Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: WcUFqfDDtjHz0BYgo4TYI+4HsM6/D2azz4r/xoApXo0=
Subject key identifier: F3:B6:FE:FE:3C:CD:AE:DC:29:11:1E:DD:12:98:3B:94:BD:48:C4:51
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 019D39AE9435CC55C7FDADB3692F340E0DD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 0662
Signing time: Sun 29 Mar 2026 13:00:35 +0000
Manifest this update: Sun 29 Mar 2026 13:00:35 +0000
Manifest next update: Mon 30 Mar 2026 13:00:35 +0000
Files and hashes: 1: La2aKUWeZDjg9QmjOG5Ypn3DLPs.roa (hash: 0EBH5b7C6wuxTeA4u0lRX6AP5UIiFNUIOVkyZ9JGpK4=)
2: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: Pvm7ktlxhvCIcjkWvVq0ByBH3heLcc1qrXsatwfltjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:94:35:cc:55:c7:fd:ad:b3:69:2f:34:0e:0d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Mar 29 13:00:35 2026 GMT
Not After : Mar 30 13:00:35 2026 GMT
Subject: CN=f3b6fefe3ccdaedc29111edd12983b94bd48c451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4f:1d:39:55:d6:9b:79:ce:c8:a2:53:b4:e6:
f7:28:91:67:01:e7:ed:df:cb:6d:d5:f0:5e:96:57:
02:a8:d9:f5:d8:3b:77:c8:26:4c:14:67:2d:6b:36:
9c:e4:69:7b:75:ec:5a:c3:7f:c9:23:d6:b8:f5:b2:
9a:be:e5:f3:98:54:55:7a:09:7a:14:88:cc:a2:b8:
11:46:a6:72:76:89:81:d7:2c:01:9a:39:77:b2:9a:
51:76:aa:77:7d:b1:94:71:82:26:d8:9d:31:70:bf:
c7:25:27:da:ac:e3:9f:c5:5d:8d:66:17:31:02:6a:
6d:90:4c:19:d7:2b:a0:0b:dc:f9:8d:04:28:05:6a:
c8:c5:49:3f:69:d9:85:17:95:77:6b:1d:9e:1e:e2:
53:9e:8a:8d:2d:f0:16:de:84:33:a8:22:a8:fd:5d:
4d:99:a5:fe:90:09:0b:41:70:ee:c3:00:9d:c4:86:
5a:68:64:cb:cc:5f:ae:cf:25:78:9d:3a:4c:60:8d:
2a:c6:85:cd:93:5f:3f:f2:82:33:30:55:47:a2:28:
5f:d7:4a:c5:e7:23:ac:da:15:b8:63:cc:e7:a8:ed:
43:9d:26:a3:d5:82:7e:15:3b:ea:ad:56:9d:db:ab:
91:86:83:d9:10:d1:6e:3a:cf:02:ff:dc:f1:dd:22:
44:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B6:FE:FE:3C:CD:AE:DC:29:11:1E:DD:12:98:3B:94:BD:48:C4:51
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:31:a8:19:59:c9:2a:08:7a:b7:34:d3:06:93:c0:08:46:3e:
1f:a2:81:0f:e6:40:04:bb:de:14:47:85:14:ea:88:2d:da:b2:
4f:93:0a:fe:1d:eb:0d:a1:07:09:6f:81:83:f2:bc:c7:b3:ec:
ae:fd:f3:4e:a9:8b:7f:23:0e:03:09:c3:f8:a9:e0:00:e4:7c:
bb:2a:5e:e0:40:aa:b3:8b:12:a4:a2:5a:be:36:ec:f0:6d:0d:
4a:01:2a:69:26:76:ac:d0:4b:20:3c:10:0e:23:e9:f2:42:a2:
12:1f:77:18:56:4e:6d:5a:84:ba:63:6c:ec:f2:36:c8:b0:68:
e1:21:43:22:b3:c3:4d:6e:69:a3:4a:77:04:6a:5e:de:e3:db:
b8:07:00:d7:f4:a8:ea:89:a0:3f:3c:cd:15:b2:5d:16:ed:21:
8d:33:93:83:12:47:9e:c7:20:7d:de:6c:d2:d2:a0:28:12:26:
e2:69:a3:3b:2d:c3:bb:c0:96:ba:be:e9:8f:f4:c5:e6:fb:94:
7c:1b:f8:1e:06:11:5c:f3:b4:f0:22:74:17:97:91:fd:f7:3d:
92:5e:9d:ef:63:db:60:22:6b:8e:9b:a5:0d:c6:85:cf:c4:ff:
f2:f1:b5:54:8d:dd:a1:51:e9:8d:35:72:b4:1e:c0:46:99:69:
4b:49:e7:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rpQ1zFXH/a2zaS80Dg3WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYTY1YzYyODQ4M2E3NTY2ODhiYjE1OGMyOGFiN2MwZDQ3
ZGUyN2MwHhcNMjYwMzI5MTMwMDM1WhcNMjYwMzMwMTMwMDM1WjAzMTEwLwYDVQQD
EyhmM2I2ZmVmZTNjY2RhZWRjMjkxMTFlZGQxMjk4M2I5NGJkNDhjNDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnk8dOVXWm3nOyKJTtOb3KJFnAeft
38tt1fBellcCqNn12Dt3yCZMFGctazac5Gl7dexaw3/JI9a49bKavuXzmFRVegl6
FIjMorgRRqZydomB1ywBmjl3sppRdqp3fbGUcYIm2J0xcL/HJSfarOOfxV2NZhcx
AmptkEwZ1yugC9z5jQQoBWrIxUk/admFF5V3ax2eHuJTnoqNLfAW3oQzqCKo/V1N
maX+kAkLQXDuwwCdxIZaaGTLzF+uzyV4nTpMYI0qxoXNk18/8oIzMFVHoihf10rF
5yOs2hW4Y8znqO1DnSaj1YJ+FTvqrVad26uRhoPZENFuOs8C/9zx3SJE8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPO2/v48za7cKREe3RKYO5S9SMRRMB8GA1UdIwQY
MBaAFFKmXGKEg6dWaIuxWMKKt8DUfeJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMt
NTAxNWUxMjA4MTE5LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMtNTAxNWUxMjA4MTE5
LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXzGoGVnJ
Kgh6tzTTBpPACEY+H6KBD+ZABLveFEeFFOqILdqyT5MK/h3rDaEHCW+Bg/K8x7Ps
rv3zTqmLfyMOAwnD+KngAOR8uype4ECqs4sSpKJavjbs8G0NSgEqaSZ2rNBLIDwQ
DiPp8kKiEh93GFZObVqEumNs7PI2yLBo4SFDIrPDTW5po0p3BGpe3uPbuAcA1/So
6omgPzzNFbJdFu0hjTOTgxJHnscgfd5s0tKgKBIm4mmjOy3Du8CWur7pj/TF5vuU
fBv4HgYRXPO08CJ0F5eR/fc9kl6d72PbYCJrjpulDcaFz8T/8vG1VI3doVHpjTVy
tB7ARplpS0nnKA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 21:22:03 2026 by rpki-client