Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
File: uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft (raw, json)
Hash identifier: nGAQah1zKpU3UhPkXJQQR+DxXF8AzGCO2h8ugTuCJ4k=
Subject key identifier: 95:46:9F:1D:99:64:3C:A1:72:A0:54:6D:8B:C3:74:31:EC:70:8F:24
Authority key identifier: B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
Certificate issuer: /CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Certificate serial: 019D37F712A4564B6B298A127F6AD2ACE65C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
Manifest number: 11FD
Signing time: Sun 29 Mar 2026 05:00:32 +0000
Manifest this update: Sun 29 Mar 2026 05:00:32 +0000
Manifest next update: Mon 30 Mar 2026 05:00:32 +0000
Files and hashes: 1: pnTV-xEaMoeNed3d1zVxVfZqK_E.roa (hash: cQ4cTJqwVUYM1dCbNyuS7CuucIG4Wq7i0SfCs2VPf1M=)
2: uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl (hash: 6MiAeJl0vegFKiJpnKia5QkoyipBrXuP0krB8iaGHIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:12:a4:56:4b:6b:29:8a:12:7f:6a:d2:ac:e6:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Validity
Not Before: Mar 29 05:00:32 2026 GMT
Not After : Mar 30 05:00:32 2026 GMT
Subject: CN=95469f1d99643ca172a0546d8bc37431ec708f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:df:f0:9e:c4:51:18:da:06:9a:e2:c9:72:90:
ac:51:30:63:e8:84:f1:41:8e:c2:3a:0f:55:75:e3:
26:67:14:69:84:f9:f6:a5:c6:ce:fa:10:b8:52:04:
c8:56:b5:05:aa:69:22:10:fa:7c:67:fc:0c:7c:40:
eb:a6:60:de:13:82:79:7a:3f:4f:00:16:77:7a:cb:
f1:dc:e6:52:9d:c0:34:d7:3d:32:f8:a5:ce:9b:75:
9f:93:5a:5b:7d:2e:12:db:a7:ba:22:df:a9:64:db:
ba:34:d9:c9:d9:67:bf:d2:4f:40:30:d1:8a:84:d5:
7d:38:5c:fe:ac:a6:de:f8:98:27:a4:5d:35:52:e1:
05:ef:1a:c0:36:78:04:ce:92:e2:9b:e6:7c:81:1b:
4f:3b:61:dd:51:9b:65:7f:51:45:65:a7:a5:d3:8f:
cf:1d:b7:6d:58:a0:ca:3f:6d:75:f8:8f:89:8b:d7:
c1:3e:7d:2b:38:92:ba:83:15:0d:94:c6:19:0c:18:
b3:51:a3:94:58:53:73:ce:f7:c0:db:d8:1f:c7:a8:
7a:6f:90:5b:58:b1:f0:68:2e:b6:af:af:cb:d7:05:
b0:22:24:87:e0:c7:a9:a5:dc:8a:9b:3e:29:c9:6b:
32:b7:f7:da:4c:ed:4c:68:83:e2:ef:fd:36:6a:fa:
2a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:46:9F:1D:99:64:3C:A1:72:A0:54:6D:8B:C3:74:31:EC:70:8F:24
X509v3 Authority Key Identifier:
keyid:B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:06:32:0a:eb:1c:49:20:d6:6f:3f:bf:1b:35:04:f6:d2:0a:
e6:04:8e:dc:08:34:c4:fe:6b:90:b1:bc:f0:ce:d6:50:63:c4:
