Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json)
Hash identifier: vPOTwEb5mz0wTNt2NI74oUcneFatTeD0kZtDp6o//sU=
Subject key identifier: 42:33:A4:7B:6D:5B:11:B7:FB:43:7D:18:9F:FB:A3:00:2B:7A:6E:8E
Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Certificate serial: 019D38D29D836E77F177176055603CF27FF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
Manifest number: 099E
Signing time: Sun 29 Mar 2026 09:00:20 +0000
Manifest this update: Sun 29 Mar 2026 09:00:20 +0000
Manifest next update: Mon 30 Mar 2026 09:00:20 +0000
Files and hashes: 1: gH0BmhGdI-4jnerabl4mUmUrBX4.roa (hash: vNs9/H6iuDqV1b/jbRlgh+sdKrOOTZh6C5aRY+PDcq0=)
2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: oRcpifPMaVIsic6giqsTcXPEz5j6Hfd1wFi7ThMz+2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:9d:83:6e:77:f1:77:17:60:55:60:3c:f2:7f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Validity
Not Before: Mar 29 09:00:20 2026 GMT
Not After : Mar 30 09:00:20 2026 GMT
Subject: CN=4233a47b6d5b11b7fb437d189ffba3002b7a6e8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:64:b5:c0:10:8b:8f:a0:9e:16:f2:d5:e4:d7:
a3:5c:57:e3:56:6d:60:94:a0:ed:04:df:ef:28:85:
bb:33:62:7f:94:47:31:35:c0:bd:29:ae:03:8d:63:
65:18:cf:6a:40:53:bf:96:67:1b:27:be:63:de:67:
20:38:3b:8a:a1:ab:f5:dd:dc:79:a0:ea:c4:f4:b9:
6b:61:64:95:0c:2c:b1:79:2a:5b:be:b4:7d:d4:58:
f3:a7:70:3c:eb:e3:2f:5b:5e:1b:dc:e9:2e:74:4d:
0c:60:15:8b:cf:96:90:d5:95:63:77:c8:32:29:73:
01:b1:d9:fb:68:b9:96:b9:1c:1e:d1:76:12:d8:2f:
94:12:52:f9:85:c7:0d:5e:05:7d:1d:3e:11:e5:9d:
79:5b:47:83:f1:21:cc:13:36:b8:fa:73:43:ba:9d:
51:2c:b4:c1:9d:09:24:01:a1:40:33:9d:80:c2:86:
bd:40:4e:83:52:ef:ac:f9:88:87:3d:55:c5:5c:3c:
d2:8e:18:73:e2:91:3f:82:8b:d1:d5:7e:05:a5:0c:
eb:d1:2b:57:3d:d6:4d:89:6e:aa:63:4a:db:9b:90:
9b:e8:83:0c:45:5c:a0:2e:ad:cb:77:f8:41:75:13:
14:b5:91:92:eb:86:ae:8f:32:0b:40:92:c7:90:17:
1f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:33:A4:7B:6D:5B:11:B7:FB:43:7D:18:9F:FB:A3:00:2B:7A:6E:8E
X509v3 Authority Key Identifier:
keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:b9:13:24:69:62:3d:50:bc:24:88:6e:fb:e9:ad:45:6b:21:
a9:16:3b:58:8b:0b:ab:1b:9f:df:36:1d:bb:db:0f:f2:6c:93:
47:93:e0:7c:9a:81:8c:b4:88:23:0a:63:ff:bd:33:27:a0:f6:
99:78:2a:02:a6:f9:97:4e:2d:ce:c7:28:b5:41:0a:f6:92:94:
95:43:ed:6f:f5:81:55:50:ea:51:ee:3d:f6:cb:7c:ab:55:58:
32:4a:47:70:50:72:42:d9:e1:10:ab:28:d4:72:40:33:89:45:
b9:dd:ba:e6:f3:24:20:9b:30:1b:5f:36:78:58:d9:2b:a5:6e:
90:13:94:48:1b:d6:71:3f:db:a0:6a:4c:d5:e4:f6:f0:d7:c7:
00:37:26:67:34:07:38:7f:38:c0:ff:c0:2d:7d:7b:9b:55:eb:
de:31:fd:d2:58:1f:14:c1:cf:39:0c:64:bb:ae:20:8c:0e:e3:
be:41:2b:dd:9a:91:9e:8c:69:b0:ad:61:7f:1a:fe:9a:f2:6f:
63:a0:b3:a4:22:65:b6:a8:3d:f8:57:ba:25:65:fb:d5:a1:34:
49:90:1d:ca:38:8c:3f:9d:d9:07:6b:43:f6:37:6f:09:8f:f5:
d4:71:4b:ae:02:55:73:b2:7b:d2:87:e3:3d:3b:e2:4d:0d:d9:
b2:1b:a8:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040p2DbnfxdxdgVWA88n/3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4YzY4Y2RhNjVmNjY5NjJjY2I5NjgzZjE1NTBkMTRlNTYx
MDdhMGEwHhcNMjYwMzI5MDkwMDIwWhcNMjYwMzMwMDkwMDIwWjAzMTEwLwYDVQQD
Eyg0MjMzYTQ3YjZkNWIxMWI3ZmI0MzdkMTg5ZmZiYTMwMDJiN2E2ZThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmS1wBCLj6CeFvLV5NejXFfjVm1g
lKDtBN/vKIW7M2J/lEcxNcC9Ka4DjWNlGM9qQFO/lmcbJ75j3mcgODuKoav13dx5
oOrE9LlrYWSVDCyxeSpbvrR91Fjzp3A86+MvW14b3OkudE0MYBWLz5aQ1ZVjd8gy
KXMBsdn7aLmWuRwe0XYS2C+UElL5hccNXgV9HT4R5Z15W0eD8SHMEza4+nNDup1R
LLTBnQkkAaFAM52Awoa9QE6DUu+s+YiHPVXFXDzSjhhz4pE/govR1X4FpQzr0StX
PdZNiW6qY0rbm5Cb6IMMRVygLq3Ld/hBdRMUtZGS64aujzILQJLHkBcfTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEIzpHttWxG3+0N9GJ/7owArem6OMB8GA1UdIwQY
MBaAFLjGjNpl9mlizLloPxVQ0U5WEHoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAt
OGY0OGEzNzAyZjkwLzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAtOGY0OGEzNzAyZjkw
LzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAObkTJGli
PVC8JIhu++mtRWshqRY7WIsLqxuf3zYdu9sP8myTR5PgfJqBjLSIIwpj/70zJ6D2
mXgqAqb5l04tzscotUEK9pKUlUPtb/WBVVDqUe499st8q1VYMkpHcFByQtnhEKso
1HJAM4lFud265vMkIJswG182eFjZK6VukBOUSBvWcT/boGpM1eT28NfHADcmZzQH
OH84wP/ALX17m1Xr3jH90lgfFMHPOQxku64gjA7jvkEr3ZqRnoxpsK1hfxr+mvJv
Y6CzpCJltqg9+Fe6JWX71aE0SZAdyjiMP53ZB2tD9jdvCY/11HFLrgJVc7J70ofj
PTviTQ3Zshuo8Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:30 2026 by rpki-client