Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft
File: ulnZ9a887kQgFLc1lhxzuWkmDhk.mft (raw, json)
Hash identifier: 1lcciHcV11wttkJzIy3QQeGonMC0KmJXmM25rr9Y+l8=
Subject key identifier: B4:54:59:1C:9B:F5:8E:F8:C6:60:1A:BE:44:35:B5:F3:E0:BC:F0:38
Authority key identifier: BA:59:D9:F5:AF:3C:EE:44:20:14:B7:35:96:1C:73:B9:69:26:0E:19
Certificate issuer: /CN=ba59d9f5af3cee442014b735961c73b969260e19
Certificate serial: 019D38664EEA1597B5FB6F6DE768A0A0C0F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ulnZ9a887kQgFLc1lhxzuWkmDhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft
Manifest number: 188A
Signing time: Sun 29 Mar 2026 07:02:02 +0000
Manifest this update: Sun 29 Mar 2026 07:02:02 +0000
Manifest next update: Mon 30 Mar 2026 07:02:02 +0000
Files and hashes: 1: ulnZ9a887kQgFLc1lhxzuWkmDhk.crl (hash: dFPyq8FGU+iRueNkmO2HTCU2KNweJY8RlVB5TkIPrnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ulnZ9a887kQgFLc1lhxzuWkmDhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:4e:ea:15:97:b5:fb:6f:6d:e7:68:a0:a0:c0:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba59d9f5af3cee442014b735961c73b969260e19
Validity
Not Before: Mar 29 07:02:02 2026 GMT
Not After : Mar 30 07:02:02 2026 GMT
Subject: CN=b454591c9bf58ef8c6601abe4435b5f3e0bcf038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e1:54:e7:a8:87:71:83:8a:dd:4b:b4:11:1e:
30:e8:71:cd:0e:86:3e:dc:43:0b:b1:42:15:a2:0c:
a8:75:d3:a0:a0:3d:fa:cf:da:63:1b:14:75:2d:1d:
2f:b0:ac:46:93:34:10:40:67:1d:73:56:d9:ad:8c:
66:79:52:0e:eb:c6:44:19:25:8a:0d:d1:6a:6e:38:
4f:63:0a:f5:a4:ac:81:8b:b4:a9:29:e1:ce:b5:3b:
c5:36:4d:49:cb:37:ec:98:c5:44:dc:5e:7c:cc:23:
75:c8:14:59:56:eb:aa:69:0d:07:ca:22:66:11:b9:
82:c1:e3:5d:fe:26:95:ea:c3:04:63:72:75:2b:8a:
72:0a:1e:b7:da:d6:e8:b1:33:8b:6e:b2:25:93:7f:
f0:d1:8a:b5:c4:6b:a8:a8:50:2f:95:1d:2b:50:e9:
62:3e:ae:2e:3d:7b:a7:ac:5b:eb:90:5d:12:f9:59:
7b:75:63:a3:c9:33:e9:88:17:0e:38:ee:e0:3d:7f:
12:2d:ec:a7:91:17:55:ac:3f:d9:cb:66:b5:78:2f:
2a:aa:f1:bd:ed:10:ad:8a:3e:6d:a7:5d:c8:54:10:
1d:a1:f5:b5:5c:45:34:98:47:b3:66:4e:1a:d6:1b:
b4:2b:c2:e9:bd:fd:13:ad:44:fd:c8:ef:b9:49:9d:
39:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:54:59:1C:9B:F5:8E:F8:C6:60:1A:BE:44:35:B5:F3:E0:BC:F0:38
X509v3 Authority Key Identifier:
keyid:BA:59:D9:F5:AF:3C:EE:44:20:14:B7:35:96:1C:73:B9:69:26:0E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ulnZ9a887kQgFLc1lhxzuWkmDhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:97:de:2e:72:92:d8:81:3b:cf:dd:45:77:32:cc:ed:9a:8a:
bf:1e:1e:8d:5e:3c:8d:b2:4c:69:52:6f:d5:45:41:d1:cf:bd:
15:a9:66:ba:0f:61:45:53:2a:f8:90:75:8d:b5:1d:1c:92:e3:
f6:ec:1d:4f:25:02:76:26:61:20:d5:97:b9:99:74:00:a4:1f:
70:2c:de:8d:7d:1b:9e:4c:83:9f:86:c7:f5:c3:f7:29:e7:e7:
92:9e:b9:5b:03:85:3d:19:88:78:1a:b3:78:21:22:4d:64:2a:
49:1e:63:f9:fb:2b:8c:9b:c9:28:b0:ae:da:48:fa:25:79:7a:
93:99:ef:1d:1b:a8:b9:f5:7f:82:c8:b8:11:6c:68:98:4e:5b:
62:5a:9f:65:d5:4f:bb:16:fe:07:46:dc:0a:d6:88:a0:21:c0:
03:b5:bf:1d:e6:a9:04:2b:fc:ce:03:a9:e6:dd:bc:86:8b:24:
38:85:dd:be:6d:13:3e:75:33:14:ed:13:54:d7:2e:00:3e:ab:
96:56:86:41:1c:c0:96:ec:c0:6b:86:61:f4:fa:02:04:85:4b:
08:a4:f5:e0:56:dc:d0:04:47:52:74:b5:76:3d:58:bb:6a:7e:
80:62:81:9f:60:ef:3d:32:06:d1:5d:e9:62:0a:51:c9:26:c4:
5e:98:a9:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:32 2026 by rpki-client