7d:5f:0c:d1:a8:5d:59:3d:76:36:13:e2:8a:b7:bf:7c:03:42:
28:66:1c:55:09:38:b0:e3:b5:70:7f:1d:fd:52:5f:82:62:4a:
ef:54:2d:e4:d9:04:bc:07:e5:a6:aa:3a:2a:7e:1b:13:e9:f4:
3a:0d:f9:c2:1f:2b:f2:55:44:7a:59:bd:dd:dd:75:03:d1:c9:
63:83:a4:a5:45:7f:59:6f:59:4f:d0:77:74:57:04:18:d7:60:
23:65:48:e3:8b:e1:dd:09:b0:14:7c:ce:26:8d:e5:38:cf:26:
76:6d:45:d3:6d:8e:b9:47:b9:fc:c1:83:f4:8b:db:dd:6b:ed:
a8:89:7c:29:1a:7f:28:c4:46:11:da:32:2d:95:5e:c6:8c:46:
99:88:74:99:2f:6d:8a:5c:f3:92:2e:4f:17:b8:ed:3f:7c:8d:
e3:ed:bc:1e:b9:68:e9:2f:9b:5e:68:e6:55:fb:ba:10:35:a2:
e1:7b:cb:83:18:02:04:fa:2b:4b:2e:55:aa:32:a3:b4:cf:6e:
a1:53:a0:e7:50:61:de:e1:18:e7:f8:cf:99:9b:7e:9b:8e:ce:
2b:0f:bd:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039xKkVktrKYoSf2rSrOZcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NDg4OTEyMGM0ZTBiZmY0ZWNlOWEyYWJiODYyZDRjMGNk
OGEzMWYwHhcNMjYwMzI5MDUwMDMyWhcNMjYwMzMwMDUwMDMyWjAzMTEwLwYDVQQD
Eyg5NTQ2OWYxZDk5NjQzY2ExNzJhMDU0NmQ4YmMzNzQzMWVjNzA4ZjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9/wnsRRGNoGmuLJcpCsUTBj6ITx
QY7COg9VdeMmZxRphPn2pcbO+hC4UgTIVrUFqmkiEPp8Z/wMfEDrpmDeE4J5ej9P
ABZ3esvx3OZSncA01z0y+KXOm3Wfk1pbfS4S26e6It+pZNu6NNnJ2We/0k9AMNGK
hNV9OFz+rKbe+JgnpF01UuEF7xrANngEzpLim+Z8gRtPO2HdUZtlf1FFZael04/P
HbdtWKDKP211+I+Ji9fBPn0rOJK6gxUNlMYZDBizUaOUWFNzzvfA29gfx6h6b5Bb
WLHwaC62r6/L1wWwIiSH4MeppdyKmz4pyWsyt/faTO1MaIPi7/02avoqVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJVGnx2ZZDyhcqBUbYvDdDHscI8kMB8GA1UdIwQY
MBaAFLlIiRIMTgv/Ts6aKruGLUwM2KMfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVVpSkVneE9DXzlPenBvcXU0WXRUQXpZb3g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kZjU2NzAtOTZhYi00ZWVlLWIwZDIt
ODVkMzMyNjA0YWFmLzEvdVVpSkVneE9DXzlPenBvcXU0WXRUQXpZb3g4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kZjU2NzAtOTZhYi00ZWVlLWIwZDItODVkMzMyNjA0YWFm
LzEvdVVpSkVneE9DXzlPenBvcXU0WXRUQXpZb3g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgAYyCusc
SSDWbz+/GzUE9tIK5gSO3Ag0xP5rkLG88M7WUGPEfV8M0ahdWT12NhPiire/fANC
KGYcVQk4sOO1cH8d/VJfgmJK71Qt5NkEvAflpqo6Kn4bE+n0Og35wh8r8lVEelm9
3d11A9HJY4OkpUV/WW9ZT9B3dFcEGNdgI2VI44vh3QmwFHzOJo3lOM8mdm1F022O
uUe5/MGD9Ivb3WvtqIl8KRp/KMRGEdoyLZVexoxGmYh0mS9tilzzki5PF7jtP3yN
4+28Hrlo6S+bXmjmVfu6EDWi4XvLgxgCBPorSy5VqjKjtM9uoVOg51Bh3uEY5/jP
mZt+m47OKw+9lA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:48 2026 by rpki-client