Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json)
Hash identifier: Mpcnc3y1KiykApAyacwZY11IyJHzNx/xfw10OXea2ck=
Subject key identifier: B2:9F:F1:21:3A:ED:94:3D:EC:A9:8B:2B:07:7D:18:15:D2:5E:BB:8D
Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Certificate serial: 019CEAEF2DAD31660B6E8A3011D44E1A181F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
Manifest number: 08F4
Signing time: Sat 14 Mar 2026 06:01:09 +0000
Manifest this update: Sat 14 Mar 2026 06:01:09 +0000
Manifest next update: Sun 15 Mar 2026 06:01:09 +0000
Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: EfTk1LLFC+EsNBUViKTPMHhp/DouFgkV/UYWLAzxhJg=)
2: XcRX1RAJL4NGdzyun1ejeZqAF24.roa (hash: YNAZegeHiWzquonxoxjxpFIiVyp3kn/I+1eygwpZVIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 03:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ea:ef:2d:ad:31:66:0b:6e:8a:30:11:d4:4e:1a:18:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Validity
Not Before: Mar 14 06:01:09 2026 GMT
Not After : Mar 15 06:01:09 2026 GMT
Subject: CN=b29ff1213aed943deca98b2b077d1815d25ebb8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:34:b5:8c:5f:bb:0e:cd:70:d0:32:12:20:2a:
fa:f1:6b:4f:dc:dc:cb:13:91:ad:4d:b4:4f:68:19:
65:7b:df:8c:04:3a:07:a2:b3:ae:39:4b:70:3b:f3:
83:d9:2f:69:9e:00:4f:63:9e:c2:a5:bc:8e:b3:6f:
69:5e:5e:cf:ad:74:09:88:b5:be:77:10:0a:49:cf:
40:3a:e9:53:cd:87:ea:64:20:31:a3:bf:63:9a:fb:
48:d2:61:f1:cc:dc:63:28:4e:47:d5:0f:8b:2c:7f:
99:13:34:58:30:02:a3:e1:5b:d4:f5:95:87:1a:81:
92:49:ac:25:fb:9e:82:98:30:1e:c6:76:ea:cb:5b:
8a:c7:f7:0f:a2:b7:e8:d1:89:33:43:44:a7:c3:a9:
ad:5c:62:37:e0:9f:86:8f:66:16:47:a7:36:da:8b:
8f:03:8e:4f:64:76:c3:f7:69:2d:d9:e1:b9:4f:91:
51:6c:8a:a7:17:3f:fd:2d:6e:b4:72:1f:13:29:ae:
2c:93:45:a3:f6:dd:a3:2d:c5:10:c7:13:d3:79:da:
cd:e3:31:72:8e:a0:91:18:25:dc:ea:75:94:3c:2c:
b3:b0:c4:2b:ce:97:fa:b2:40:b6:e0:ae:54:5c:45:
3d:d2:dd:70:c4:63:e7:2b:3f:e8:0a:8c:61:d0:91:
6a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9F:F1:21:3A:ED:94:3D:EC:A9:8B:2B:07:7D:18:15:D2:5E:BB:8D
X509v3 Authority Key Identifier:
keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:2c:ad:90:42:70:26:ec:81:c4:12:d3:9a:58:af:4a:31:bc:
61:a4:96:a1:f3:ea:37:58:02:da:86:4b:a1:d4:84:f8:30:f6:
04:3c:c8:5e:3a:97:92:7c:d4:8c:44:0d:d1:f0:7a:33:40:d3:
38:1f:03:92:76:f3:be:07:13:12:07:3e:c9:b0:92:f6:2d:fb:
32:ae:64:ec:2e:9d:6d:78:f9:01:e6:53:0b:2b:a1:1c:82:3e:
dc:0a:40:cd:35:06:e4:f2:da:6d:e2:01:e4:35:f1:2c:bd:d5:
d6:43:dc:97:f5:1d:7d:b9:46:f6:42:92:a8:f9:7b:97:54:4e:
3d:90:e1:be:64:e4:4b:fa:4a:ad:4c:0c:11:0a:45:1c:fc:9f:
f9:73:98:9c:5f:ff:44:d2:cf:68:19:b5:c2:0a:4c:66:9f:5e:
ee:c8:15:d8:ad:1c:b1:44:a2:ed:e9:90:69:e7:76:f6:8a:92:
e2:b2:09:05:0a:ae:5b:90:ea:0f:d7:ea:ed:f9:6d:55:ca:47:
76:90:3e:1e:cd:79:07:88:d4:bf:b3:a6:1a:0b:ff:b8:e2:af:
ad:b3:63:ae:66:ef:fa:5f:b8:28:56:0c:f3:14:23:39:9b:ec:
c0:f9:3a:1b:e5:b4:53:dd:cf:0f:ce:0f:40:e7:bf:a9:9d:8a:
88:f1:b5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 10:44:29 2026 by rpki-client