Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json)
Hash identifier: MQsDkrU6cXDyeTCe7UXO8Zb4+NZvsCVCbHZcqtukx/w=
Subject key identifier: 3D:3A:F9:37:0B:90:BC:D5:50:74:15:05:FE:84:3D:F6:2C:B1:6B:6F
Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Certificate serial: 019D38D2FD015AA3D3E290A9F10BA350727F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
Manifest number: 0FEB
Signing time: Sun 29 Mar 2026 09:00:44 +0000
Manifest this update: Sun 29 Mar 2026 09:00:44 +0000
Manifest next update: Mon 30 Mar 2026 09:00:44 +0000
Files and hashes: 1: lWdEpowAzHConUoYGbrc4-nSOV4.roa (hash: 9/NPZ8xgxrX7894j4qUQTxzBQ0X/YCJM81igBGzxaPE=)
2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: RwnECgkF7+7lW/hupG15u8sNrXklFCK3zb0BEwdofPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:fd:01:5a:a3:d3:e2:90:a9:f1:0b:a3:50:72:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Validity
Not Before: Mar 29 09:00:44 2026 GMT
Not After : Mar 30 09:00:44 2026 GMT
Subject: CN=3d3af9370b90bcd550741505fe843df62cb16b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ae:08:60:79:46:19:5c:7b:de:fa:46:e6:18:
3c:52:39:55:7a:85:af:bb:8b:0a:2f:46:8e:90:21:
fa:e9:5c:2b:da:b6:46:52:8c:0f:f1:38:d8:d3:1e:
87:eb:d3:ec:57:53:dc:4d:48:9b:91:35:18:4a:75:
1d:05:76:db:7c:5d:ba:8c:7e:ca:c8:ef:9a:2f:f8:
b3:4d:48:25:e4:c8:e4:c9:98:d9:09:f0:a1:91:da:
a9:b8:84:a6:f7:4a:88:45:96:8a:5d:03:eb:9e:5e:
f3:13:f3:ff:19:6f:f3:81:6b:dd:07:6c:f8:6b:c8:
f1:bf:f6:92:34:5d:d1:04:04:39:1a:8e:44:af:ba:
a5:7d:f1:8e:1a:72:04:07:87:2d:90:c8:26:56:17:
de:35:f6:62:d8:a5:e6:44:b2:6d:a4:42:1b:9a:9a:
3e:64:05:67:d7:d2:fe:7c:6f:64:c5:81:de:0b:ce:
4d:d1:5a:b6:6b:5b:8a:65:f4:7b:38:08:76:01:85:
04:b8:41:d9:a1:65:a1:16:33:0a:a7:c2:5f:90:18:
25:89:da:ea:cd:b2:28:22:32:75:95:45:28:eb:99:
c8:42:64:cd:cf:bd:18:b1:23:ff:17:1f:d1:57:32:
66:b6:9b:10:ad:10:8a:12:b0:60:65:41:db:89:46:
c4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3A:F9:37:0B:90:BC:D5:50:74:15:05:FE:84:3D:F6:2C:B1:6B:6F
X509v3 Authority Key Identifier:
keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:42:55:1f:ef:5d:30:6f:e5:02:e3:44:8a:9c:1f:87:8d:59:
ed:fb:fe:a4:e5:e6:59:6e:2c:14:cb:e5:2e:f1:84:48:24:72:
4c:37:6f:d0:f9:3f:b1:85:14:8c:e3:42:5a:7a:eb:61:2f:1d:
0f:b9:6f:8a:8d:0a:94:cd:b5:a4:32:ca:b2:4b:46:c7:c9:73:
3c:f3:78:be:36:b8:c4:e8:a3:78:79:6d:10:c1:17:71:62:e9:
ec:c2:40:b5:35:27:f8:78:1e:07:81:f8:dd:04:2a:f9:4f:fc:
c2:c4:34:d5:0b:7e:84:9d:a4:6b:6e:89:2a:a5:71:ee:88:04:
5d:74:97:93:a1:fa:7a:6d:e5:bb:2c:95:0b:9e:ac:91:36:d7:
b7:b7:21:a1:c4:9f:40:65:57:9e:20:95:75:6c:59:bc:cf:40:
df:18:b8:ef:a1:4d:aa:f7:ce:fa:73:7a:67:62:58:5e:28:01:
a4:dd:a1:28:db:fe:e4:18:c7:66:05:23:7a:d0:ef:7c:e8:b6:
0b:01:34:30:93:19:f1:41:33:3d:2c:b9:2a:fb:d8:90:11:07:
aa:b0:e9:59:42:eb:a2:4f:27:ce:84:d1:40:aa:39:8d:ca:e5:
bd:95:8d:c7:0d:77:33:9c:e1:c8:35:db:11:2f:d8:93:0a:e5:
ba:82:6d:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:39:03 2026 by rpki-client