Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.mft
File: UFZxLM-od6u3YMt34nBBd0ywRzk.mft (raw, json)
Hash identifier: lLiFoPPo0mU9HJH3kj9GHHa0oZCT5+phLl3tsufcxEM=
Subject key identifier: F5:9F:FD:70:73:B2:34:B7:AA:E3:DB:9C:C8:51:85:4C:84:F7:F0:F5
Authority key identifier: 50:56:71:2C:CF:A8:77:AB:B7:60:CB:77:E2:70:41:77:4C:B0:47:39
Certificate issuer: /CN=5056712ccfa877abb760cb77e27041774cb04739
Certificate serial: 019D39417C9350F3C3E6FAFF2EA9ED91E5B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFZxLM-od6u3YMt34nBBd0ywRzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.mft
Manifest number: 1894
Signing time: Sun 29 Mar 2026 11:01:26 +0000
Manifest this update: Sun 29 Mar 2026 11:01:26 +0000
Manifest next update: Mon 30 Mar 2026 11:01:26 +0000
Files and hashes: 1: L5RtN4MYgylQB2sxCXbY7rkj9cw.roa (hash: qjznCSz3UWXsKIxhvu2fQzujS0se59sICJHUHPBxLVY=)
2: UFZxLM-od6u3YMt34nBBd0ywRzk.crl (hash: aTdLuwd6ii86ksHtKIueIwGTlopHvZ4+3Z0KeVVH6VM=)
3: ve2xnNSznR3jgazHd-AYZFn-sds.roa (hash: 23cgt8zKs/gW5LTZzpzr40f5utV3g89KsGnqM+0cNAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFZxLM-od6u3YMt34nBBd0ywRzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:7c:93:50:f3:c3:e6:fa:ff:2e:a9:ed:91:e5:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5056712ccfa877abb760cb77e27041774cb04739
Validity
Not Before: Mar 29 11:01:26 2026 GMT
Not After : Mar 30 11:01:26 2026 GMT
Subject: CN=f59ffd7073b234b7aae3db9cc851854c84f7f0f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e7:a0:27:50:aa:56:d4:29:23:3a:52:6c:d0:
f9:f6:0c:21:d1:41:34:84:83:19:25:db:bd:3c:d8:
f4:aa:04:7a:c1:96:57:7e:00:3b:fa:44:39:de:73:
15:61:4d:9f:5a:f1:99:93:c8:de:87:94:04:5c:01:
63:50:3c:a0:2d:f9:b2:11:ee:fc:d4:57:bc:0e:f6:
6a:19:e4:f0:4e:51:74:44:cf:3d:10:3b:ab:81:89:
11:ad:a0:16:38:2b:59:49:83:67:5c:9c:e0:d7:b6:
df:14:4b:e7:a6:41:01:9a:19:fb:85:b1:23:2a:59:
c9:72:c6:c2:0b:26:c6:04:95:fb:d3:12:68:c2:6a:
b7:c9:d8:41:7a:c0:1e:7a:b2:95:b3:54:92:de:f2:
a7:b7:ef:70:78:5a:bd:9f:11:b5:17:1b:2f:35:b5:
32:27:5c:b4:f6:e5:78:db:13:50:04:be:7a:0c:25:
72:ae:9c:ea:0d:d9:a0:ac:0a:ef:e0:89:54:e8:be:
3f:8e:86:3e:b5:36:a0:04:bb:c4:9b:fb:5e:a8:aa:
c1:94:7c:00:bb:2d:97:72:be:bf:a4:48:ff:ee:28:
a9:f5:ab:b2:d6:9a:55:25:a8:df:a4:09:84:bd:82:
83:7a:40:cc:c5:1d:47:7c:e2:6f:e9:e5:9f:41:3b:
3b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9F:FD:70:73:B2:34:B7:AA:E3:DB:9C:C8:51:85:4C:84:F7:F0:F5
X509v3 Authority Key Identifier:
