Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
File: UzYQcXlxVgncpCK8B6CYRoxSlFI.mft (raw, json)
Hash identifier: /1DCW7PR7xSS9H1PCIp0UiMmc+tOALWJ6i0FUk2BidA=
Subject key identifier: 37:A4:2B:D8:D9:56:B9:70:C4:74:F9:53:64:B6:E4:BC:72:A7:C0:3B
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 019E8EA5BF3CBE29ABBC2D9E9AB406BA3E8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
Manifest number: 1950
Signing time: Wed 03 Jun 2026 18:01:27 +0000
Manifest this update: Wed 03 Jun 2026 18:01:27 +0000
Manifest next update: Thu 04 Jun 2026 18:01:27 +0000
Files and hashes: 1: 37nBPcU451HQlUl0uacWDYQGvA8.roa (hash: TDhIz0QGXINJqgJRTB4Yk7ckzNjSTwoBFWF/TjcxIyc=)
2: UzYQcXlxVgncpCK8B6CYRoxSlFI.crl (hash: AVbFdfY7cfk2yxbW8SO8BGdPYVZjuLf/ZfTANbwsJTE=)
3: ejQtF-IJAcPUsJm2Grb30Iqg1lM.roa (hash: PAnCTRg2QzsK95CrphYN3Z21jLVwZm4bozxHdK4npEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 18:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:a5:bf:3c:be:29:ab:bc:2d:9e:9a:b4:06:ba:3e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: Jun 3 18:01:27 2026 GMT
Not After : Jun 4 18:01:27 2026 GMT
Subject: CN=37a42bd8d956b970c474f95364b6e4bc72a7c03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ec:66:c5:04:80:13:46:5c:fb:70:23:60:f4:
60:d6:21:1f:3d:79:1d:50:56:bc:40:8b:57:b1:36:
f2:2f:6a:b8:0e:bc:f4:67:36:95:02:8d:68:bb:47:
38:9d:dd:3a:2c:15:e2:d4:af:34:1e:46:08:33:6e:
75:30:fc:29:18:7e:e5:69:22:cd:fa:a5:92:88:77:
82:10:f4:1d:f3:be:5c:1e:0a:67:59:cc:f1:37:b5:
af:f4:22:ba:06:0d:ae:91:6c:28:5d:ab:e0:58:0e:
6b:b6:8a:9e:1c:7d:5d:ee:91:a2:9b:f8:ab:cb:92:
84:69:d2:7b:69:ed:ae:e1:7b:a8:03:d7:00:98:30:
50:d2:45:b2:12:a1:a6:be:57:ab:f4:ee:30:85:3e:
77:05:4d:43:64:3c:5c:a8:76:a7:e1:1b:74:d8:5d:
a6:ea:10:f0:a8:1e:ea:7d:74:be:0f:be:46:ff:27:
3d:96:21:f3:b6:b4:d8:dd:68:99:71:73:88:8c:3b:
69:28:2e:77:9a:5c:55:ff:7a:eb:c0:c4:cd:a1:f2:
19:90:be:b4:d6:be:52:15:3b:33:30:8c:86:ae:86:
d1:a8:93:15:6f:77:0b:73:6d:3e:79:ea:03:29:49:
18:0f:20:81:8b:ef:cd:08:8a:b2:18:b8:8d:5c:98:
5e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A4:2B:D8:D9:56:B9:70:C4:74:F9:53:64:B6:E4:BC:72:A7:C0:3B
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:9b:09:50:d7:6d:33:1b:4b:10:69:6d:22:d6:14:2e:4c:a1:
ca:42:8c:7d:9c:2b:a3:f5:4b:5c:c0:1e:c7:44:64:47:28:b1:
53:93:12:70:67:44:36:99:5a:89:44:a4:f3:e3:11:65:66:89:
02:f8:98:f8:37:cf:72:14:67:bc:88:71:ce:50:48:46:af:4f:
f6:13:6b:2c:b9:d2:39:4d:24:a9:72:e1:57:ec:fa:3d:41:c6:
1f:8e:01:be:e6:74:81:a1:29:8d:f4:e8:45:75:0b:c7:d2:82:
3b:26:7c:a7:da:42:01:76:1d:28:9b:6e:ff:4d:34:cc:82:7c:
05:d5:c5:4b:e3:8b:e8:f7:5a:a6:b3:93:e9:10:1d:87:1f:4b:
d1:98:84:70:fe:68:ec:bf:91:67:b2:6c:4c:9d:a1:52:0d:ef:
9d:cc:29:a3:d4:55:c0:ac:6e:b3:bb:06:12:7d:bb:f9:3b:7e:
cf:52:9a:bf:c3:58:b6:b0:d9:3c:81:a6:c5:98:0d:be:29:dd:
c7:df:9d:ab:81:41:f5:a2:e2:a2:3d:9e:5a:83:06:74:64:11:
2d:11:2f:cf:d5:fb:6f:07:b3:07:a6:ef:4c:1e:01:f7:6d:fc:
6f:6a:a2:39:18:f8:27:1c:5a:5e:d9:60:5c:dc:c0:d5:a6:e4:
8b:9a:35:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 04:19:24 2026 by rpki-client