Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
File: UTIqxJAgylfHTzsUi8BBAsq63IM.mft (raw, json)
Hash identifier: NzfwqNMS0uIwSHcZy1rGYvHiLg3TlVYQ3bbS4YjOn2w=
Subject key identifier: 75:F4:4F:F4:3B:E0:E0:DB:2E:BC:97:EC:58:6E:85:B0:32:27:C4:03
Authority key identifier: 51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83
Certificate issuer: /CN=51322ac49020ca57c74f3b148bc04102cabadc83
Certificate serial: 019D37C0A37A928D76EF46A2A7B3DF7398FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
Manifest number: 136A
Signing time: Sun 29 Mar 2026 04:01:04 +0000
Manifest this update: Sun 29 Mar 2026 04:01:04 +0000
Manifest next update: Mon 30 Mar 2026 04:01:04 +0000
Files and hashes: 1: UTIqxJAgylfHTzsUi8BBAsq63IM.crl (hash: 3vEKdVQOmzW5yuJhWZttE0gM+txZnE6ITA2/frXIzSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a3:7a:92:8d:76:ef:46:a2:a7:b3:df:73:98:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51322ac49020ca57c74f3b148bc04102cabadc83
Validity
Not Before: Mar 29 04:01:04 2026 GMT
Not After : Mar 30 04:01:04 2026 GMT
Subject: CN=75f44ff43be0e0db2ebc97ec586e85b03227c403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8e:72:b3:62:1f:64:0d:e2:27:7b:99:25:e1:
c4:1c:1a:81:e0:2f:7c:d7:18:8e:13:dd:a8:fd:b8:
b2:1f:78:67:ce:00:12:7a:8c:93:87:95:2e:f3:b4:
76:9f:2b:12:ff:ef:70:9f:e6:47:3c:c8:5e:c5:5e:
48:05:c2:e6:c0:37:9e:e2:ed:35:b2:b8:c3:0b:1a:
d0:4b:77:a2:0d:88:d4:18:50:8e:14:08:6b:66:b6:
d4:04:7c:ac:c2:96:cb:59:f2:b0:e1:26:9a:8c:c9:
81:b8:e3:59:e7:1c:aa:fe:c6:c3:82:58:4e:b7:6d:
8d:bd:73:20:8d:4f:84:76:b9:8c:80:a7:ad:2c:71:
d3:97:6f:4a:a2:07:b0:19:5a:f9:c1:a2:78:f3:ca:
42:c9:64:e3:33:f8:c0:c0:ae:89:5c:ee:ad:cf:ae:
cd:55:0d:7c:07:12:39:aa:35:5b:3b:50:e0:c3:89:
97:a2:4b:41:d9:e0:0b:8a:83:2e:7e:75:75:69:6f:
03:6d:58:a2:cc:39:ab:fd:02:52:5b:24:c3:e2:2d:
f8:12:f6:b1:bc:5e:f0:7d:ac:36:a0:1e:1b:5d:7f:
03:6e:4c:2d:c5:6f:04:66:f2:c5:7e:f5:5c:7d:76:
a3:d7:29:4d:c4:d0:b7:0d:ac:2c:de:09:8e:76:22:
1b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F4:4F:F4:3B:E0:E0:DB:2E:BC:97:EC:58:6E:85:B0:32:27:C4:03
X509v3 Authority Key Identifier:
keyid:51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:46:9f:0b:e2:6d:69:cf:e5:8f:7c:26:92:3e:ca:3d:dc:d6:
13:5a:c9:80:0e:83:3b:0c:3b:18:29:dc:98:60:89:d4:4a:91:
60:b2:bb:67:dd:85:15:86:0f:8b:4e:53:ef:15:a2:33:ae:c4:
85:db:c7:9e:b9:9f:e6:b0:d7:e5:e8:54:3b:d0:95:25:3d:b6:
9b:77:f9:38:96:2d:a6:20:01:96:43:14:97:28:05:57:db:92:
6f:81:e2:3f:b1:90:0f:78:82:bd:c7:4d:11:73:75:b7:8a:64:
9a:60:27:c9:f9:09:8f:4c:7e:d5:bd:21:9f:b5:8e:a8:36:93:
a5:9c:10:13:c4:77:3a:e6:c8:ed:24:c3:79:36:b4:07:4e:d8:
ce:ea:35:a2:98:63:7b:82:e7:af:81:2f:59:3a:34:b5:d6:3f:
07:36:fd:6e:af:d6:65:e7:21:33:78:2d:46:bd:f0:d4:d1:66:
83:da:64:37:dc:d2:3b:73:7a:10:66:5d:e8:27:a2:7d:0f:49:
61:17:58:ed:87:7c:79:c8:2e:e8:84:b1:da:60:23:ea:5e:a8:
57:10:6a:9f:34:a8:ee:96:4d:21:23:5f:c0:91:b6:21:24:2e:
f9:82:99:86:9c:a1:ff:06:8f:fc:62:f9:e0:b7:f8:f6:48:e0:
46:52:83:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:08:32 2026 by rpki-client