keyid:50:56:71:2C:CF:A8:77:AB:B7:60:CB:77:E2:70:41:77:4C:B0:47:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFZxLM-od6u3YMt34nBBd0ywRzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:39:f1:6a:f9:45:7e:76:f1:e2:5e:53:d3:92:70:21:44:ab:
e7:f6:0f:20:53:40:61:50:c1:9a:b1:88:af:98:aa:94:92:b7:
03:7f:95:85:16:c1:89:f7:30:18:24:c4:da:21:c4:a9:6b:dd:
80:55:e7:3a:72:af:87:1b:ad:b4:54:7e:55:e4:18:28:b7:8c:
0d:aa:b8:f3:7b:6c:c0:9b:09:eb:cc:1b:95:44:8f:86:84:b3:
fc:ec:f5:d3:ef:d9:e1:4e:20:ae:68:97:12:3c:e1:a7:0a:2a:
2f:43:d4:45:9c:26:ba:7a:c6:de:dd:bb:12:c8:6e:42:5c:da:
ed:10:44:9a:2e:f1:57:e0:97:ef:3e:a7:3e:64:59:d4:e6:15:
6e:93:bd:0e:18:8a:0f:4c:7a:b4:67:f0:56:3b:59:bb:26:3d:
c7:64:7b:8f:95:4b:a7:a6:92:ae:ca:c4:48:b1:a7:ea:10:0b:
e8:e1:7d:66:5d:49:48:8e:ff:16:9c:3c:cd:a1:a5:e2:b3:bb:
a8:3e:b0:0d:fa:95:61:08:88:cb:c2:84:07:d2:67:89:94:b6:
61:34:52:89:9c:9f:f9:f3:f7:ef:cb:ee:b5:ea:43:26:be:01:
51:32:f5:c8:dd:61:b8:b1:3a:ff:3d:7c:63:e6:17:21:04:6c:
4f:6b:d8:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QXyTUPPD5vr/LqntkeW0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNTY3MTJjY2ZhODc3YWJiNzYwY2I3N2UyNzA0MTc3NGNi
MDQ3MzkwHhcNMjYwMzI5MTEwMTI2WhcNMjYwMzMwMTEwMTI2WjAzMTEwLwYDVQQD
EyhmNTlmZmQ3MDczYjIzNGI3YWFlM2RiOWNjODUxODU0Yzg0ZjdmMGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjuegJ1CqVtQpIzpSbND59gwh0UE0
hIMZJdu9PNj0qgR6wZZXfgA7+kQ53nMVYU2fWvGZk8jeh5QEXAFjUDygLfmyEe78
1Fe8DvZqGeTwTlF0RM89EDurgYkRraAWOCtZSYNnXJzg17bfFEvnpkEBmhn7hbEj
KlnJcsbCCybGBJX70xJowmq3ydhBesAeerKVs1SS3vKnt+9weFq9nxG1FxsvNbUy
J1y09uV42xNQBL56DCVyrpzqDdmgrArv4IlU6L4/joY+tTagBLvEm/teqKrBlHwA
uy2Xcr6/pEj/7iip9auy1ppVJajfpAmEvYKDekDMxR1HfOJv6eWfQTs7YwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPWf/XBzsjS3quPbnMhRhUyE9/D1MB8GA1UdIwQY
MBaAFFBWcSzPqHert2DLd+JwQXdMsEc5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZaeExNLW9kNnUzWU10MzRuQkJkMHl3UnprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS84ZDc5OGEtNzNkNy00NGJhLTk3ZGIt
Zjg0YjYwNTIxZGY1LzEvVUZaeExNLW9kNnUzWU10MzRuQkJkMHl3UnprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS84ZDc5OGEtNzNkNy00NGJhLTk3ZGItZjg0YjYwNTIxZGY1
LzEvVUZaeExNLW9kNnUzWU10MzRuQkJkMHl3UnprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASjnxavlF
fnbx4l5T05JwIUSr5/YPIFNAYVDBmrGIr5iqlJK3A3+VhRbBifcwGCTE2iHEqWvd
gFXnOnKvhxuttFR+VeQYKLeMDaq483tswJsJ68wblUSPhoSz/Oz10+/Z4U4grmiX
EjzhpwoqL0PURZwmunrG3t27EshuQlza7RBEmi7xV+CX7z6nPmRZ1OYVbpO9DhiK
D0x6tGfwVjtZuyY9x2R7j5VLp6aSrsrESLGn6hAL6OF9Zl1JSI7/Fpw8zaGl4rO7
qD6wDfqVYQiIy8KEB9JniZS2YTRSiZyf+fP378vutepDJr4BUTL1yN1huLE6/z18
Y+YXIQRsT2vYsw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:55:10 2026 by rpki-client