Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
File: uXK9SdVRtK2lvWu2lWGKeUUa004.mft (raw, json)
Hash identifier: 5nX5cfX1fYUHNjrVKvus+QUFw/OWbEx3DF6FV66QENU=
Subject key identifier: AD:C0:48:93:93:FA:9F:DC:AC:04:F0:7E:4A:1A:A2:EA:ED:8A:F6:41
Authority key identifier: B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
Certificate issuer: /CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Certificate serial: 019F1A56A1DAEBB12AB45CC56825B38FC62A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
Manifest number: 0BEA
Signing time: Tue 30 Jun 2026 21:01:52 +0000
Manifest this update: Tue 30 Jun 2026 21:01:52 +0000
Manifest next update: Wed 01 Jul 2026 21:01:52 +0000
Files and hashes: 1: 0FR4rtBsUgkCQ9m5OguHfOm1GHQ.roa (hash: d7VJiBtsIdM7jSysdAdRwoEyVrklS+9IpbWKmL/eW6A=)
2: jOeIMzKbhpgFfG5e3hDQe_UydwM.roa (hash: y03l7aLK3bctMe56clUbqVb6IeHiboemDaPxdQDYS7Y=)
3: uXK9SdVRtK2lvWu2lWGKeUUa004.crl (hash: 4Ohw1j7kSd8PWcoemzCz9j76Wu3rJf3lgHRYdgAIxT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:56:a1:da:eb:b1:2a:b4:5c:c5:68:25:b3:8f:c6:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Validity
Not Before: Jun 30 21:01:52 2026 GMT
Not After : Jul 1 21:01:52 2026 GMT
Subject: CN=adc0489393fa9fdcac04f07e4a1aa2eaed8af641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:8a:8e:aa:d2:b8:00:3d:35:92:6f:bd:69:72:
55:23:a9:ae:9c:65:f3:ec:1f:66:3b:6c:c2:5e:97:
7c:3a:7a:91:d7:55:03:1b:6f:08:3d:43:0d:59:f5:
be:e5:b6:04:a8:e6:42:f2:76:4a:c4:d2:2c:79:41:
3b:31:87:42:35:9f:e7:93:14:c8:ec:8d:3c:c4:28:
05:d9:fb:6c:10:3d:80:b3:13:34:d7:b1:15:52:da:
51:99:b6:1b:7d:57:be:f3:40:ba:60:1b:aa:45:da:
69:25:14:1b:d2:12:4c:68:e5:ee:aa:b9:52:9c:1d:
83:75:d7:6d:57:30:36:41:c0:af:2d:ee:20:31:1f:
a1:5c:c3:87:c3:65:54:a4:9e:f7:b9:a8:bb:38:ec:
b2:aa:6b:ff:fe:26:41:3a:2b:91:7c:81:50:5a:47:
9b:35:c5:b6:12:98:93:0d:b6:6e:bc:1b:7f:05:88:
e8:45:56:3e:cb:a0:7d:cb:39:a0:64:a2:90:17:23:
7b:36:90:23:e3:dd:fa:b1:94:9b:80:3f:9a:73:d3:
6a:97:9d:81:34:8a:2e:8e:ba:b4:39:e8:d3:3a:7d:
2e:d4:84:2d:23:85:30:06:ab:e7:5e:2f:fa:4a:22:
42:cc:8d:d4:63:ee:98:16:f8:f5:43:52:b6:4e:02:
60:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C0:48:93:93:FA:9F:DC:AC:04:F0:7E:4A:1A:A2:EA:ED:8A:F6:41
X509v3 Authority Key Identifier:
keyid:B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:e3:65:f5:a4:8e:3b:97:dc:7b:66:48:63:af:0f:13:4e:e8:
4d:b6:ff:76:42:a3:5e:30:55:d6:cb:78:f9:ae:87:1d:ff:cc:
83:e9:7a:57:93:d7:b5:91:be:4a:fc:ee:7e:2b:01:2a:5b:08:
36:2a:12:6e:54:d2:e0:3f:58:b6:5b:5e:1a:ca:48:e6:a7:9d:
ae:73:d8:d3:72:c0:a7:c0:68:3d:45:47:84:24:fc:de:ed:a0:
c4:f1:52:6a:e4:93:e8:31:bc:f1:04:0f:df:40:b5:fe:4d:4b:
c1:4b:da:5a:73:2b:96:4c:c0:b1:72:2a:c7:65:92:78:53:c5:
d9:93:20:c4:9e:c0:6d:8a:ae:bb:bb:34:f8:8c:ea:d6:bc:f1:
04:19:65:b1:57:d4:da:1a:42:d8:3b:e4:67:23:71:6f:43:57:
d8:05:d8:80:66:ce:95:32:fe:2c:0f:eb:a9:b9:7e:ea:71:18:
23:7c:55:1f:0f:aa:7b:9c:40:a9:21:be:10:d2:ce:38:aa:10:
c7:5b:65:7d:42:d6:91:46:dc:5d:64:fd:b8:5e:a8:0b:46:d9:
b8:be:f7:d3:2c:4a:06:f3:16:59:09:50:20:8d:45:56:f1:b4:
a3:10:ca:49:94:b3:a8:31:6c:02:76:1e:8a:42:7d:8a:71:69:
85:3b:50:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:18:25 2026 by rpki-client