Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
File: rUZjafOSfaDIn7X0s-qeMk-SioQ.mft (raw, json)
Hash identifier: WuB/srGazQKq2O4eX3SypoN9hXbVp84S6KPNVXrZoBs=
Subject key identifier: 37:FE:57:5B:73:C3:6B:D3:99:64:E0:F1:A7:20:49:9D:D8:25:84:BA
Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Certificate serial: 019D36E505275988F1E81E0B126982D881AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
Manifest number: 08A5
Signing time: Sun 29 Mar 2026 00:01:11 +0000
Manifest this update: Sun 29 Mar 2026 00:01:11 +0000
Manifest next update: Mon 30 Mar 2026 00:01:11 +0000
Files and hashes: 1: _R9reWa8MF6i_0GtsC9MqO5XdM0.roa (hash: RpCmFg94gtFIxSyeDWhJqoErRSnSfBXY9f+R3zExZ1k=)
2: rUZjafOSfaDIn7X0s-qeMk-SioQ.crl (hash: J8IGRoYoqHnG4hhoNlNomUQ+LqubkGbEHzP2q8Apv+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 00:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:e5:05:27:59:88:f1:e8:1e:0b:12:69:82:d8:81:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Validity
Not Before: Mar 29 00:01:11 2026 GMT
Not After : Mar 30 00:01:11 2026 GMT
Subject: CN=37fe575b73c36bd39964e0f1a720499dd82584ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:05:f3:9e:fc:8b:ab:2e:39:e5:54:29:1f:be:
25:88:a6:2c:fa:6b:b7:67:6f:87:46:22:08:49:65:
40:3b:7d:69:ff:86:2d:f3:20:7e:3b:5a:00:73:05:
be:a8:37:d4:8e:57:06:95:77:bb:e6:cc:36:1e:88:
a2:73:3b:49:c0:1f:46:98:08:4f:f1:e3:9c:66:44:
a6:00:4e:9f:b9:76:71:46:52:44:c2:6d:e4:9a:9a:
d4:b2:59:06:3a:60:99:cf:24:12:ee:dc:af:fd:de:
ed:01:6b:bb:47:8b:af:60:78:31:a1:1c:0a:fb:c2:
dc:d2:5d:7a:ce:6d:60:dd:ab:53:46:77:1b:e4:23:
a9:a6:f7:b9:ff:e5:16:21:4a:74:d8:a2:3d:96:e0:
fd:e3:b0:e3:4f:1c:29:43:bc:48:c8:4a:26:1b:99:
4b:1d:2f:ae:61:6c:58:bf:b4:7b:4a:60:35:3d:61:
f4:41:78:a1:1d:9f:7b:a8:86:06:6c:ad:bc:f7:84:
99:ef:10:fc:6b:e3:d3:c0:79:79:96:e9:c6:ed:65:
90:27:89:d3:c5:a5:23:1e:99:fd:16:77:90:89:ca:
43:6a:ef:17:f9:42:e3:88:c9:5f:f4:3d:ef:33:bb:
52:f1:78:ae:0c:30:51:fc:d1:38:b5:28:09:96:1d:
11:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:FE:57:5B:73:C3:6B:D3:99:64:E0:F1:A7:20:49:9D:D8:25:84:BA
X509v3 Authority Key Identifier:
keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:9f:34:df:76:79:cb:60:34:11:58:d0:dd:68:e7:10:bd:fa:
91:fa:88:df:55:6c:23:0e:a7:da:a1:bd:cf:a8:ce:02:55:20:
80:ac:6c:76:fb:27:df:68:26:e5:a6:3f:86:3b:d2:82:82:d6:
cb:d9:e9:9f:9c:5c:52:7c:39:34:ca:13:95:f6:4c:d7:36:31:
cd:4b:3b:76:61:48:fd:b2:3a:04:9a:4e:a3:59:c6:fc:20:53:
05:1f:34:46:87:4c:dd:1e:9b:15:95:6d:57:4e:41:54:48:c4:
21:69:0b:b4:89:95:53:e1:5b:b7:67:25:b0:a5:cf:d7:64:c2:
e8:db:73:50:e8:19:63:ba:6b:d3:d9:09:5b:63:f9:29:55:85:
0c:1d:cd:57:3b:9f:60:3e:90:c7:b2:8d:8b:cf:b5:2c:0a:30:
e5:19:17:5b:13:b4:2a:a1:1e:e1:61:24:36:33:fc:07:ec:0f:
70:d3:1f:64:b7:76:81:ad:b3:2e:ae:70:4e:2a:8d:2a:23:a7:
1c:44:fc:bb:52:1e:3a:7a:cd:1c:d5:31:aa:5d:2d:7e:1a:77:
e0:36:31:48:41:1d:2d:2a:8e:30:86:5a:50:ec:30:5f:58:a9:
7d:e4:6f:b6:08:33:4f:9d:50:d8:dc:6b:f0:e3:ae:a9:0d:a6:
84:c1:28:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:27 2026 by rpki-client