Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
File: uHt2aWhxYpblu6C86DhWrnFluLg.mft (raw, json)
Hash identifier: wnQs4t/PvcleNe+0Ke+Ht3Lqm+8U7ad4rNXCZxMSGP8=
Subject key identifier: 53:A3:AB:E5:92:1E:4F:0E:15:4F:EA:B5:3E:62:28:B9:AF:6A:5D:A3
Authority key identifier: B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
Certificate issuer: /CN=b87b766968716296e5bba0bce83856ae7165b8b8
Certificate serial: 019E7D43881BC87555D2FE4FF33EE7A2427F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
Manifest number: 193E
Signing time: Sun 31 May 2026 09:00:38 +0000
Manifest this update: Sun 31 May 2026 09:00:38 +0000
Manifest next update: Mon 01 Jun 2026 09:00:38 +0000
Files and hashes: 1: UybLyc41wyq1EFImSu8EZ8F9ePY.roa (hash: uoRuUCd9kxaIGLIP2zdwMd/9Cx50ab0dt0v8YUxq+5M=)
2: _9wTHX3cjznzX1cGZZv1QLly23A.roa (hash: sMqmwh/SXLdaeDaF/VXKg3vRCCuPQk7by10Th5+s01k=)
3: uHt2aWhxYpblu6C86DhWrnFluLg.crl (hash: I3ZTcu+bHMQvWHykCNw3JlPpV1L2A7oe4DIrTknhvbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7d:43:88:1b:c8:75:55:d2:fe:4f:f3:3e:e7:a2:42:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87b766968716296e5bba0bce83856ae7165b8b8
Validity
Not Before: May 31 09:00:38 2026 GMT
Not After : Jun 1 09:00:38 2026 GMT
Subject: CN=53a3abe5921e4f0e154feab53e6228b9af6a5da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:a6:52:01:fd:4d:4a:6e:1a:6e:50:9c:ab:
02:a1:0e:78:02:6d:c1:81:55:00:79:fa:4d:a8:4b:
75:5c:57:ab:72:b0:58:d7:7e:ae:5d:f8:de:18:50:
85:46:c6:7d:5c:e6:e6:02:a4:e9:f0:78:4c:3a:1e:
93:44:12:d6:73:7d:4f:f7:f2:53:86:16:46:e9:83:
05:ec:6f:ff:d5:c9:74:77:7a:50:c2:e4:4a:fe:ef:
d3:08:24:aa:35:20:f6:98:5a:06:89:70:9d:da:0d:
fc:05:50:c4:fd:e1:80:a9:2e:6d:ba:85:d4:9f:d3:
27:d6:0f:4d:44:89:ed:21:6f:b6:e8:2e:bc:5b:19:
0f:ad:1f:13:e9:b0:09:44:dc:3b:7f:da:a6:a1:94:
90:c0:7a:9e:31:1f:14:a2:15:8d:47:d8:d6:82:f4:
76:b7:f0:a2:a7:85:68:9d:c4:80:b7:ee:f7:1f:ce:
97:ba:b2:8c:15:ff:63:b5:b0:74:6a:e0:48:7b:57:
f0:01:3c:ec:99:8f:c8:97:5e:df:64:f4:40:e6:5b:
57:5c:df:ed:e7:4b:78:38:d3:29:21:ef:7c:da:cf:
e1:66:7c:b1:7f:09:82:2a:a3:22:5a:42:e9:34:f9:
f0:70:44:e1:90:bf:82:4b:d3:d6:d1:60:6e:2d:2f:
66:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A3:AB:E5:92:1E:4F:0E:15:4F:EA:B5:3E:62:28:B9:AF:6A:5D:A3
X509v3 Authority Key Identifier:
keyid:B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:21:5a:72:53:65:0c:ba:db:a4:4d:a4:55:79:fc:71:3b:a7:
ac:6b:a8:5f:56:69:de:d4:54:f8:df:01:ce:4c:56:ef:a5:ca:
35:95:be:bc:bd:34:ac:99:7e:7f:96:e1:06:2c:4a:77:8a:85:
7c:3c:eb:be:cd:e6:9b:a5:54:e1:63:74:c2:86:a0:23:db:de:
d9:5a:2c:49:d7:f1:8b:99:c7:2c:3a:4e:0a:dc:96:79:de:16:
ae:10:e2:a0:cb:a8:d9:e4:ab:a4:5e:09:2c:63:29:21:b7:53:
ea:06:e4:39:81:68:71:42:f8:45:5b:58:16:31:9f:5f:0f:6c:
a0:f2:f8:e4:0a:af:b0:54:cd:7b:cb:be:39:eb:2d:ed:61:ee:
d2:0a:41:83:d5:d7:76:bd:58:de:26:3b:43:0f:0c:e2:ab:2a:
44:6d:8e:46:70:78:3b:c0:01:d0:93:f2:07:97:ed:b4:9f:04:
f7:7f:ac:13:38:3f:1b:84:aa:37:48:91:be:3d:e6:7a:be:b7:
2e:d8:5f:e2:cc:62:4b:7e:b6:b1:1a:81:f0:1a:56:ae:71:81:
71:63:5d:22:98:f2:f2:ff:a7:3e:e7:38:4e:93:69:0a:26:53:
93:18:7e:66:41:51:08:91:bb:ec:db:0b:0e:e8:ad:ec:5b:9c:
60:82:78:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 31 11:36:56 2026 by rpki-client