Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
File: ug4SZOB7Nwi8udtaFOfMknCGOVg.mft (raw, json)
Hash identifier: Hw0Bf/Nb3OIK0nPn5QaSRhR9I43q3RYVp93OeDr9feM=
Subject key identifier: 3F:8E:81:18:9B:E6:4A:A2:96:31:38:5F:FD:5E:D9:0E:B8:6B:1E:A8
Authority key identifier: BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
Certificate issuer: /CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Certificate serial: 019D3A1CAE105243D42D4D4594E3E1B38AAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
Manifest number: 1897
Signing time: Sun 29 Mar 2026 15:00:51 +0000
Manifest this update: Sun 29 Mar 2026 15:00:51 +0000
Manifest next update: Mon 30 Mar 2026 15:00:51 +0000
Files and hashes: 1: lqoHHwMlwGNCfCp3U3U4kkhl1Ig.roa (hash: y6qClx3Rf5mZaySn4zehVo/hI1iBDsZsk48LzNmFPQE=)
2: ug4SZOB7Nwi8udtaFOfMknCGOVg.crl (hash: gza6k7/LpWLW61/EnTmOoCC0sNXx7poL7sfMawCUg2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:ae:10:52:43:d4:2d:4d:45:94:e3:e1:b3:8a:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Validity
Not Before: Mar 29 15:00:51 2026 GMT
Not After : Mar 30 15:00:51 2026 GMT
Subject: CN=3f8e81189be64aa29631385ffd5ed90eb86b1ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:28:ec:79:f5:1e:cd:48:56:08:90:0e:a9:89:
ca:a9:aa:74:87:37:85:b0:42:3f:d7:a4:0e:cf:8b:
e7:98:04:f9:1d:f0:02:91:9c:02:09:41:4b:3e:ec:
35:1f:fe:ef:11:3e:31:0d:08:0c:c0:0a:f1:52:29:
f0:e6:d7:81:ef:77:46:63:8d:9b:c0:f2:ad:5a:66:
c5:2c:4e:63:75:c0:40:88:d8:79:ee:4c:54:6a:c4:
bf:e6:8f:bf:98:b6:59:36:39:3a:5c:9c:72:ab:3c:
6c:4a:dc:bf:90:a9:fc:ba:7a:29:29:40:a1:04:f2:
c8:ef:15:af:3f:d4:a6:e3:2e:f0:7b:86:10:19:f6:
5e:e3:3c:77:a9:df:ff:33:d7:47:5a:0a:fb:cd:99:
ca:76:67:fe:95:84:9e:6e:f6:64:31:62:d2:7e:11:
49:0f:1e:13:e1:e1:ef:4d:be:96:ed:28:88:07:62:
ef:dd:bb:32:98:c9:a2:5c:9e:f2:9b:a0:44:91:73:
a9:ec:62:a6:9b:43:39:0a:05:2c:b0:54:7c:bf:37:
c4:21:5c:82:8d:fd:48:41:e2:ff:91:db:06:85:eb:
a6:1f:80:39:52:ea:e4:6a:3f:da:46:66:fa:5e:ec:
17:b1:10:78:08:76:b2:60:c5:74:bb:6e:7a:de:8a:
b5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8E:81:18:9B:E6:4A:A2:96:31:38:5F:FD:5E:D9:0E:B8:6B:1E:A8
X509v3 Authority Key Identifier:
keyid:BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:66:e7:32:29:5d:0b:dd:04:34:1f:c4:d2:c1:98:b5:89:73:
0d:b4:6b:0d:e1:0f:fc:ed:8d:b5:94:96:31:63:f8:ed:8c:b4:
95:ca:95:f4:a6:32:54:6f:4b:9e:09:7b:62:9d:be:94:65:b8:
75:ed:1c:6f:b8:d9:76:9f:cd:91:8a:f0:c2:48:51:51:f1:3c:
57:a7:e0:ed:13:e6:9c:bf:34:6f:df:88:0a:14:18:2f:ac:94:
2f:84:72:a7:21:17:b6:c1:1b:b2:62:0b:e2:b5:d4:b5:93:26:
5f:d7:85:6c:65:68:2e:d7:5b:bf:80:0c:cb:8d:af:77:d1:8f:
21:34:fd:10:7d:a1:52:5f:9a:4b:47:64:0d:ba:89:c3:f4:6c:
09:88:7c:50:f4:e2:ed:5b:50:27:ab:90:ea:e2:7e:f0:b4:84:
e9:ed:67:1a:68:e3:ae:a2:2c:6c:da:89:5b:09:cc:1c:e5:e3:
24:dd:bc:29:53:ca:77:41:c5:64:44:b5:9c:ce:1c:2b:fd:05:
87:3e:fe:3f:5d:63:c3:5e:d3:bc:f8:b1:55:b8:ac:a7:ab:da:
de:2c:58:08:96:d4:e9:f2:e1:1d:6b:17:e0:d9:20:6a:85:67:
78:df:9f:50:af:7b:ea:b0:43:72:0b:74:0b:36:c1:fd:c3:38:
99:eb:9a:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:49:14 2026 by rpki-client