Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
File: UnB4bxfEG9AWJvctsjnyCLUYm7A.mft (raw, json)
Hash identifier: qzq7zjA5gIluNSpmWVnUsqQAjB0Q/RCM2IbNp8nVEcE=
Subject key identifier: D6:A9:BE:AA:63:D1:AC:A1:A7:BA:DD:B1:B0:3A:57:64:D6:A6:A7:6C
Authority key identifier: 52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
Certificate issuer: /CN=5270786f17c41bd01626f72db239f208b5189bb0
Certificate serial: 019D38D2E8DAFCDE35582A5E5ADA1A8881E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
Manifest number: 1893
Signing time: Sun 29 Mar 2026 09:00:39 +0000
Manifest this update: Sun 29 Mar 2026 09:00:39 +0000
Manifest next update: Mon 30 Mar 2026 09:00:39 +0000
Files and hashes: 1: UnB4bxfEG9AWJvctsjnyCLUYm7A.crl (hash: JXpJoq1zfW6W72uRsklK47V8U0Z+dpgmJtIIsjLeMRc=)
2: X1sqaOrwTlRea4PTO-bEVyyZxO4.roa (hash: 4Hp7TjPy2qpQAZmmlctfISCQD880xKjDbZIgwRkmGhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:e8:da:fc:de:35:58:2a:5e:5a:da:1a:88:81:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5270786f17c41bd01626f72db239f208b5189bb0
Validity
Not Before: Mar 29 09:00:39 2026 GMT
Not After : Mar 30 09:00:39 2026 GMT
Subject: CN=d6a9beaa63d1aca1a7baddb1b03a5764d6a6a76c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0a:a4:fa:0a:ab:13:18:95:87:42:15:22:67:
09:21:16:f1:f0:08:f9:63:6b:b9:37:09:bc:80:19:
2a:20:37:00:5f:25:76:a1:71:2a:ae:61:0c:ac:91:
8a:85:78:79:5c:30:56:09:b7:81:ba:78:82:ef:ae:
b4:52:c1:4c:81:2c:da:97:e0:8e:2e:2e:de:a9:56:
c3:30:d8:52:48:df:40:2e:6a:09:8f:a9:6e:42:46:
29:33:83:cb:a6:f8:35:70:5e:e9:71:da:51:e0:b8:
39:0f:cf:77:ca:c2:dc:62:8c:65:53:8d:8d:fa:48:
23:7a:65:18:60:8d:ab:9e:48:4f:b9:e3:e3:64:2b:
4b:fe:5d:31:c9:73:67:83:4f:f8:86:b5:5b:2b:50:
55:4b:d0:1e:dc:72:f1:4c:95:54:5b:de:bb:7d:f7:
4b:e5:75:dc:83:b8:83:fb:55:a9:31:c6:fc:7c:b0:
a4:4c:10:a0:77:80:ba:f3:68:50:ec:a4:44:a5:60:
31:bb:bb:dc:48:0d:21:76:fa:3a:3b:38:30:76:d4:
34:36:d2:b7:fb:cc:ff:4f:ae:c4:a4:c5:26:3a:cb:
65:55:be:d4:4f:30:05:8d:f7:e3:4a:53:3d:4a:7c:
41:7b:60:7a:76:e1:79:d6:ce:39:4e:de:37:c5:cd:
7d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A9:BE:AA:63:D1:AC:A1:A7:BA:DD:B1:B0:3A:57:64:D6:A6:A7:6C
X509v3 Authority Key Identifier:
keyid:52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:f6:31:1c:20:90:01:0d:38:10:5e:c1:74:43:f5:6f:d5:53:
9c:06:c5:25:fd:b1:f3:3d:fb:f7:8f:b4:d0:90:f5:d6:7a:c7:
