Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
File: uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json)
Hash identifier: e9Xm9Z4Tvr8vYN0TTIEasIp6Q3SUrkehqy60IOphzQc=
Subject key identifier: 55:B3:2A:69:FD:7F:8D:F9:77:8B:1E:A3:17:33:70:70:CA:B4:92:B5
Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
Certificate issuer: /CN=baa23f740ad564c5693b77091c71b3c03136a580
Certificate serial: 019EB8EA8C3C4EFAB5A9EC211E026456ABE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
Manifest number: 0DCF
Signing time: Thu 11 Jun 2026 23:00:39 +0000
Manifest this update: Thu 11 Jun 2026 23:00:39 +0000
Manifest next update: Fri 12 Jun 2026 23:00:39 +0000
Files and hashes: 1: Jd6kW4lGNT0OBJjFacs1nyylkLQ.roa (hash: DN4lDMoyde0MYsDKgYpzaGvP9YKbzDvp6j/0REyCcMs=)
2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: yyswSeNAIuUw+Xa2W3u86961frt+xmAIpetJApIparI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:8c:3c:4e:fa:b5:a9:ec:21:1e:02:64:56:ab:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580
Validity
Not Before: Jun 11 23:00:39 2026 GMT
Not After : Jun 12 23:00:39 2026 GMT
Subject: CN=55b32a69fd7f8df9778b1ea317337070cab492b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:01:46:3e:e3:db:fb:9b:d4:d9:d3:90:2e:03:
1e:f6:5a:0b:35:48:be:ef:88:0c:69:84:47:08:b7:
fd:23:d9:63:12:07:40:10:37:e8:9e:35:90:46:0d:
24:65:fb:da:a6:22:0f:7a:ff:44:35:e2:12:b9:cb:
a1:93:97:e9:00:0f:22:26:cb:10:e9:54:28:a6:d3:
c2:d4:d1:79:a6:e1:af:6c:d1:f3:27:58:64:ce:a8:
7f:1c:9a:98:f0:10:c0:96:f4:05:d1:a4:67:4d:20:
cf:5c:fa:ca:3a:17:e0:e2:dc:e9:75:60:8d:e1:88:
20:13:e5:93:3d:e5:a2:81:06:3e:88:5c:62:86:1a:
86:d0:56:2f:c1:49:7d:0a:25:d2:0c:c3:75:02:5c:
19:bb:9e:1f:7d:dd:03:4c:2c:2e:23:6d:82:85:62:
6d:bb:1f:14:8a:fa:f2:2d:68:f3:28:8a:7f:c2:50:
c1:85:e8:df:f5:70:4c:dc:8d:7c:1e:cc:dd:51:08:
44:ec:33:cc:b5:d0:1b:7d:0c:cd:b0:8d:88:48:2a:
cd:7f:25:2c:df:8b:72:03:30:53:ef:44:e6:7c:5b:
cf:94:b3:6a:0d:8f:c4:97:37:02:39:45:fb:32:df:
1d:57:8a:5f:d2:87:12:07:b6:8d:8b:db:a5:09:a5:
12:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B3:2A:69:FD:7F:8D:F9:77:8B:1E:A3:17:33:70:70:CA:B4:92:B5
X509v3 Authority Key Identifier:
keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:4a:5a:eb:56:5d:1a:7c:99:3c:7b:fb:0f:54:41:23:aa:89:
9e:aa:34:82:2d:9e:94:bf:0b:20:e3:96:15:3a:60:d0:a3:15:
8a:bf:a5:70:19:d7:89:32:67:81:88:36:ed:5d:56:fd:9a:2a:
c5:ca:ec:de:4e:dc:9c:1a:ad:6b:68:05:55:49:9f:cf:10:25:
da:56:38:c4:4b:47:ac:c2:17:ef:73:44:3f:f9:17:e6:5d:13:
1c:9e:dc:1d:63:1a:7c:bc:4a:0c:10:76:25:f9:79:da:ee:6a:
23:e2:dc:a7:c5:f4:5b:1d:6b:f9:63:f2:c4:6e:53:88:5a:85:
0a:70:9b:65:6a:c0:55:08:fc:1b:3e:4f:c4:dd:61:dd:b5:f4:
45:4a:39:41:43:b3:99:22:4b:ef:2e:e8:5c:16:6c:77:3f:02:
18:cf:2f:10:83:db:cc:f3:76:a0:73:03:65:21:a0:b6:2a:38:
7c:bc:0f:46:82:54:1d:2a:32:be:4f:b7:21:8a:b0:d2:a7:21:
b1:84:9a:e0:fe:c9:05:7e:a2:7e:e1:7c:c9:82:ad:e0:7d:b8:
e7:82:d4:34:14:e4:a0:45:bd:89:b2:04:48:42:c0:d8:46:55:
81:5c:ec:72:49:97:4d:a0:00:25:2a:e4:e4:2a:99:21:be:ee:
f4:e9:fb:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:40:22 2026 by rpki-client