Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: IkvjuvcvtQKAwlJhfWuEAbSoheVoXuyVEWf+8Ot/Bz8=
Subject key identifier: 4B:ED:E6:7F:54:72:17:61:3D:05:05:D5:E0:B1:F3:25:2F:4F:B9:E0
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 019D382E757B527E9E7BD57AD79090D08459
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 0D30
Signing time: Sun 29 Mar 2026 06:01:01 +0000
Manifest this update: Sun 29 Mar 2026 06:01:01 +0000
Manifest next update: Mon 30 Mar 2026 06:01:01 +0000
Files and hashes: 1: R4Xor_QOm8kkue50w13Q01GksLs.roa (hash: hz+RaanVrQajJNEjuOfF15dTh+z02W3jfEQAUxrmmAk=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: hEuPSkWEY9TRMVwel0T155Ef1MhZ+BWc1ecu8wbu+iU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:75:7b:52:7e:9e:7b:d5:7a:d7:90:90:d0:84:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: Mar 29 06:01:01 2026 GMT
Not After : Mar 30 06:01:01 2026 GMT
Subject: CN=4bede67f547217613d0505d5e0b1f3252f4fb9e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b3:53:27:77:b5:1a:b5:ab:8b:00:ed:30:ce:
a7:a3:14:ba:0a:a4:b0:13:17:c4:87:ed:ac:98:d0:
e9:60:ef:62:b3:69:d9:ad:25:03:33:80:d7:80:d5:
91:b4:7c:91:aa:bd:4e:0d:f2:c8:2d:5b:c1:1f:fd:
c2:22:9c:b1:c2:ef:0d:a4:69:68:28:82:a5:0a:51:
e4:ff:ea:70:f6:c0:16:05:7a:a1:9d:f8:e5:cb:6e:
3e:87:f7:63:4b:57:b8:92:aa:d7:87:e7:25:80:ca:
e4:1e:82:31:b5:e0:19:36:cb:d7:d8:ad:d1:34:c8:
27:06:56:51:e8:07:3e:13:b0:f8:0a:2f:e0:2d:d9:
47:61:58:82:bd:24:ec:75:1b:4e:1a:0f:d2:cd:42:
8f:7c:21:a1:89:8e:2e:c1:7c:84:65:81:3d:f4:c9:
a9:00:95:7e:8a:55:93:70:4d:64:e0:5a:58:5b:e5:
cb:9e:24:d5:88:2a:0c:67:b8:64:dd:57:f9:e0:c4:
2d:4e:e3:a3:95:bf:1b:b8:c9:08:fd:f7:bc:e1:6e:
45:74:8e:f3:f9:db:a2:16:ff:db:91:54:5b:f9:a5:
3f:fd:8a:a6:2f:fc:db:f4:63:c1:9c:c2:9d:2d:4d:
10:41:ac:94:a8:91:17:f6:40:ee:57:25:fd:f2:a9:
5c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:ED:E6:7F:54:72:17:61:3D:05:05:D5:E0:B1:F3:25:2F:4F:B9:E0
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
fb:8e:a7:37:b0:27:d9:05:6e:ad:b6:e1:76:f5:ac:9e:ea:6b:
33:c6:74:e6:54:a8:b3:26:28:9e:c1:12:93:6e:c8:be:84:6c:
9e:7d:e3:6c:c9:0a:60:4d:70:6c:3a:c8:0b:25:6c:e5:06:54:
cc:17:68:e3:d3:b0:06:36:3a:e6:26:21:a8:b8:83:d2:1d:3f:
d1:bd:3e:5c:a5:d7:6f:08:54:30:d6:6d:79:23:13:50:01:1b:
ce:63:53:da:91:c8:15:af:03:0f:49:bf:77:b4:33:e1:a2:f1:
70:32:fe:6a:d0:d2:74:d0:a0:4c:ea:08:6c:d3:ae:d3:5f:83:
71:62:b7:d9:7f:c8:23:e1:a4:56:17:43:43:cc:55:09:ef:94:
2e:65:d0:77:fd:4d:d4:97:00:6a:7b:57:e6:ab:d1:29:d2:3b:
bf:38:6f:3d:79:7c:2d:92:f3:41:fa:95:8a:6a:17:06:3f:9e:
0d:10:ab:2f:94:e0:56:12:a1:c3:f8:a4:e9:83:d5:43:7e:4f:
4f:a6:2f:c2:a4:20:98:78:a9:b3:ed:e0:d2:e4:e7:4c:8d:9d:
37:e5:d6:bb:b9:c4:4f:36:03:a6:ee:67:15:6a:d3:da:6a:d5:
c6:f2:81:9c:d7:ff:31:f9:6d:ac:9d:98:da:20:78:09:32:a3:
e5:63:20:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:15 2026 by rpki-client