cf:21:6d:4b:33:47:dd:34:6d:99:02:7a:ba:6e:84:6a:f7:63:
5b:2f:b7:85:7d:89:a5:4c:7d:83:39:47:b4:4f:6b:64:9d:ee:
28:6b:04:0f:46:84:b8:e1:41:b5:08:7e:9f:68:a3:92:0e:57:
3a:1b:d0:21:4f:22:d2:d7:3b:27:9a:1c:c7:bd:29:8e:bf:c4:
73:e4:9b:8b:4b:87:d0:72:00:02:0b:a1:b2:9f:14:59:0a:22:
fa:1d:3d:65:29:bf:6a:6f:e7:12:10:6b:52:5d:31:d0:d3:07:
ff:03:c0:39:30:42:27:7e:74:d3:b3:ae:76:ba:b6:9f:d2:59:
7f:38:5f:23:5b:5d:96:ab:9c:b1:a0:15:8b:7a:05:83:9a:04:
c3:ea:e2:e0:fb:66:40:26:29:6a:ab:f4:c5:fe:e9:19:3f:7d:
0b:df:40:fc:2d:00:95:36:37:c0:a4:62:ab:37:3a:f8:34:bd:
fe:7a:e9:90:d0:63:b8:42:39:61:94:e1:5c:62:c1:4d:ce:b1:
a5:fc:64:e2:12:2d:5d:a4:72:52:07:ed:71:50:98:89:f8:40:
b6:a8:24:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040uja/N41WCpeWtoaiIHpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNzA3ODZmMTdjNDFiZDAxNjI2ZjcyZGIyMzlmMjA4YjUx
ODliYjAwHhcNMjYwMzI5MDkwMDM5WhcNMjYwMzMwMDkwMDM5WjAzMTEwLwYDVQQD
EyhkNmE5YmVhYTYzZDFhY2ExYTdiYWRkYjFiMDNhNTc2NGQ2YTZhNzZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Aqk+gqrExiVh0IVImcJIRbx8Aj5
Y2u5Nwm8gBkqIDcAXyV2oXEqrmEMrJGKhXh5XDBWCbeBuniC7660UsFMgSzal+CO
Li7eqVbDMNhSSN9ALmoJj6luQkYpM4PLpvg1cF7pcdpR4Lg5D893ysLcYoxlU42N
+kgjemUYYI2rnkhPuePjZCtL/l0xyXNng0/4hrVbK1BVS9Ae3HLxTJVUW967ffdL
5XXcg7iD+1WpMcb8fLCkTBCgd4C682hQ7KREpWAxu7vcSA0hdvo6OzgwdtQ0NtK3
+8z/T67EpMUmOstlVb7UTzAFjffjSlM9SnxBe2B6duF51s45Tt43xc19BQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNapvqpj0ayhp7rdsbA6V2TWpqdsMB8GA1UdIwQY
MBaAFFJweG8XxBvQFib3LbI58gi1GJuwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW5CNGJ4ZkVHOUFXSnZjdHNqbnlDTFVZbTdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85ZDQzY2ItODQxYy00MGYyLTlkOWYt
NzVmNDdmMDdjNGUzLzEvVW5CNGJ4ZkVHOUFXSnZjdHNqbnlDTFVZbTdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC85ZDQzY2ItODQxYy00MGYyLTlkOWYtNzVmNDdmMDdjNGUz
LzEvVW5CNGJ4ZkVHOUFXSnZjdHNqbnlDTFVZbTdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsfYxHCCQ
AQ04EF7BdEP1b9VTnAbFJf2x8z3794+00JD11nrHzyFtSzNH3TRtmQJ6um6Eavdj
Wy+3hX2JpUx9gzlHtE9rZJ3uKGsED0aEuOFBtQh+n2ijkg5XOhvQIU8i0tc7J5oc
x70pjr/Ec+Sbi0uH0HIAAguhsp8UWQoi+h09ZSm/am/nEhBrUl0x0NMH/wPAOTBC
J35007Oudrq2n9JZfzhfI1tdlqucsaAVi3oFg5oEw+ri4PtmQCYpaqv0xf7pGT99
C99A/C0AlTY3wKRiqzc6+DS9/nrpkNBjuEI5YZThXGLBTc6xpfxk4hItXaRyUgft
cVCYifhAtqgkxQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:04:07 2026 by rpki-client