Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: hF9KJC7Ob8PTgDmzP03I0uEwPQ7D30iQv0JCvHqC9Wc=
Subject key identifier: 90:FF:D0:07:33:B7:62:79:92:00:E0:2C:EF:EB:E3:A2:8F:07:F9:06
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 019CE25A13C7610A666E32A3171AE8CF389B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 0A9A
Signing time: Thu 12 Mar 2026 14:01:19 +0000
Manifest this update: Thu 12 Mar 2026 14:01:19 +0000
Manifest next update: Fri 13 Mar 2026 14:01:19 +0000
Files and hashes: 1: Pxtr7Gbm8FoWkqDWUIVtrs362Ec.roa (hash: Hjsu0JAwI6gJ3DPtZLzsxv8mvLUzo+rKbsqMaxC3bYY=)
2: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: ESeBS6PkKBnUk6xFsdjFtrFKVi/LeFYehJfNV/9dpak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 14:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e2:5a:13:c7:61:0a:66:6e:32:a3:17:1a:e8:cf:38:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Mar 12 14:01:19 2026 GMT
Not After : Mar 13 14:01:19 2026 GMT
Subject: CN=90ffd00733b762799200e02cefebe3a28f07f906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a5:76:d8:2e:6e:74:02:2c:3f:fc:fc:86:b9:
b4:6b:5a:9e:f9:68:f1:ef:4b:8b:ef:e1:3d:b7:43:
61:67:8c:8a:39:e3:e6:de:af:c8:57:3e:fc:0b:12:
ed:ee:f3:85:51:1c:c6:5e:e1:0d:b5:c0:bf:f8:a2:
cc:ca:bb:93:b9:ba:f6:a1:82:47:b2:a3:be:d3:2a:
8c:35:e1:47:a1:6c:17:96:24:49:81:fb:2e:40:c6:
42:1f:95:45:ed:15:f4:27:8d:11:2e:81:6b:cc:d9:
5c:b3:85:4d:b9:93:7b:09:f9:6b:ea:01:36:11:90:
79:9f:3a:a5:ce:50:80:2c:61:27:20:70:c6:40:9c:
a8:9b:7a:8b:7f:ce:13:08:1a:9f:15:bb:87:37:86:
12:85:02:ad:e4:83:c4:38:4b:25:7f:39:78:b4:8d:
56:c6:e7:21:a9:d2:ec:68:7e:be:0d:ab:76:28:fb:
2b:6b:dd:80:c6:73:8a:0e:7c:78:c3:16:f3:51:42:
8d:06:3a:cb:74:c6:e1:b9:c2:a7:42:73:8a:fc:39:
e7:1d:8f:e3:bb:fb:04:44:dd:8a:bf:2f:18:27:78:
21:ab:b0:d3:af:8b:87:11:9d:77:cf:0d:78:dc:f3:
78:54:68:24:dd:fe:fa:92:65:cd:52:dd:d6:08:47:
1c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FF:D0:07:33:B7:62:79:92:00:E0:2C:EF:EB:E3:A2:8F:07:F9:06
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:5f:41:e7:9d:a5:02:09:e0:a8:47:db:ef:18:19:71:f6:11:
1e:ab:95:93:95:58:26:1a:11:ee:77:53:43:45:53:7f:78:b8:
63:07:26:3e:31:b6:f7:c0:80:96:b8:6e:2e:1b:7e:13:69:73:
ee:97:a2:56:06:72:2b:16:4a:3d:25:4a:f7:f7:cb:b5:e7:0d:
af:5b:26:5e:ec:b9:99:ef:0f:b2:e6:a2:9f:78:fe:a4:5e:90:
b6:1e:e1:1d:e4:5b:31:05:1a:1e:18:e6:fd:fe:06:df:62:9e:
72:70:a4:eb:6d:1a:f3:e0:03:06:05:6a:ac:b1:10:b5:b4:4b:
c3:59:27:06:aa:c6:cb:00:13:fc:e3:62:26:8a:c6:9e:d6:0b:
57:e6:8c:e5:ca:87:10:40:0b:e2:a6:0e:b6:91:4f:14:93:e3:
f9:8d:54:5c:3e:b5:bb:05:1a:79:0e:db:08:3e:02:47:9d:44:
3f:57:3a:4f:9c:02:35:3c:bb:1f:2a:a5:9a:ee:57:05:42:ec:
69:f0:f4:fc:7b:2a:fa:de:1e:70:1c:31:3c:44:68:14:92:ac:
6b:f1:94:21:cb:a5:f3:0d:0b:fb:4c:79:9d:b5:25:b1:cf:76:
8d:a2:d1:9f:55:5c:7b:53:88:c4:8a:75:3a:30:ba:09:e9:47:
62:8b:96:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 22:35:12 2026 by rpki-client