Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: 6321LoMUVDTBDJig6G/hlelsEd54uXLyR53c7PwHFfA=
Subject key identifier: 90:0B:42:43:14:A8:11:03:2A:28:B2:05:9F:94:87:BF:9D:82:E8:F1
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 019F11C0D7ED926047F72B2E7D8A6E73E8C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 0D0B
Signing time: Mon 29 Jun 2026 05:01:18 +0000
Manifest this update: Mon 29 Jun 2026 05:01:18 +0000
Manifest next update: Tue 30 Jun 2026 05:01:18 +0000
Files and hashes: 1: Q_P7X5C1lmaNlkbuzVGT844GFfo.asa (hash: nwImYSIcMFyAUiCaJ41mpvQb3aaHOwHGxJ4PTZp+Yz0=)
2: sH_i52u9I2QPQooV8iPsfP3TRkE.roa (hash: 3i21QPZ/ky3oP395rnMd9Ue3A3mgKCo4RMpPmWOaqwk=)
3: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: 1SQgPmAXlzrbd7sIkjI3JO8r6/dwOXuBK/ohnpVERmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:d7:ed:92:60:47:f7:2b:2e:7d:8a:6e:73:e8:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: Jun 29 05:01:18 2026 GMT
Not After : Jun 30 05:01:18 2026 GMT
Subject: CN=900b424314a811032a28b2059f9487bf9d82e8f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ce:e6:16:0b:26:ab:92:42:90:36:eb:38:46:
8c:ee:4a:fa:c9:8f:86:8f:b2:7f:a3:e8:e4:0a:e6:
98:2e:9b:fc:94:c3:44:01:e5:5b:c6:f1:5e:1c:a8:
73:4f:82:cd:15:77:56:0a:0a:1f:22:40:b1:a7:53:
9d:61:c0:e4:e0:3e:e7:d0:1f:49:1f:04:bb:e6:ba:
ac:73:28:60:c5:8a:98:3e:60:e7:44:e9:e1:09:13:
a4:6f:c4:0f:62:37:b7:1b:0a:cc:21:19:b6:a3:17:
64:16:7d:71:a2:17:73:cb:2c:12:8b:b0:56:61:27:
ae:23:f8:dc:48:64:82:6a:94:db:e5:45:92:9b:80:
0b:f7:ae:7c:9d:c0:99:9e:33:22:e6:62:28:30:91:
bf:ec:36:eb:de:85:0a:21:0f:1d:51:a7:34:db:db:
c9:44:09:5c:da:67:63:02:96:17:c1:71:49:78:18:
b0:2c:7d:76:4e:75:96:c5:f7:22:e6:0d:8b:7b:46:
97:54:fb:f5:6e:96:18:40:31:4e:67:e5:0a:54:a6:
95:ae:11:2a:61:ab:60:54:3b:ae:c4:22:25:08:08:
e3:83:73:80:48:1f:38:2c:eb:19:be:92:df:33:a1:
c0:28:08:be:76:51:4f:07:b2:3b:81:76:c7:0f:d6:
23:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:0B:42:43:14:A8:11:03:2A:28:B2:05:9F:94:87:BF:9D:82:E8:F1
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:e0:dd:20:58:cd:20:3b:2d:18:98:03:a0:03:b7:a3:58:ce:
3d:70:6d:c4:26:e8:9f:6e:05:ab:5e:b5:c4:f5:c2:5e:de:21:
74:e7:1e:49:71:37:37:9d:5a:eb:ce:7e:99:49:58:bc:fd:c9:
f2:76:af:2d:8c:28:89:ed:a4:dd:06:95:8c:c2:ae:a4:77:aa:
65:c8:41:35:b8:ba:29:a2:18:7f:8b:ec:af:e3:da:22:62:97:
f5:18:04:50:5a:da:22:01:7c:d2:b7:37:2e:58:ec:12:eb:80:
10:50:9f:cc:28:59:e3:84:de:42:0c:b4:23:79:de:cd:9e:df:
c5:a7:c3:c8:3f:33:f0:5a:da:06:88:61:e3:72:aa:8e:39:c3:
51:6a:78:64:8f:5b:ee:9d:dc:5b:dd:a1:58:68:e9:fc:6c:78:
5c:96:98:29:91:6e:3e:54:89:b3:47:ab:b7:2e:42:bf:c1:32:
8e:d7:c9:1c:94:b6:a0:65:d2:0a:fe:1b:98:20:71:f1:0b:e5:
c7:0e:bd:b7:90:52:70:e4:f9:e5:4d:65:9f:71:d9:cb:90:33:
65:9f:7a:48:a1:19:84:9f:be:b0:9b:a5:6b:7e:74:03:3c:9c:
92:24:6f:3c:3a:57:e6:48:72:34:cc:3a:c1:c4:f2:37:2d:81:
d9:b7:2c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:41:46 2026 by rpki-client