Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
File: uHt2aWhxYpblu6C86DhWrnFluLg.mft (raw, json)
Hash identifier: R67+NI5uOTvFv+0yarDqWhOl02lVWylFeDyBBLDmvmQ=
Subject key identifier: 17:E5:8F:AD:B2:9D:A2:35:5E:57:10:34:71:A8:4D:67:76:1F:21:5E
Authority key identifier: B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
Certificate issuer: /CN=b87b766968716296e5bba0bce83856ae7165b8b8
Certificate serial: 019D38D3C587947460DFF2165D98ABF471C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
Manifest number: 1896
Signing time: Sun 29 Mar 2026 09:01:35 +0000
Manifest this update: Sun 29 Mar 2026 09:01:35 +0000
Manifest next update: Mon 30 Mar 2026 09:01:35 +0000
Files and hashes: 1: UybLyc41wyq1EFImSu8EZ8F9ePY.roa (hash: uoRuUCd9kxaIGLIP2zdwMd/9Cx50ab0dt0v8YUxq+5M=)
2: _9wTHX3cjznzX1cGZZv1QLly23A.roa (hash: sMqmwh/SXLdaeDaF/VXKg3vRCCuPQk7by10Th5+s01k=)
3: uHt2aWhxYpblu6C86DhWrnFluLg.crl (hash: iQny1cP5upKAqGn/U8Zkn4yXJiDVOMx0IEBw/WVwZgY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:c5:87:94:74:60:df:f2:16:5d:98:ab:f4:71:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87b766968716296e5bba0bce83856ae7165b8b8
Validity
Not Before: Mar 29 09:01:35 2026 GMT
Not After : Mar 30 09:01:35 2026 GMT
Subject: CN=17e58fadb29da2355e57103471a84d67761f215e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:78:a5:2f:82:d5:b0:20:a0:e3:98:94:17:12:
13:79:e9:b4:f8:af:1a:dc:ce:89:7b:1e:a4:c4:c5:
cc:55:b5:ab:57:cb:03:47:66:20:e9:66:64:59:0e:
26:ba:ff:97:b7:21:01:b2:1d:5f:70:5e:4e:93:eb:
44:c2:5d:6b:54:55:22:4b:91:4e:d1:8c:15:8b:3c:
17:6d:06:55:61:eb:74:59:a4:b1:6f:92:06:e2:ad:
dd:fe:74:02:97:89:50:9a:0c:3b:09:98:25:a6:2a:
2c:a0:ce:62:6c:84:49:ef:e6:d1:b2:58:74:ee:41:
09:ff:c3:3c:3f:08:4a:d9:29:b1:4d:3a:8d:ba:fa:
a4:a5:2a:f6:80:a0:9a:69:10:28:16:b7:7a:c0:e9:
ae:83:3f:1b:29:dd:b0:ed:10:67:1d:73:62:10:8f:
6e:45:82:53:38:69:b4:3f:bc:68:5d:fb:38:7b:ed:
79:4f:7e:e2:8d:98:3b:53:be:b7:f2:1d:be:eb:e3:
03:36:7b:15:bb:f7:3f:46:54:bc:bd:3a:79:a8:7b:
2e:df:d0:24:d5:a1:fb:1b:f8:50:07:a7:25:78:b0:
c6:34:09:9b:37:31:ea:d7:bd:66:12:fa:f9:89:2d:
e6:f5:f7:80:70:9e:5c:a5:47:37:fe:b1:33:69:85:
b8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E5:8F:AD:B2:9D:A2:35:5E:57:10:34:71:A8:4D:67:76:1F:21:5E
X509v3 Authority Key Identifier:
keyid:B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:74:a7:c4:6d:2a:58:a1:a2:e7:0a:2e:fe:77:7a:22:93:3c:
48:96:cc:b4:0f:16:31:67:96:28:7a:76:6a:6e:6d:34:3c:d3:
ef:5d:df:11:e3:4e:0e:95:1e:7b:ee:51:c4:26:d9:39:32:ae:
0d:11:2a:fe:f0:8e:0d:9b:bc:bd:59:ef:28:e9:8d:b0:e7:9e:
ed:08:76:69:6d:4b:2e:ea:e8:ac:df:c6:b3:eb:26:ac:cb:d0:
ae:c2:32:31:ad:c3:af:8c:45:9d:07:4d:4b:f2:54:d9:35:64:
0d:71:15:1e:c8:10:45:f9:fa:29:36:80:fd:10:ed:cc:1a:5b:
5b:c3:0b:eb:df:e3:3b:b1:8d:f9:71:94:2f:ff:de:61:23:71:
6f:4f:70:90:78:96:f8:68:aa:54:f3:bb:58:b1:33:2f:df:3d:
94:6a:16:c2:fd:dd:59:3a:c6:b0:75:b5:a4:85:58:0d:25:7b:
f6:ec:a9:94:f8:ba:86:5a:2a:ae:70:4c:90:e1:71:6a:9e:95:
df:8e:4a:2c:6e:97:af:91:f8:86:4a:68:2a:8d:bf:54:55:f8:
bd:97:4b:8f:09:c2:f6:ff:ea:1c:ff:2b:79:b6:bc:df:3e:ed:
04:d9:df:a0:e9:2f:5b:e9:9a:d1:5e:26:5d:82:0a:8b:7f:84:
a0:79:00:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:47 2026 by rpki-client