Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
File: UOpay0R7LOuTKgPykAgtx2-OQOM.mft (raw, json)
Hash identifier: 3ej1eRCNJ9Eg5z6GClNUySfF7s0GkEkb2Mr6kdk4DbA=
Subject key identifier: 2D:5E:99:FE:7D:FB:14:04:36:A6:6D:ED:F9:CC:B7:50:D3:25:76:D7
Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Certificate serial: 019F12D3207BB7527DA5823F7CD0CA4C9716
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
Manifest number: 1985
Signing time: Mon 29 Jun 2026 10:00:53 +0000
Manifest this update: Mon 29 Jun 2026 10:00:53 +0000
Manifest next update: Tue 30 Jun 2026 10:00:53 +0000
Files and hashes: 1: Qjcz_PS0tGHgVp4sFdHi9YmmanQ.roa (hash: bNCXCGEDvdLCDKAMMYQGu7EJRHAHnyr4sSGJfowyZWg=)
2: UOpay0R7LOuTKgPykAgtx2-OQOM.crl (hash: fnmzWRy3b/U5BrNswFmCvz4mZI05K4vpE4Zj38vSg2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 10:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:d3:20:7b:b7:52:7d:a5:82:3f:7c:d0:ca:4c:97:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Validity
Not Before: Jun 29 10:00:53 2026 GMT
Not After : Jun 30 10:00:53 2026 GMT
Subject: CN=2d5e99fe7dfb140436a66dedf9ccb750d32576d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c3:64:66:bd:93:0d:d5:e3:b7:88:38:b0:55:
00:90:8e:89:a9:07:56:fa:59:2f:df:2c:c9:f9:d7:
21:a2:e6:4c:18:5c:d2:92:ee:38:d3:9c:24:00:41:
29:a8:a2:17:9e:15:78:e8:48:6d:f8:52:8a:6b:ef:
e7:a9:e8:45:d3:d1:50:ef:5d:d1:5f:d4:18:69:66:
e0:ac:c7:54:e2:5f:e4:13:68:74:47:1f:cc:23:29:
ad:64:92:41:c3:24:01:16:3d:77:5d:02:67:e6:ce:
2d:26:be:46:c0:00:a6:64:3c:e9:45:58:54:78:24:
1f:14:f6:57:51:da:ec:97:c0:d4:9e:66:ae:02:71:
aa:60:79:7f:c8:4c:46:50:dc:85:06:72:d5:c4:93:
db:ac:0f:10:c8:d9:23:c9:56:45:78:5f:b1:3b:f9:
0e:1e:c2:f7:61:f5:3a:80:0d:44:d1:eb:66:c0:75:
3c:32:3c:70:46:c9:1c:7a:5b:2a:b9:6f:ae:33:d8:
fa:62:0f:a0:e2:f3:b1:22:e1:52:52:6a:14:47:2b:
2d:3d:58:3a:89:26:09:26:96:bd:e2:b4:1e:0d:c9:
cb:af:2c:8e:38:e9:43:85:02:bf:f6:74:b2:a6:fb:
04:89:7e:fd:06:bc:5f:72:72:d1:df:29:c9:b6:75:
15:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:5E:99:FE:7D:FB:14:04:36:A6:6D:ED:F9:CC:B7:50:D3:25:76:D7
X509v3 Authority Key Identifier:
keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:ca:28:2f:c7:94:96:8a:1d:d0:95:24:01:0b:ad:c7:4a:bd:
90:c8:66:bf:3d:d9:70:5c:f5:41:48:38:f4:5f:08:f0:e4:34:
bb:ba:ae:77:34:ed:b2:47:14:4c:a4:43:6c:81:85:5a:2e:a2:
a4:26:e5:4c:42:3a:3e:2d:04:b2:b1:ca:27:eb:3e:51:e1:04:
f7:06:e5:ee:22:24:c4:b2:bc:a4:20:65:7e:c8:38:90:37:bf:
15:d1:71:1e:82:9a:4e:2d:31:ef:1f:9b:26:bc:6d:a0:88:2f:
93:51:f5:95:c6:39:81:04:28:8f:a8:e7:cd:e9:b0:0c:d2:6c:
cd:d1:99:b5:20:5f:7c:f3:d7:ac:08:c4:05:f1:ce:6f:16:5f:
e9:6a:27:74:8a:1b:04:8a:6a:1b:1b:82:79:d7:ad:fa:17:ba:
31:f9:96:fe:28:08:0a:1b:54:ba:b8:2e:b4:c1:fa:fe:35:fa:
d1:cf:6f:07:87:64:43:4d:39:66:11:2d:ef:fd:e3:58:a7:4e:
c9:39:7a:4f:02:9e:44:db:e8:5a:b6:34:e4:81:2e:9d:2f:d9:
42:9a:a6:a7:b1:8b:13:4c:4b:3d:51:28:d8:0b:66:5b:5b:ce:
1e:bd:c4:f6:50:68:3b:5d:fb:c3:f9:bb:9c:4c:4c:95:cd:99:
5c:21:02:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:41:53 2026 by rpki-client