Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
File: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft (raw, json)
Hash identifier: uwPwhHRYtn55HZYAqzQehUSPcXhMWPHW9L0JwSWuAz8=
Subject key identifier: 67:8B:88:DD:6B:0D:BB:4C:8A:EE:85:44:F4:F7:0D:25:51:37:E1:B5
Authority key identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
Certificate issuer: /CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Certificate serial: 019DED11ADD0DD24539DD22F55CD913671F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
Manifest number: 1015
Signing time: Sun 03 May 2026 09:00:51 +0000
Manifest this update: Sun 03 May 2026 09:00:51 +0000
Manifest next update: Mon 04 May 2026 09:00:51 +0000
Files and hashes: 1: 3xkUgPDW1_nU5u-zQWPWFuXblOU.roa (hash: TwymWVxNW7YipwcwZomXLwsBqGn5JSf6tMGWjIIvIuA=)
2: biwapYjW-yR38S3KZARQ10moe30.roa (hash: 1QN2loKj68piSOW4bamGYfAlPoY1h07q4+Z8Ry6dkfo=)
3: isbgVHj3TmGYN0uwFkd2CdHyHMU.roa (hash: QwGaFwSh5hfuRjoHH0+UtDhSsDuuueUvGza6DS4Ifsg=)
4: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl (hash: sDIkdHsGNLOE7E8IBKoUKBd1AwYCSyj/WWdAiI5Y1Vw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 09:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ed:11:ad:d0:dd:24:53:9d:d2:2f:55:cd:91:36:71:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Validity
Not Before: May 3 09:00:51 2026 GMT
Not After : May 4 09:00:51 2026 GMT
Subject: CN=678b88dd6b0dbb4c8aee8544f4f70d255137e1b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e4:67:0d:fb:8e:17:f9:34:8f:97:52:a8:f3:
92:73:90:7e:db:75:dd:e8:d8:fa:47:63:92:92:1d:
fe:c3:e8:64:ed:8b:53:0b:d9:a7:1c:26:a8:18:85:
e1:67:b2:80:88:07:8f:a8:84:e4:26:25:4a:df:b3:
9d:fe:05:21:9b:9b:1c:85:2b:2d:ae:55:fa:52:19:
e0:c7:f0:8a:39:fb:8e:f2:1d:9e:ed:5d:2c:ef:e1:
c4:0e:d8:8c:db:de:80:b2:74:ec:1b:02:ed:a1:9c:
dd:06:15:9f:cc:ca:b5:0d:b5:33:a7:0e:bc:20:66:
7c:74:b1:51:86:02:6d:06:7f:fc:cc:00:1e:67:c1:
fc:88:4c:c4:21:04:0d:e4:17:47:78:90:84:63:6e:
ab:c5:a4:90:3a:b2:ee:c6:cd:a3:7f:db:57:20:de:
36:e2:77:ab:43:5d:d4:a7:77:3c:85:a2:3f:c6:06:
63:44:54:29:7e:92:79:26:d0:b4:45:78:d1:cd:5f:
f1:ef:31:c4:93:1e:73:be:88:52:b6:24:dd:81:34:
ec:44:42:d6:8a:04:e0:99:1b:8f:46:94:8e:76:19:
d2:ad:66:1d:06:49:cf:2b:c1:09:9d:c2:3c:d4:dc:
3e:74:b7:c3:8c:d7:a5:b7:88:a2:84:59:df:81:12:
3b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:8B:88:DD:6B:0D:BB:4C:8A:EE:85:44:F4:F7:0D:25:51:37:E1:B5
X509v3 Authority Key Identifier:
keyid:BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:18:89:6b:ca:dc:17:f9:dc:20:97:b2:ea:95:13:31:21:04:
90:ad:b1:b0:d3:ad:3a:3c:73:e3:ff:e0:79:46:34:e9:0a:38:
70:b7:9e:26:e4:e2:48:37:f8:68:e8:c2:63:25:67:c5:60:5c:
e4:14:d9:8d:0e:9d:df:73:38:50:90:86:e5:76:dc:b6:4b:12:
6e:31:ae:01:ce:af:5f:57:20:b4:7b:94:14:e6:c4:3f:24:a6:
bc:e0:e8:3b:84:da:c0:f2:b6:41:ef:82:f3:35:44:e2:80:0e:
da:b0:57:0a:d9:68:92:e3:15:1d:29:1d:e6:7d:cb:6d:70:f2:
09:89:43:71:64:2d:96:1c:39:ba:4c:24:44:64:4c:54:35:15:
b1:16:f2:48:79:87:15:d1:4b:ab:11:0c:85:82:4a:1d:1f:a4:
5c:e6:88:00:ba:1d:0b:d7:01:f2:37:88:d8:29:7e:e9:64:f5:
80:f3:e1:0d:f2:16:3b:e3:78:ce:f0:48:78:73:db:27:19:a5:
09:c6:0b:5d:2d:9c:24:2a:b8:54:81:fd:52:d5:0b:30:8c:fd:
15:37:b1:02:37:b3:25:a5:47:4f:0a:65:a4:10:00:1f:52:6a:
07:a5:39:02:e9:7d:5b:26:b0:63:9b:c4:2e:4f:67:cd:10:91:
7b:05:11:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 17:06:00 2026 by rpki-client