Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json)
Hash identifier: ORrAHxJCRPc/MFKF/gC9zDbt/i1fPM2sE83j2ZexYhA=
Subject key identifier: DA:56:89:A5:0E:C9:4D:CE:2C:5A:4F:68:05:F0:E0:26:CB:30:D4:28
Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Certificate serial: 019DDE442C54BEF1D532522EB28803B3C92D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
Manifest number: 0972
Signing time: Thu 30 Apr 2026 12:01:42 +0000
Manifest this update: Thu 30 Apr 2026 12:01:42 +0000
Manifest next update: Fri 01 May 2026 12:01:42 +0000
Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: dCksPmJk510J/xiAINDVRaySOwcY2YOE3bGYrVo7D0A=)
2: XcRX1RAJL4NGdzyun1ejeZqAF24.roa (hash: YNAZegeHiWzquonxoxjxpFIiVyp3kn/I+1eygwpZVIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 12:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:de:44:2c:54:be:f1:d5:32:52:2e:b2:88:03:b3:c9:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Validity
Not Before: Apr 30 12:01:42 2026 GMT
Not After : May 1 12:01:42 2026 GMT
Subject: CN=da5689a50ec94dce2c5a4f6805f0e026cb30d428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e6:8e:08:27:5b:e7:8e:bc:7b:bc:3c:1e:df:
7d:b7:90:ee:02:24:87:cf:29:3a:b1:57:40:9b:4a:
6c:8d:ad:e9:65:e9:af:a4:50:f5:04:42:23:13:78:
30:a4:fc:de:f0:14:c3:1c:1a:63:97:05:f7:56:b5:
59:34:24:53:d3:e7:9e:10:aa:b8:21:a1:cd:24:79:
e7:bc:d3:09:3b:ea:a3:83:cc:8f:e7:27:42:d7:0f:
df:a0:68:d9:72:3a:6a:a6:e7:04:a9:05:3a:15:bf:
e8:c5:2f:82:8b:9e:9b:a8:af:b8:0e:86:2b:07:28:
36:34:b1:a5:b2:ca:33:26:aa:4f:fc:90:2e:1c:6d:
a8:13:8f:01:91:e8:0d:96:df:30:af:40:d0:07:b0:
4f:bf:96:c9:ec:61:88:0c:a5:74:ef:70:ff:75:3e:
f6:2c:2f:fa:61:8f:d9:ea:0a:2c:8b:7e:a1:bd:4e:
e9:ed:29:79:47:e7:a7:8f:11:35:65:0a:8c:64:03:
f7:27:89:e1:2e:25:e2:1d:ad:96:a4:f5:fb:50:82:
c7:10:41:db:5c:a7:a7:6a:86:22:5e:65:db:cf:6a:
75:0c:f7:5a:0f:c6:14:79:27:51:10:73:8e:dd:6b:
a7:15:88:56:b3:33:4d:15:50:d9:0f:e9:81:3e:b1:
4a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:56:89:A5:0E:C9:4D:CE:2C:5A:4F:68:05:F0:E0:26:CB:30:D4:28
X509v3 Authority Key Identifier:
keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:03:a3:a2:51:c6:be:3f:e2:aa:b1:d0:45:31:b6:2a:db:16:
78:eb:36:51:00:ab:c1:1c:c4:6c:77:df:37:55:db:05:67:09:
f7:0c:f9:ac:2d:cb:e6:68:57:17:d7:77:b6:58:8f:11:74:e8:
9f:d0:43:a4:d7:c6:df:a4:63:1d:d9:65:d0:f9:40:d6:c6:83:
9a:a5:d9:3a:c8:93:2e:3d:6b:d1:09:47:63:2b:90:5d:e2:b3:
e4:e8:07:1e:10:f8:64:6e:f2:00:95:7e:18:1a:3e:ab:8d:43:
8f:c8:29:8a:c8:c9:27:c0:dc:7c:d9:84:cb:d0:19:1f:40:ff:
3a:34:4a:5c:ca:91:19:0e:f9:2e:92:13:8c:fc:e1:ef:a9:4a:
8a:20:8a:b3:c8:4d:d3:cf:33:6b:cd:a4:4d:aa:bb:97:04:a5:
d0:9c:e7:1c:58:b4:7e:2f:cd:e0:3a:1f:f1:71:f3:fd:f7:bb:
05:78:75:cd:75:f6:c2:0d:bb:03:ab:e2:4d:75:09:4f:f0:63:
0b:1e:f0:1d:af:bf:a9:78:d1:3e:35:46:af:3d:79:ea:b0:e2:
a3:ab:28:d1:ca:0b:d5:53:44:67:d9:77:31:2d:b0:8e:bf:95:
67:16:4c:62:60:ed:60:65:4e:55:74:19:73:8e:ee:a2:2f:bf:
7c:29:9b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 16:43:19 2026 by rpki-client