZjc4ODYwNDFlNWU5YzJjMWEy
NmNlYWIwHhcNMjYwNjExMjEwMDIxWhcNMjYwNjEyMjEwMDIxWjAzMTEwLwYDVQQD
Eyg0YjBmOWJmZjVhYTZhNzIxOGU4Y2M5MDgyNjVmNDU2YjBiZGMxMmQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspV7O9dQXLnBgLVHpy4E6PWS+dni
So63iHYTe4HZdsMre73PwF5wN0r/ibaNc4x7HDh/QqHd77r88ZDOgVVWQDb3KrH3
JAOmMCIdFrQRDavQMQoT3WHDMPrzXY0S9S3PWkFNKF/uPAGS69C27/EgwDMGqQZe
FAwSKJ1l7dK9NI4utg/bM07UPfqcKKlo0XW+zZhkogGBeSJjmSy/OkyPHyhJdt3W
BBJBSBAq9F09J6P581getgFOpC2pCuONAmJ+7+4EaNiXo47SDWQUchYYJI965b3m
rz9cIB458/0WcrbS/kj009nB0wJ3dKO5UCnBmxFgcOM2AcWh3XbJPIkHYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEsPm/9apqchjozJCCZfRWsL3BLZMB8GA1UdIwQY
MBaAFLotX9MJ3WzGz3iGBB5enCwaJs6rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2Yt
NmQ3NTUwNTJiYjI0LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2YtNmQ3NTUwNTJiYjI0
LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKp5J3xFN
V5WE+snSMtL2O6+WkptCCI+r2ZXz9RjhK03y92m6Aq2DAOLVdBVAMBAUjhf9T23g
RXejU8OyBn346m+S5gE5IfM0l87JLfjL7oWPApKmlLkqSNZaIDgvx+JPoZUWCTN+
RpmDasopgldaMXmV0e1tunY4tl0zvOMRNj0hZtxTIRAEPTh8ad8D3bl1xVi3N9Am
bx/r9mg1E4ZaPEsy/WwEFD7Cq1OrxF6lgOeYJFg+vu6XbC4QvKqzrfS7UbY2KG34
TTIVVFAJ52yq4qCgpzrNPX2wRUo+mmVjB+uuhwdV7uiSX/qfvLnYVs860EobPOJ3
P4kNtwxuSpEGWA==
-----END CERTIFICATE-----
Generated at Thu Jun 11 23:54:10 2026 by rpki-client