Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
File: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft (raw, json)
Hash identifier: ON/DBsYWH1Zv+AGI+x8hLcN6sUqm/fH2Oze4S/wuiD0=
Subject key identifier: D4:17:4E:E2:A1:F0:48:45:F1:67:EC:15:88:6A:C4:83:63:BA:E0:29
Authority key identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
Certificate issuer: /CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Certificate serial: 019D05536C91033D53526371F9F24518A174
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
Manifest number: 0F9D
Signing time: Thu 19 Mar 2026 09:00:46 +0000
Manifest this update: Thu 19 Mar 2026 09:00:46 +0000
Manifest next update: Fri 20 Mar 2026 09:00:46 +0000
Files and hashes: 1: 3xkUgPDW1_nU5u-zQWPWFuXblOU.roa (hash: TwymWVxNW7YipwcwZomXLwsBqGn5JSf6tMGWjIIvIuA=)
2: biwapYjW-yR38S3KZARQ10moe30.roa (hash: 1QN2loKj68piSOW4bamGYfAlPoY1h07q4+Z8Ry6dkfo=)
3: isbgVHj3TmGYN0uwFkd2CdHyHMU.roa (hash: QwGaFwSh5hfuRjoHH0+UtDhSsDuuueUvGza6DS4Ifsg=)
4: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl (hash: ERcWc675x/py9ECZXcbNBOZySD2ND7cqb1sWBhk9reI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Mar 2026 08:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:05:53:6c:91:03:3d:53:52:63:71:f9:f2:45:18:a1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Validity
Not Before: Mar 19 09:00:46 2026 GMT
Not After : Mar 20 09:00:46 2026 GMT
Subject: CN=d4174ee2a1f04845f167ec15886ac48363bae029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e4:a6:d4:1f:81:f6:fc:7f:b5:e4:56:f9:33:
11:ff:c5:f6:08:77:db:0f:9a:ce:f2:5c:96:ca:31:
09:5c:39:4d:6b:95:3b:5c:4a:ad:d9:16:97:29:00:
81:3f:62:a7:8a:65:82:db:f4:60:e6:4f:8a:a5:01:
c2:ad:40:ce:b4:e5:10:a3:ce:c4:1c:f0:70:9e:9b:
53:56:74:69:0c:79:13:bf:d4:20:7d:72:55:2e:06:
c6:01:90:76:09:1a:82:99:41:35:aa:de:b3:04:26:
c0:2e:d6:f0:98:65:60:e2:e5:0e:c7:6b:10:c0:63:
23:29:af:3a:7b:a3:e1:24:74:8d:68:86:39:4f:4b:
fb:ee:27:2f:21:64:51:d5:7a:a2:b1:60:8a:a8:da:
72:a0:24:97:b8:8f:6a:24:70:e6:44:95:65:9a:d4:
23:0c:69:3c:6d:06:2c:87:a9:f5:48:f6:51:99:5e:
a8:17:d8:9a:7d:64:f1:8f:3c:c6:3a:84:84:84:63:
6b:23:79:42:68:5d:c8:07:cc:2c:c1:66:81:25:63:
10:0d:aa:c5:f9:d7:1b:6c:58:44:77:04:c8:82:f7:
ee:3d:86:ac:17:4f:f7:7b:6b:35:c1:8f:79:09:42:
af:ba:95:a8:8d:71:44:3c:da:40:cb:36:b6:69:c1:
54:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:17:4E:E2:A1:F0:48:45:F1:67:EC:15:88:6A:C4:83:63:BA:E0:29
X509v3 Authority Key Identifier:
keyid:BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:7c:83:a0:4d:b3:3f:52:ce:b8:c5:d3:e2:d5:c6:e2:ff:c9:
68:66:53:2f:0d:b9:e8:3f:9f:82:15:df:e5:a0:ee:c0:57:8e:
c4:f5:96:3f:03:4c:cb:99:b1:02:49:38:04:aa:f7:d8:53:72:
01:14:a2:80:71:a6:f1:5d:17:53:ed:8a:1c:1a:ac:8a:0b:7c:
05:37:23:20:b9:ec:9b:30:96:98:f9:ca:fc:29:98:50:2b:a7:
9a:bd:ac:9c:6b:73:73:d4:5e:7a:1b:5c:c6:19:bd:59:b4:3b:
81:33:ae:fd:2e:94:77:83:64:3f:a2:9a:2f:31:a5:c3:42:92:
d1:ba:14:16:1e:75:29:04:d5:95:8a:1f:80:78:2d:55:e8:51:
51:17:17:ee:ec:18:2d:d6:2f:41:59:0b:a4:b4:a1:f0:d8:d0:
88:5a:fa:8d:33:44:5c:13:9f:90:75:06:67:1f:02:a1:8a:c5:
d3:98:15:99:e7:77:65:19:58:4d:17:fe:2e:d8:c5:bc:a7:03:
34:08:cf:e7:ba:28:a1:d4:d1:c7:27:bb:2f:3f:84:59:8d:b2:
18:5a:8c:b6:d8:00:f8:3a:82:cd:83:bf:a3:e3:6a:2d:29:27:
fa:e3:e7:0f:e8:b3:1a:d6:c1:8c:34:a0:dd:35:d9:ea:eb:22:
6b:d5:d0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 19 14:03:21 2026 by rpki-client