Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
File: UJSiarpxAHYh_VmdU3u3rqreizM.mft (raw, json)
Hash identifier: YIbrC5rDhzhuGFFItY+EItvs5Z2VXhPL4+FwEMuWgVA=
Subject key identifier: 48:5A:79:E5:CE:11:1D:C1:1D:9A:A8:8D:C3:08:23:D8:94:7D:FE:E6
Authority key identifier: 50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
Certificate issuer: /CN=5094a26aba71007621fd599d537bb7aeaade8b33
Certificate serial: 019DB3599DF60A69C366283D4CFDC3F29684
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
Manifest number: 18D3
Signing time: Wed 22 Apr 2026 04:01:27 +0000
Manifest this update: Wed 22 Apr 2026 04:01:27 +0000
Manifest next update: Thu 23 Apr 2026 04:01:27 +0000
Files and hashes: 1: UJSiarpxAHYh_VmdU3u3rqreizM.crl (hash: PnYPr5NiAYWQrFDD6DlSnVMAv+uehGQJt462Kg+2bKY=)
2: dvjppw9s6JficbBL1JualOvAVhI.roa (hash: cPS5/nVNCYfyW3AOLG3yzdZLV0ipLTe96hQ2jMLs1Gw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Apr 2026 04:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b3:59:9d:f6:0a:69:c3:66:28:3d:4c:fd:c3:f2:96:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5094a26aba71007621fd599d537bb7aeaade8b33
Validity
Not Before: Apr 22 04:01:27 2026 GMT
Not After : Apr 23 04:01:27 2026 GMT
Subject: CN=485a79e5ce111dc11d9aa88dc30823d8947dfee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:79:61:2e:72:f2:d5:5e:32:b4:76:c1:7c:5e:
c9:f2:90:27:25:f6:f2:46:b2:9f:d5:19:ed:2f:23:
64:1e:61:4c:64:66:e2:8e:ce:ff:a5:f3:ea:f0:dd:
06:4c:d5:dd:12:cd:5a:4d:63:5d:ea:b7:22:ea:cc:
79:83:bc:60:0f:e7:57:50:78:78:df:97:30:bc:7d:
93:8c:7c:a2:23:37:48:c3:47:e8:39:18:f3:70:8a:
96:16:ac:31:e7:97:6c:53:85:ee:b1:d5:fd:fa:84:
44:00:fa:6e:fc:68:bf:5a:0e:f6:f8:06:7b:c6:2f:
23:7a:41:2b:f3:2a:0c:13:60:c7:3f:37:2b:db:01:
88:56:9a:8e:fe:17:4a:e1:3e:24:60:01:aa:35:f9:
fc:bf:c1:69:46:30:2a:95:92:f0:4c:29:fa:41:de:
77:ef:3c:06:76:45:bd:67:1d:aa:b1:ac:1a:c3:6c:
b9:85:5f:57:63:b0:37:4f:d1:5c:2e:a5:ff:4b:fb:
37:41:fa:a8:b4:92:0a:60:78:dd:f6:85:86:c0:67:
24:43:ec:f3:64:95:b7:4e:5f:21:e9:4f:ed:f1:79:
00:15:0b:08:13:fb:69:39:2a:57:c9:4b:93:6c:84:
54:d8:b8:2f:09:5b:78:13:3b:f2:5a:a1:e2:9d:9c:
8c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5A:79:E5:CE:11:1D:C1:1D:9A:A8:8D:C3:08:23:D8:94:7D:FE:E6
X509v3 Authority Key Identifier:
keyid:50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:25:14:5c:64:21:aa:c8:11:d0:49:16:d7:27:5a:cf:ca:b3:
42:08:a0:a0:92:c1:f6:6c:bc:5c:62:89:13:66:7a:50:90:ba:
ea:ab:15:cb:56:81:06:5b:a7:9d:1c:cb:af:8a:63:14:be:7a:
03:ed:92:20:12:6f:fb:de:9c:24:45:2d:02:a3:2d:d7:4e:41:
b5:b7:9d:dd:d3:da:0e:ff:c2:0f:02:3f:77:8c:3b:95:2d:6e:
85:73:30:88:38:88:1e:6c:1c:c1:69:3b:d2:31:e2:fd:ea:e9:
1c:fb:7f:0f:3a:b2:53:78:af:38:a3:12:85:0c:56:fb:3d:e6:
c8:f3:13:0c:13:b5:c1:84:ff:77:c8:47:b5:3e:86:eb:2c:79:
5b:11:19:ea:11:0d:f5:df:58:3d:84:37:c8:f3:a1:eb:e2:06:
80:63:3b:70:3d:3a:f1:5f:0b:c2:6d:82:9b:b1:58:be:da:5b:
5d:14:2a:5e:a2:88:88:96:99:20:b1:c2:17:d7:06:ca:3f:45:
e9:2f:a7:45:fa:fb:54:66:15:8a:30:21:e4:6c:bd:2a:34:e9:
23:d0:6d:3e:46:a3:10:f4:0a:b8:06:90:10:8b:f5:a3:07:6e:
a8:60:ab:46:68:3d:29:de:ea:00:8c:97:35:aa:cd:9a:0d:12:
c2:02:0b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 11:00:21 2026 by rpki-client