Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
File: UUtNPv-4vQsTNu68uCe3fhKeD28.mft (raw, json)
Hash identifier: C2hEmWDyV8M7Px7HgUEuQhegb1hkU42v/t97cxBZrWA=
Subject key identifier: 85:0F:03:5C:BA:89:4E:6E:57:95:2C:76:A7:36:52:23:9B:14:51:C1
Authority key identifier: 51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
Certificate issuer: /CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Certificate serial: 019D3977BAC0CC01EEC6E89E6CE8A9549BFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
Manifest number: 0CFB
Signing time: Sun 29 Mar 2026 12:00:41 +0000
Manifest this update: Sun 29 Mar 2026 12:00:41 +0000
Manifest next update: Mon 30 Mar 2026 12:00:41 +0000
Files and hashes: 1: 88IBES04CJMy8ut9-pHqGVblGQQ.roa (hash: wSsbduzl8FZcCDsINaKD6IvnpNPorPIXHXw50JrVjrM=)
2: UUtNPv-4vQsTNu68uCe3fhKeD28.crl (hash: 7TGobc2f8fO9+DBQUe2BECFyk3AlwXqPDPKFSFZZNQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:ba:c0:cc:01:ee:c6:e8:9e:6c:e8:a9:54:9b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Validity
Not Before: Mar 29 12:00:41 2026 GMT
Not After : Mar 30 12:00:41 2026 GMT
Subject: CN=850f035cba894e6e57952c76a73652239b1451c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:67:a7:e4:05:e0:27:ff:8e:ea:fc:4a:d9:62:
7b:a7:a9:4e:b4:7c:50:90:9c:32:20:e7:67:dd:13:
79:36:cb:19:33:33:d0:e6:0a:e7:ca:67:31:c2:de:
9e:4c:a2:83:8c:6e:6b:6e:ed:ae:ab:61:32:10:4d:
a9:f4:77:32:a6:3d:3c:a9:67:94:70:fe:36:8c:50:
cb:e4:93:b4:44:63:35:5d:70:cb:66:c6:93:ce:fb:
9e:f6:09:0e:51:ed:37:a4:87:68:3e:52:7f:8e:93:
56:39:23:85:68:6b:6f:00:f7:cc:b8:ec:82:fd:4f:
20:77:5f:2b:e2:62:d4:b3:36:af:e4:f2:34:6e:0f:
21:16:0e:8e:6a:b4:63:ea:29:4f:d3:f9:c1:4f:6d:
76:c1:bf:b5:c4:a9:65:35:6f:b5:1a:1e:63:53:cb:
0c:76:4d:7d:c2:30:7b:f3:85:a3:fe:74:fc:3c:da:
be:78:6b:cc:05:c2:2f:87:ec:1e:49:9b:a4:f8:e8:
dc:77:a9:01:dd:73:01:a0:a7:0c:61:bb:4d:64:81:
48:a2:fa:27:2b:46:f9:18:d2:85:ba:c6:81:fd:9f:
40:2c:e8:37:48:04:c7:30:c1:be:4b:66:af:48:42:
82:a1:1c:c0:87:35:1e:f4:73:90:7b:2d:16:52:f8:
46:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0F:03:5C:BA:89:4E:6E:57:95:2C:76:A7:36:52:23:9B:14:51:C1
X509v3 Authority Key Identifier:
keyid:51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:0b:8d:f2:33:76:8f:6f:aa:15:1e:17:0c:f6:c0:46:d8:13:
b0:5a:5b:ca:ee:75:33:8b:6b:95:6d:2e:ee:b6:f3:4b:a8:1a:
03:16:71:cf:44:09:71:fa:39:e5:e7:2a:d4:b9:cf:64:69:87:
5c:39:e3:fa:4b:6b:8c:71:e1:fa:31:7b:43:16:74:6b:32:9c:
72:74:21:82:0b:cd:de:c4:c9:30:48:d0:14:f6:dd:b3:e1:81:
ec:ae:6a:5d:3b:1d:34:58:39:7f:76:16:8a:29:ad:77:92:d8:
98:c2:3e:9a:85:af:78:ab:78:2e:d1:52:7d:bc:0b:4a:23:fc:
b8:02:f1:74:a5:35:5c:59:e9:31:84:88:29:10:80:b9:f4:30:
9f:da:ca:fe:67:1a:69:d5:22:e0:e4:ca:c9:c8:06:d3:17:4f:
5d:b5:65:1c:b0:e7:4a:81:9a:f0:72:7f:3e:f6:62:52:c0:1f:
71:b5:6f:e0:55:76:4c:7e:9b:e8:f9:ab:77:c8:d9:e0:40:60:
97:e7:08:c6:da:1a:7f:43:73:43:01:fb:05:0e:da:da:cc:a0:
30:67:ca:5b:ef:98:25:e8:a0:87:c7:3b:c3:ac:d6:e0:f7:74:
71:25:f9:d8:cb:f1:a3:96:a6:f1:9e:c8:a9:7c:4d:d8:89:54:
c9:4b:5e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:03:17 2026 by rpki-client