Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
File: uwoTocnh3YTt5DKDSQvng4d1SpQ.mft (raw, json)
Hash identifier: hmJpodWh/OD7LkMPGNBdzHQTmSwO1w0WJSAH21mGCF4=
Subject key identifier: 10:8B:A1:AC:FE:B4:82:09:76:13:8D:3D:8D:EE:CA:1F:70:52:74:E2
Authority key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
Certificate issuer: /CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Certificate serial: 019D389C49FC775B457D9AA6B6D40EDFB2B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 08:00:59 +0000
Manifest this update: Sun 29 Mar 2026 08:00:59 +0000
Manifest next update: Mon 30 Mar 2026 08:00:59 +0000
Files and hashes: 1: k8cdudOxt-UXEB9vti7Ssvsk5vU.roa (hash: Is0dEg8TeiJuTJaXHNZDTXw2F+T/OPQFA/UKJWJv0ys=)
2: uwoTocnh3YTt5DKDSQvng4d1SpQ.crl (hash: ku7hrTK0rpl7+zt8IeivYVsV37dt4sugdIJk4o1Dj+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:49:fc:77:5b:45:7d:9a:a6:b6:d4:0e:df:b2:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Validity
Not Before: Mar 29 08:00:59 2026 GMT
Not After : Mar 30 08:00:59 2026 GMT
Subject: CN=108ba1acfeb4820976138d3d8deeca1f705274e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b7:ff:ab:f6:7f:69:25:ae:81:a6:9b:bd:a5:
93:b8:13:ce:af:9e:83:89:1d:17:af:9e:66:22:ff:
53:38:13:64:63:f4:c3:5a:ac:fb:7e:53:56:ad:d6:
f4:d8:40:5e:44:a4:4e:0f:82:d0:22:13:b9:dc:48:
37:50:af:77:de:42:b0:40:9e:e5:4b:f3:6d:d3:5a:
73:50:ae:4a:3a:48:49:93:30:15:2b:b7:a4:c9:dc:
74:18:4a:0f:53:30:31:2a:03:01:c9:a0:5b:e5:e8:
f0:9a:97:bc:4c:4a:c0:e4:2e:3c:95:64:72:f9:c4:
bd:f4:c3:0d:ed:c2:fd:62:9a:6c:a4:af:dd:d5:7b:
54:a8:6c:31:4c:24:c1:00:95:3f:cf:d6:ed:ac:bc:
0d:b5:d1:55:d4:e2:65:4a:56:17:5e:b4:07:dd:72:
ea:37:bb:e5:29:04:7b:32:4f:3a:84:4c:7e:93:36:
fb:63:29:1f:6f:59:73:9e:96:68:5d:fd:06:2e:a8:
5f:8b:83:a4:9d:54:5a:d7:85:82:4c:31:ed:f5:2e:
c4:1a:cb:17:cb:79:84:06:95:e7:69:35:db:8b:26:
8a:81:fd:6e:23:55:6b:84:c0:cb:99:a7:11:d8:6f:
79:b1:d0:26:44:10:12:8d:5f:69:13:1d:64:53:3e:
0e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8B:A1:AC:FE:B4:82:09:76:13:8D:3D:8D:EE:CA:1F:70:52:74:E2
X509v3 Authority Key Identifier:
keyid:BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:31:48:33:50:30:e6:b7:b2:36:d3:73:b9:5a:44:b8:60:44:
28:74:09:4f:aa:8b:e2:3a:22:89:fa:25:4c:b3:43:8c:0a:06:
0d:ef:8f:00:63:c8:90:5b:c9:8e:dc:b9:a9:a9:41:d6:da:53:
20:4a:66:f0:72:b0:2f:5e:3a:9b:65:c8:77:23:5e:14:c1:ff:
0e:b9:6b:88:72:a4:8b:dc:37:2a:19:92:3e:6d:1a:58:1a:9d:
ea:14:d2:cc:bb:95:dd:6e:55:6e:a2:c4:6a:c9:61:f4:f5:74:
ac:d1:0a:a4:0d:39:dc:19:68:f1:1a:62:f6:12:6b:ef:d7:d1:
e0:90:da:04:82:02:1e:8b:0d:b7:5f:db:79:fd:f5:ac:ae:48:
0a:a0:eb:f2:16:96:d2:1c:b6:09:dd:fc:be:64:db:17:8d:b9:
29:f1:27:91:ff:fc:11:62:76:ac:3f:b6:ef:35:80:57:03:7e:
52:22:6a:70:a7:6e:f1:d5:2c:91:4d:24:3d:a2:4e:c2:1e:67:
df:07:ce:05:a7:e2:3d:b0:c1:e5:88:c3:24:67:77:65:0d:ef:
fe:e4:fb:b7:a6:c9:d8:81:d8:61:10:8e:d5:7c:b6:c0:cf:87:
ba:37:9f:b9:13:d8:d1:d7:28:bc:fb:15:8e:5c:84:ff:17:c1:
16:6b:00:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:17 2026 by rpki-client