Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
File: UOpay0R7LOuTKgPykAgtx2-OQOM.mft (raw, json)
Hash identifier: rkTS9u92Vxun2eKXJehxT+WqXnCq4MpuvT55GRo81Yw=
Subject key identifier: AB:71:3F:D4:5B:D9:45:09:60:4C:A0:D9:3C:F8:93:8F:22:D3:45:8A
Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Certificate serial: 019D39AF370DA8E7263506AA784B7C9E9DEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 13:01:17 +0000
Manifest this update: Sun 29 Mar 2026 13:01:17 +0000
Manifest next update: Mon 30 Mar 2026 13:01:17 +0000
Files and hashes: 1: Qjcz_PS0tGHgVp4sFdHi9YmmanQ.roa (hash: bNCXCGEDvdLCDKAMMYQGu7EJRHAHnyr4sSGJfowyZWg=)
2: UOpay0R7LOuTKgPykAgtx2-OQOM.crl (hash: 3LJCLBkECX2Q5lwWqMgpWG0yfnfGUxyf1D0pTWz2ymA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:37:0d:a8:e7:26:35:06:aa:78:4b:7c:9e:9d:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Validity
Not Before: Mar 29 13:01:17 2026 GMT
Not After : Mar 30 13:01:17 2026 GMT
Subject: CN=ab713fd45bd94509604ca0d93cf8938f22d3458a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ca:b8:e8:b1:84:78:57:0a:55:23:1b:9c:d8:
54:ac:fa:b5:4a:db:73:89:9d:be:ae:07:4a:7b:ce:
77:78:1d:42:3e:58:d4:95:cb:4b:d5:7a:c5:c0:71:
32:1c:aa:25:4a:cd:c3:64:0f:cd:2b:fc:96:8e:d3:
b5:6c:14:16:4c:49:13:87:d2:ba:4d:2b:5f:9a:92:
9d:1b:14:24:c0:51:62:cd:0c:9a:cf:56:35:47:4f:
43:d7:9d:77:b7:13:d2:ed:79:e4:f5:62:17:9f:de:
22:7a:04:1d:14:d5:07:e5:ff:1a:ed:ad:db:0f:6b:
81:b7:ae:c1:36:d1:11:a2:b5:5d:2c:56:86:05:ce:
59:7c:43:59:bf:af:0c:2f:a2:36:20:b4:d9:e4:9a:
e8:4c:ca:58:a6:c4:d4:69:29:a3:23:47:43:62:a6:
7b:6b:e9:11:ba:6a:7a:4f:87:15:84:5a:e0:37:26:
80:85:3c:83:ce:80:a9:7d:9d:d2:cb:0e:6e:e8:7d:
5a:5c:62:cd:05:8f:25:fd:b9:4c:bd:2c:93:ec:52:
f6:2a:2d:dd:25:da:6b:06:92:be:93:0f:03:8b:40:
7b:2e:1e:dd:4b:22:91:43:c3:61:b2:ee:09:4b:2d:
c2:06:e0:9a:fa:36:e1:a8:d0:c0:ab:b6:08:92:33:
4e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:71:3F:D4:5B:D9:45:09:60:4C:A0:D9:3C:F8:93:8F:22:D3:45:8A
X509v3 Authority Key Identifier:
keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:03:9f:fe:b8:a8:76:6c:24:37:64:26:b4:21:b9:e7:12:78:
16:be:3b:9c:ea:72:2a:e6:f4:12:b7:0d:80:d9:e9:82:4a:8d:
ad:4a:45:f9:9c:b2:75:cb:f2:6e:d2:55:a2:15:af:94:d1:3b:
8c:b3:cf:62:28:bf:ff:92:6f:bb:88:0a:84:98:8c:76:e1:a4:
04:30:c2:06:20:a3:96:84:5c:eb:90:99:26:26:ff:ff:a7:d8:
7d:65:b8:fc:e7:b5:c9:93:69:4a:84:8a:2c:ca:11:3c:f3:bf:
10:98:16:db:2f:6d:85:33:b8:21:0b:8b:8c:ce:35:6c:23:55:
81:49:a6:7b:5f:7f:e9:17:39:a0:dc:b6:61:8f:e2:90:07:f7:
27:2a:f2:ac:d5:31:b5:90:99:81:06:b0:39:5c:af:11:e0:e3:
a5:c2:82:bc:0e:e3:d3:05:7a:71:06:d0:cf:52:ae:71:d9:d6:
5e:a4:d9:2d:03:1b:0f:c0:7a:e2:bc:f0:65:bc:33:22:f0:6d:
da:12:cf:6b:16:53:5f:46:21:0d:16:2c:ee:1a:d6:0f:6b:02:
04:37:5e:5c:3b:40:8c:90:c2:22:f3:50:cf:2b:17:c9:0d:4d:
b9:e1:4c:3c:8a:0e:7d:44:ae:bc:8a:37:f8:5c:a0:63:c8:21:
20:b9:53:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rzcNqOcmNQaqeEt8np3vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZWE1YWNiNDQ3YjJjZWI5MzJhMDNmMjkwMDgyZGM3NmY4
ZTQwZTMwHhcNMjYwMzI5MTMwMTE3WhcNMjYwMzMwMTMwMTE3WjAzMTEwLwYDVQQD
EyhhYjcxM2ZkNDViZDk0NTA5NjA0Y2EwZDkzY2Y4OTM4ZjIyZDM0NThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsq46LGEeFcKVSMbnNhUrPq1Sttz
iZ2+rgdKe853eB1CPljUlctL1XrFwHEyHKolSs3DZA/NK/yWjtO1bBQWTEkTh9K6
TStfmpKdGxQkwFFizQyaz1Y1R09D1513txPS7Xnk9WIXn94iegQdFNUH5f8a7a3b
D2uBt67BNtERorVdLFaGBc5ZfENZv68ML6I2ILTZ5JroTMpYpsTUaSmjI0dDYqZ7
a+kRump6T4cVhFrgNyaAhTyDzoCpfZ3Syw5u6H1aXGLNBY8l/blMvSyT7FL2Ki3d
JdprBpK+kw8Di0B7Lh7dSyKRQ8Nhsu4JSy3CBuCa+jbhqNDAq7YIkjNOYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKtxP9Rb2UUJYEyg2Tz4k48i00WKMB8GA1UdIwQY
MBaAFFDqWstEeyzrkyoD8pAILcdvjkDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xMGVkZWYtMjUzZC00OWIxLTk2OWUt
NWNhOGFjMTgwOTZkLzEvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8xMGVkZWYtMjUzZC00OWIxLTk2OWUtNWNhOGFjMTgwOTZk
LzEvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcAOf/rio
dmwkN2QmtCG55xJ4Fr47nOpyKub0ErcNgNnpgkqNrUpF+ZyydcvybtJVohWvlNE7
jLPPYii//5Jvu4gKhJiMduGkBDDCBiCjloRc65CZJib//6fYfWW4/Oe1yZNpSoSK
LMoRPPO/EJgW2y9thTO4IQuLjM41bCNVgUmme19/6Rc5oNy2YY/ikAf3JyryrNUx
tZCZgQawOVyvEeDjpcKCvA7j0wV6cQbQz1KucdnWXqTZLQMbD8B64rzwZbwzIvBt
2hLPaxZTX0YhDRYs7hrWD2sCBDdeXDtAjJDCIvNQzysXyQ1NueFMPIoOfUSuvIo3
+FygY8ghILlT2A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:45:18 2026 by rpki-client