Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
File: uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json)
Hash identifier: yknmBntqBpvyXOyw+PVTnTkQtzOcT1cd+pYfddCyNWg=
Subject key identifier: B5:8E:B6:C4:B1:C8:9F:F5:97:AE:15:07:C5:A0:93:9B:7D:8A:53:00
Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
Certificate issuer: /CN=baa23f740ad564c5693b77091c71b3c03136a580
Certificate serial: 019D389C5788AA4E0CDE2D956CC9377762A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
Manifest number: 0D08
Signing time: Sun 29 Mar 2026 08:01:03 +0000
Manifest this update: Sun 29 Mar 2026 08:01:03 +0000
Manifest next update: Mon 30 Mar 2026 08:01:03 +0000
Files and hashes: 1: Jd6kW4lGNT0OBJjFacs1nyylkLQ.roa (hash: DN4lDMoyde0MYsDKgYpzaGvP9YKbzDvp6j/0REyCcMs=)
2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: kGh1/u7LZFoU/pSnqjPQg0Qd3joIQOVghU6XstQVs+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:57:88:aa:4e:0c:de:2d:95:6c:c9:37:77:62:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580
Validity
Not Before: Mar 29 08:01:03 2026 GMT
Not After : Mar 30 08:01:03 2026 GMT
Subject: CN=b58eb6c4b1c89ff597ae1507c5a0939b7d8a5300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:95:ca:7a:1e:bd:cb:29:76:15:a3:e6:5d:ff:
06:00:6f:74:04:a0:aa:6a:0e:5c:ff:60:24:39:f3:
28:2b:8d:cb:61:5a:45:d8:09:16:8d:33:16:8d:d1:
bb:0f:63:66:72:6f:88:df:ad:04:14:8e:0c:26:1b:
fc:c6:20:cd:2e:48:5a:5d:55:19:aa:07:c9:f4:06:
12:9f:f1:be:4b:5e:54:86:08:8f:3f:1b:d7:0d:32:
d0:ae:58:a3:59:e6:0a:11:1a:bb:0e:3e:5d:b2:b0:
df:7e:8c:3b:a8:a2:d0:d8:d7:38:73:a2:3f:c6:da:
de:07:59:cf:d0:39:ff:09:26:04:e8:d4:15:67:62:
70:91:a0:4e:ab:39:44:71:df:26:df:69:d4:65:b8:
e6:88:85:d0:a6:57:79:4f:7e:8b:1b:74:c2:3e:a3:
b4:26:25:e2:6d:76:98:40:c0:e9:71:d1:09:28:e7:
1d:c5:0b:6a:80:f2:16:53:ee:6b:bb:ed:4e:64:a4:
fd:cd:ea:8c:fb:46:35:72:22:42:68:bc:b0:8a:bc:
5a:83:cf:0d:5f:52:ad:75:2d:37:ba:16:f3:14:7a:
d4:cc:5d:ef:3d:7c:b5:80:77:3a:6e:c6:57:05:75:
a8:ea:36:d7:13:9e:8b:49:88:74:9d:a6:59:89:90:
cd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:8E:B6:C4:B1:C8:9F:F5:97:AE:15:07:C5:A0:93:9B:7D:8A:53:00
X509v3 Authority Key Identifier:
keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:0e:28:4e:98:0a:0c:92:88:1d:68:5c:6c:76:1a:92:13:d2:
b4:87:94:b1:56:78:03:0a:01:af:4d:5f:bd:5d:93:59:75:e8:
ae:39:7a:df:aa:4b:fa:80:77:57:7c:c7:86:2a:d6:1d:91:c8:
91:96:4b:2e:85:6c:5a:97:7f:3f:c6:fc:1b:7d:e7:50:43:b4:
78:a5:8d:ee:0b:b6:dd:64:52:2b:5b:04:09:05:c9:ca:d7:58:
62:f1:7d:d3:de:3b:a4:94:04:93:14:7a:99:2f:74:70:c5:ed:
5a:a3:cc:4c:03:1f:e8:f9:95:a7:4c:85:5c:50:43:4d:7e:c7:
26:c8:7e:73:18:21:e9:de:59:1c:eb:35:64:e7:1d:73:d8:1f:
ee:72:6e:7e:93:fe:32:d0:e0:a0:e6:3e:6f:67:f9:f0:21:01:
ea:14:08:6a:3d:cd:2c:41:5a:da:71:dd:14:89:16:31:72:44:
6c:7f:f6:a1:1a:43:c0:1b:c5:01:cc:65:bb:7e:cc:9e:57:fe:
7e:f9:93:e1:cd:36:05:3f:8f:87:46:a8:5d:41:d3:fd:f4:1e:
19:73:4c:ef:a1:c6:9e:48:75:6f:b3:b1:20:2e:89:53:d1:71:
f7:4e:67:06:35:52:6e:6c:7d:4d:0f:79:98:44:27:12:15:6a:
61:76:d1:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:12 2026 by rpki-client