Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
File: uXK9SdVRtK2lvWu2lWGKeUUa004.mft (raw, json)
Hash identifier: GJPKPmpYcnjwyc5jLXckVQrsXpnV9pGLBQTfLG4twZs=
Subject key identifier: CD:38:53:C3:5E:1F:B7:3D:CB:75:4B:D7:07:10:51:AB:9E:4C:E8:CF
Authority key identifier: B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
Certificate issuer: /CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Certificate serial: 019E30A9A0A234C80CE980BED695F287F1A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
Manifest number: 0B71
Signing time: Sat 16 May 2026 12:01:23 +0000
Manifest this update: Sat 16 May 2026 12:01:23 +0000
Manifest next update: Sun 17 May 2026 12:01:23 +0000
Files and hashes: 1: 0FR4rtBsUgkCQ9m5OguHfOm1GHQ.roa (hash: d7VJiBtsIdM7jSysdAdRwoEyVrklS+9IpbWKmL/eW6A=)
2: jOeIMzKbhpgFfG5e3hDQe_UydwM.roa (hash: y03l7aLK3bctMe56clUbqVb6IeHiboemDaPxdQDYS7Y=)
3: uXK9SdVRtK2lvWu2lWGKeUUa004.crl (hash: gw7G5E9U1VLcSM3Bmi4JGOsL1TSij9q9BOKSCz//+2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:a0:a2:34:c8:0c:e9:80:be:d6:95:f2:87:f1:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Validity
Not Before: May 16 12:01:23 2026 GMT
Not After : May 17 12:01:23 2026 GMT
Subject: CN=cd3853c35e1fb73dcb754bd7071051ab9e4ce8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f0:a7:db:82:71:ad:51:b6:96:e5:90:8e:ff:
1d:a0:d7:fe:db:ba:78:48:05:ce:5b:5c:59:6e:19:
be:ca:c9:f8:ed:30:6d:8d:9b:42:4e:b9:80:49:82:
28:e6:a8:eb:d8:ef:e9:d4:cf:74:0e:3d:33:c1:a3:
b1:4d:5d:5c:57:8e:d1:80:38:c5:8a:83:f9:66:a7:
c8:64:a8:16:e5:40:bd:ec:ef:19:40:dc:c6:02:ea:
08:70:ba:03:5b:f0:46:b2:01:34:ca:7b:ce:9c:5a:
67:63:ce:9a:70:5c:b3:7e:51:b3:0c:4a:f8:4c:37:
d9:18:3b:ab:2e:39:67:4b:78:6c:28:2f:a9:f5:8b:
a8:19:d9:47:1e:4e:d1:13:a8:93:00:d5:4d:a5:e8:
6d:df:08:1d:27:9e:cb:ff:a1:16:e1:25:ea:73:41:
70:0b:68:16:eb:0d:47:b1:11:95:ef:85:1b:4f:21:
52:fd:10:88:13:26:c9:a4:96:92:53:73:1b:a1:2f:
d7:86:0d:4b:57:ac:87:98:32:22:e2:8b:c5:0c:0d:
26:11:0a:88:44:9b:9c:f4:c4:c7:4d:0d:75:bf:60:
f7:d6:34:3e:c8:35:18:d9:4f:84:6e:67:6e:b4:3a:
cc:46:d0:bd:6c:3f:34:a5:84:47:d5:05:ae:7e:0a:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:38:53:C3:5E:1F:B7:3D:CB:75:4B:D7:07:10:51:AB:9E:4C:E8:CF
X509v3 Authority Key Identifier:
keyid:B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:96:16:f5:57:22:43:33:0f:b5:93:4e:f2:e7:66:4a:ea:49:
0e:93:7b:4d:8d:33:20:9c:d0:76:44:dc:7b:5e:ae:78:0d:51:
37:27:0b:28:7e:ae:a9:a1:29:7f:25:ac:b1:33:2f:b4:6f:ee:
63:32:db:52:03:bd:70:e5:08:39:1f:3e:92:d1:46:17:fb:e9:
17:47:01:23:dc:05:3a:1f:32:3b:36:5b:00:fc:77:98:a9:d4:
f9:9f:f5:a1:1d:df:20:d1:41:9c:a4:4c:de:56:b0:62:47:f7:
94:1e:e4:71:cf:82:ea:6b:da:d8:5e:42:cd:ef:b7:d9:b8:61:
1a:ea:7b:e7:18:66:42:e3:3c:ee:b8:e9:22:25:d5:a4:ac:d2:
31:d8:92:34:bc:73:a3:9d:3f:f7:78:e4:d3:b7:03:c0:56:05:
5e:97:bf:55:de:98:7c:a4:ea:fe:8e:d5:62:65:ee:e8:0c:43:
37:7f:11:b1:85:07:7c:2a:b9:88:64:ad:3a:c8:c9:b5:25:38:
1e:91:ee:0c:d8:a8:a3:4c:e6:df:42:08:01:de:89:75:4c:c6:
6e:10:a3:fc:27:ee:f6:2f:f5:06:a1:7f:fe:dd:5f:3f:ff:b6:
7c:94:e1:54:18:56:79:42:ad:2b:b1:b0:ee:47:49:de:b7:57:
0b:a6:50:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:14:03 2026 by rpki-client