Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
File: UYnbLl9XTdoOPBfjldXwW2YlTsU.mft (raw, json)
Hash identifier: 3xpTcWFwMyjULXZqDvq/FzeAIwpeDJC5JShCZFe9Bd0=
Subject key identifier: 92:68:97:E9:B7:71:6B:85:AE:F4:2C:05:46:68:5C:3B:C6:F9:6F:BE
Authority key identifier: 51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
Certificate issuer: /CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Certificate serial: 019DCFAC5E18B5A4E3476917BD6A144BB7EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
Manifest number: 0FC5
Signing time: Mon 27 Apr 2026 16:01:13 +0000
Manifest this update: Mon 27 Apr 2026 16:01:13 +0000
Manifest next update: Tue 28 Apr 2026 16:01:13 +0000
Files and hashes: 1: Lx0GZ21TiR4ew8qj_wZ5bar6vug.roa (hash: lf4lQFDrnk5VRiTZ4XBPmQTyhm8ggaJBhIQsymhNxRU=)
2: UYnbLl9XTdoOPBfjldXwW2YlTsU.crl (hash: l/PZTj+g77klpsCqnyRyaBbUJuTxw07SCWivU+tOCUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:ac:5e:18:b5:a4:e3:47:69:17:bd:6a:14:4b:b7:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Validity
Not Before: Apr 27 16:01:13 2026 GMT
Not After : Apr 28 16:01:13 2026 GMT
Subject: CN=926897e9b7716b85aef42c0546685c3bc6f96fbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b2:eb:6b:9a:99:a4:c2:d2:31:3e:92:32:1e:
32:ed:bf:66:a5:e0:49:29:f0:db:34:93:dc:24:84:
5d:89:f4:5a:d4:b8:af:24:65:b8:df:22:8a:7e:67:
39:b0:3d:80:c6:76:27:d1:9c:31:2b:9a:13:04:9b:
7c:10:35:d7:af:b9:51:60:d0:b0:a4:b9:86:ca:d0:
f8:79:0a:7b:de:8d:4d:10:0c:ba:c0:e4:e0:e5:b5:
f4:0d:a6:94:e7:de:ea:ad:fc:b7:a5:31:dc:cb:cd:
8c:31:a4:c2:b2:8e:fc:6c:20:32:46:6a:f3:48:2c:
f6:b1:52:4a:67:db:c2:e9:70:4a:56:6c:c7:6f:27:
38:cb:bb:9a:29:d8:ee:39:0d:f5:22:7d:91:dc:92:
7d:21:e3:a5:1b:f1:8e:ad:16:76:32:dc:5d:7b:f0:
72:e1:4d:3c:3a:da:cb:13:06:3b:e6:42:9e:d7:e8:
05:af:c7:54:bb:d1:3b:b4:6f:40:53:12:9d:b9:9f:
c6:87:fa:f2:06:f0:61:93:6d:85:1a:ec:99:12:a0:
bf:9c:6d:fb:3a:45:54:a9:cf:f0:39:9e:b2:95:c6:
49:c0:e3:41:86:21:3d:10:8d:a0:f9:70:55:c0:fa:
e6:83:a7:23:f4:0e:60:3d:3f:19:4e:9b:08:5b:2e:
9b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:68:97:E9:B7:71:6B:85:AE:F4:2C:05:46:68:5C:3B:C6:F9:6F:BE
X509v3 Authority Key Identifier:
keyid:51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:24:e9:dc:d6:d7:74:d9:c7:1a:d5:b1:4d:ad:b5:38:ee:8f:
c3:6f:d0:65:5b:77:6c:67:d0:5c:c0:49:33:13:ba:dc:b8:10:
66:63:7e:cb:ff:fd:02:d1:47:09:0f:b2:77:53:77:de:c7:e6:
d3:63:08:fc:0a:2d:a1:09:b9:10:73:db:7a:0a:f6:ff:6c:75:
ef:83:0f:17:82:e7:0d:f9:fe:45:2c:4f:8f:af:cf:f6:a2:23:
c6:f6:0c:36:50:ab:33:ff:29:03:0f:d4:93:67:9f:92:77:ce:
4f:14:60:6e:27:42:ac:9c:b2:73:42:e2:e5:04:ef:a5:5a:69:
2c:6f:5b:35:84:7f:3b:e8:1f:ff:d4:6d:d7:d0:bd:8a:55:93:
98:42:00:71:8c:7e:62:c7:26:1f:27:39:2a:32:d5:54:fb:99:
3f:4c:dc:25:f9:8b:80:26:ec:e1:16:df:62:90:bd:9b:dc:df:
12:cd:ab:2d:d5:72:16:4e:e6:ff:21:6f:9b:19:58:db:b4:16:
eb:7e:a6:f0:d0:e7:ca:6f:99:c8:60:d0:10:db:6c:0a:a1:d0:
fa:49:b1:ad:32:9d:16:5c:81:bf:e2:4c:a3:dc:71:da:ea:24:
37:69:f0:65:02:60:e2:91:4f:57:8a:fb:87:b4:10:52:b6:37:
f8:5e:b8:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 18:31:15 2026 by rpki-client