Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
File: UJSiarpxAHYh_VmdU3u3rqreizM.mft (raw, json)
Hash identifier: ZEljsnZzfX5MdXPN6hRRujYeHP9qqLN8O44WCqnQI+Y=
Subject key identifier: 18:10:19:5F:B8:40:9B:9E:C5:F9:C1:CC:26:F8:5F:97:8B:B5:BB:7A
Authority key identifier: 50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
Certificate issuer: /CN=5094a26aba71007621fd599d537bb7aeaade8b33
Certificate serial: 019CCB9AF7CA2E8FD0153032B2189BDA556A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
Manifest number: 185B
Signing time: Sun 08 Mar 2026 04:00:56 +0000
Manifest this update: Sun 08 Mar 2026 04:00:56 +0000
Manifest next update: Mon 09 Mar 2026 04:00:56 +0000
Files and hashes: 1: UJSiarpxAHYh_VmdU3u3rqreizM.crl (hash: FoRsw8PH/PTA4Rt361mJP/Pb8aaJALIVZmkyfaz09lA=)
2: dvjppw9s6JficbBL1JualOvAVhI.roa (hash: cPS5/nVNCYfyW3AOLG3yzdZLV0ipLTe96hQ2jMLs1Gw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 22:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:cb:9a:f7:ca:2e:8f:d0:15:30:32:b2:18:9b:da:55:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5094a26aba71007621fd599d537bb7aeaade8b33
Validity
Not Before: Mar 8 04:00:56 2026 GMT
Not After : Mar 9 04:00:56 2026 GMT
Subject: CN=1810195fb8409b9ec5f9c1cc26f85f978bb5bb7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:78:8f:f4:e6:07:a4:d9:60:a0:94:96:76:11:
07:65:1d:32:a0:55:64:a9:1b:b8:b1:47:4f:91:2e:
4c:fc:bd:97:9d:9b:91:2f:01:15:8d:a1:0a:e5:7c:
db:5a:da:ce:8f:c7:2e:98:74:50:5d:e0:ee:56:13:
ac:c0:ca:a6:5b:49:75:d1:98:1d:85:af:58:77:b4:
d0:30:0c:59:f4:32:da:b7:4f:d1:ea:08:13:77:ee:
6a:b4:4a:38:71:00:4f:b4:6c:88:db:b4:3f:c4:f5:
65:ef:96:39:1d:8d:c5:f0:dd:73:95:fb:1e:20:78:
3d:f0:fb:12:d1:ad:6c:02:7f:a1:99:55:51:b4:47:
40:58:1a:06:0b:b8:e1:fc:c3:b2:05:7c:ed:be:3e:
4d:ef:0d:c9:f7:79:36:7c:f7:b7:26:3f:4e:6f:6b:
4c:ef:cd:9a:bc:a1:8a:b3:6b:13:56:2d:ae:68:dc:
65:33:67:51:6a:75:1e:ea:43:7d:5b:60:5e:11:99:
c1:f4:d2:d8:19:d2:85:d1:e5:b2:68:c3:90:a5:f1:
1f:e4:12:f7:25:f2:6a:be:45:b5:bd:76:0b:16:eb:
6b:12:4c:fc:87:3a:a5:58:38:97:52:df:fb:36:0b:
10:b1:c1:87:b5:f8:8e:ac:c4:c9:05:7e:de:cc:28:
63:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:10:19:5F:B8:40:9B:9E:C5:F9:C1:CC:26:F8:5F:97:8B:B5:BB:7A
X509v3 Authority Key Identifier:
keyid:50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:bc:33:58:b7:5c:86:4b:97:f8:6d:2f:e7:15:eb:f1:b8:75:
ea:86:d4:d1:71:ae:c8:72:32:fb:9d:5b:84:6f:3c:db:16:5d:
4e:09:61:4d:67:ca:f5:1b:06:b7:59:18:9e:90:c3:59:8b:aa:
0e:e4:fb:a5:e4:af:99:79:c2:8c:1d:a8:b6:a7:e3:42:cf:ee:
7a:97:f2:4c:60:59:d1:4a:a7:a0:cb:bb:9f:15:59:96:ec:de:
23:93:56:dd:35:bf:4e:24:49:8d:0a:9d:77:19:bd:ef:29:dc:
38:ae:d5:58:28:ea:75:a9:98:93:0a:7d:ae:ab:35:d0:0f:43:
c5:58:1f:4c:05:d5:36:6b:df:8c:39:1c:f3:17:c6:8f:f0:0f:
99:59:21:c3:68:2a:ef:b9:fd:2d:1e:67:19:2a:7d:a4:74:33:
ff:bd:e1:82:ab:9c:a0:bc:36:a2:82:1f:5c:56:83:bb:2f:6a:
4f:0b:d7:ae:9d:62:13:01:f4:28:5c:53:d1:ee:39:9e:7a:7a:
65:fd:ab:55:03:52:81:79:dd:00:ee:73:ea:67:99:b0:c7:a4:
d4:2c:56:09:6e:46:41:56:f4:5c:44:38:24:c5:81:0d:9e:f9:
87:cd:ef:f7:c9:04:7b:7b:9f:c4:bd:8c:95:65:0c:cf:d5:10:
0c:27:8f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 07:37:48 2026 by rpki-client