Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: FFkZnZSjdhLFSGl1ILGGEBdbQOV+a3+75JbU7sUAnHU=
Subject key identifier: 2A:F9:36:D6:7E:8F:75:4E:22:92:6F:80:6A:46:3D:91:94:00:7F:45
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 019E2A0211BBF1073E61DE165335956D43BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 0C93
Signing time: Fri 15 May 2026 05:00:38 +0000
Manifest this update: Fri 15 May 2026 05:00:38 +0000
Manifest next update: Sat 16 May 2026 05:00:38 +0000
Files and hashes: 1: Q_P7X5C1lmaNlkbuzVGT844GFfo.asa (hash: nwImYSIcMFyAUiCaJ41mpvQb3aaHOwHGxJ4PTZp+Yz0=)
2: sH_i52u9I2QPQooV8iPsfP3TRkE.roa (hash: 3i21QPZ/ky3oP395rnMd9Ue3A3mgKCo4RMpPmWOaqwk=)
3: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: U+53Ttkt2MfHdwlD6X3vFzJ8NSLqa2Dzu4PntK6zLpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:11:bb:f1:07:3e:61:de:16:53:35:95:6d:43:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: May 15 05:00:38 2026 GMT
Not After : May 16 05:00:38 2026 GMT
Subject: CN=2af936d67e8f754e22926f806a463d9194007f45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f2:7c:3f:09:1a:96:ac:56:99:19:fe:21:0f:
d3:6a:18:e8:63:8f:eb:ad:23:5e:06:e2:46:53:c8:
71:4a:dd:db:ac:38:ad:5d:df:d5:30:3f:c1:6c:3a:
7b:9c:76:4f:e4:66:8b:c0:d2:b1:fa:cf:70:4b:04:
d5:25:58:33:cc:2e:f7:30:9d:52:77:30:d1:5f:b1:
d4:3c:96:b5:59:84:92:cc:50:df:14:09:d8:b0:cd:
37:d0:60:1a:38:a4:30:5e:a7:0a:f2:c5:1e:17:3b:
a7:42:2d:d8:64:f9:a8:25:16:23:99:46:9e:5f:e0:
d2:42:6b:b3:d7:dd:41:ea:5f:94:97:8b:99:96:5a:
8b:bc:f9:9c:41:86:97:b5:4c:67:30:72:ea:14:02:
aa:91:c3:2a:f7:7d:1b:2c:e6:d1:fc:83:c9:73:98:
6c:89:17:5f:2d:c3:88:75:5d:17:1a:08:f9:15:a1:
6f:2e:5c:82:5c:83:75:8c:3a:65:7a:17:f5:f7:1e:
19:41:4d:3b:e8:67:28:78:b8:a9:3c:b6:d2:2f:41:
5f:af:11:80:e1:6e:27:3c:89:e4:2e:88:a1:9e:dd:
da:13:e8:da:06:ab:15:1a:b3:5b:a7:30:e4:97:49:
4d:e8:f1:c6:a0:b7:20:15:09:a3:8d:3c:6f:d4:3b:
0c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F9:36:D6:7E:8F:75:4E:22:92:6F:80:6A:46:3D:91:94:00:7F:45
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e2:31:cd:ae:67:e9:65:bf:fb:a6:00:11:02:2d:78:40:bc:2c:
40:30:de:7e:1e:d8:54:a5:ee:28:4e:6d:1e:0b:e9:b8:a8:51:
c0:3f:f5:3a:81:00:63:60:05:41:86:3e:cc:4c:5f:3d:2d:bb:
e0:8e:97:9c:c2:8e:e9:b0:6f:ab:34:e2:a2:f8:6a:b8:38:f3:
17:9a:e3:04:7b:54:72:f0:c3:16:e7:c7:32:a2:b2:7a:0a:2d:
7d:d7:92:5b:15:1c:bd:85:16:73:75:79:9f:13:e8:1a:7a:0f:
3c:73:3c:be:59:09:50:fc:01:94:c5:70:3b:9e:bf:20:a9:6a:
b7:c3:98:5a:0e:5e:bb:49:96:dc:5f:73:39:f5:36:f0:21:4c:
b9:7a:35:14:08:97:19:7f:4b:6b:d2:d0:5e:fd:15:e9:2c:4b:
b7:2d:83:1f:ee:c7:b4:a0:44:ca:0f:40:0c:95:a5:7e:b7:c4:
05:cb:fc:45:9d:ce:8b:0a:dd:8b:08:54:d6:69:63:86:99:d3:
96:04:b2:58:08:8d:01:8b:b3:6e:c5:a6:be:d1:52:a7:04:59:
ad:45:77:b7:01:fe:ec:35:81:3b:14:c1:4d:df:57:3f:ac:d4:
3d:59:34:15:48:89:30:a6:17:63:8c:d1:c7:3b:68:ec:c2:a4:
d0:2c:8f:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:20:47 2026 by rpki-client