Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft
File: 0uuxFmwGDbJd-U8CvS-PnabE3Us.mft (raw, json)
Hash identifier: rU0Qh8YP7p5Ul+9AeSsys/s19eQ8mwF8lB1qxLjoY24=
Subject key identifier: 5A:2D:A8:2C:0E:25:36:60:35:A3:54:89:C1:0D:16:FA:28:F9:F6:9E
Authority key identifier: D2:EB:B1:16:6C:06:0D:B2:5D:F9:4F:02:BD:2F:8F:9D:A6:C4:DD:4B
Certificate issuer: /CN=d2ebb1166c060db25df94f02bd2f8f9da6c4dd4b
Certificate serial: 019D375218AA157508D0AAB94A01E0619CE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0uuxFmwGDbJd-U8CvS-PnabE3Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft
Manifest number: 144A
Signing time: Sun 29 Mar 2026 02:00:20 +0000
Manifest this update: Sun 29 Mar 2026 02:00:20 +0000
Manifest next update: Mon 30 Mar 2026 02:00:20 +0000
Files and hashes: 1: 0uuxFmwGDbJd-U8CvS-PnabE3Us.crl (hash: unAJYySucuzWNVB9PNK1gb0HKRQDeMbY6zlp5A12Q5Q=)
2: 6SrhIYq9krVCM2Q_wIAA5M-Z-Lc.roa (hash: sAYJD+I7oIyAkdboyJMkSqHc+dfvfVcmdQnsD35+5Do=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/0uuxFmwGDbJd-U8CvS-PnabE3Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:18:aa:15:75:08:d0:aa:b9:4a:01:e0:61:9c:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ebb1166c060db25df94f02bd2f8f9da6c4dd4b
Validity
Not Before: Mar 29 02:00:20 2026 GMT
Not After : Mar 30 02:00:20 2026 GMT
Subject: CN=5a2da82c0e25366035a35489c10d16fa28f9f69e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b0:50:cc:89:ac:f3:ba:8c:d2:ad:c6:21:6e:
ce:5d:31:7a:3a:c1:aa:4c:6e:2e:d1:ac:d3:f5:2e:
f4:1d:41:2a:04:30:78:b4:4c:36:4c:c2:68:c2:75:
b0:cc:a3:10:57:6b:ec:69:e0:92:4f:22:e4:ce:a3:
2c:94:76:7d:10:e7:24:ee:6c:cb:74:e8:cb:55:8e:
3d:23:89:b0:9d:24:fc:4b:78:08:b7:17:31:2d:44:
d5:ae:84:66:fb:45:6f:9c:51:36:39:a3:e7:dd:5a:
02:4f:dc:3f:d3:38:2b:d4:64:3e:14:f5:63:9d:69:
3c:59:d4:df:01:8a:7e:ea:00:1e:97:7c:64:e0:7d:
8c:80:f7:16:97:a2:9e:89:32:ab:e2:a3:db:3e:81:
c8:e0:87:1b:67:4e:51:d6:fd:11:1d:12:c5:99:e9:
8d:ac:02:48:97:2e:a6:d2:4b:bb:2e:0a:92:2a:4a:
5b:a8:f4:bb:c0:51:0e:7a:b5:9e:c9:f7:85:de:d6:
7c:3d:69:d4:6e:8f:1f:3b:22:70:de:bf:0e:3d:d9:
ff:07:e7:17:77:02:00:f2:89:6f:e6:1c:40:94:d6:
5b:e6:1b:3b:ed:83:20:c9:15:64:fe:00:b1:af:2d:
10:5a:0c:15:f6:9a:1c:8d:29:ef:d8:76:bd:54:aa:
01:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:2D:A8:2C:0E:25:36:60:35:A3:54:89:C1:0D:16:FA:28:F9:F6:9E
X509v3 Authority Key Identifier:
keyid:D2:EB:B1:16:6C:06:0D:B2:5D:F9:4F:02:BD:2F:8F:9D:A6:C4:DD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0uuxFmwGDbJd-U8CvS-PnabE3Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:64:fa:97:ae:12:23:f6:74:63:cd:6b:27:f2:84:34:d1:02:
ad:6f:be:75:7a:db:7a:16:3f:18:20:f7:8d:1a:bb:82:39:7c:
78:c5:2c:fb:69:11:7d:85:22:b6:b6:b8:22:d2:01:f6:13:d3:
90:e8:d4:42:e7:cb:59:7f:d5:4c:ee:15:ae:23:be:35:79:96:
ff:7f:7a:3a:bc:4f:f9:46:77:7f:87:ac:51:d9:bc:bc:e3:fe:
82:9f:ab:ed:8b:4e:52:d4:72:49:ce:ef:76:d5:8c:70:fa:11:
ee:1f:0c:15:81:78:c0:91:b3:77:93:3a:5e:f1:a6:f0:3f:9b:
05:7d:14:98:dd:69:a5:6c:c4:7b:50:81:23:55:11:67:c9:12:
4b:a4:c2:d9:94:70:a0:8c:64:ba:ab:75:6c:4d:3b:5b:7f:5e:
33:5b:f6:fd:d5:bf:c8:e5:13:41:07:0e:76:2c:de:7e:67:a4:
00:7d:b3:b0:5b:49:d3:72:4d:68:e8:4b:c7:07:eb:8f:f4:4c:
4e:eb:cd:d4:77:3f:75:49:4d:61:9b:66:26:40:11:90:2f:46:
61:c3:20:41:2c:eb:99:fd:f7:8b:55:f3:a0:af:38:1c:15:68:
b8:6d:9f:34:b0:20:ea:05:be:c8:75:20:2f:02:88:49:4d:ca:
6b:0d:b9:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:05 2026 by rpki-client