Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft
File: UuAiJP-5cRcuSTXtfdll0RVQibY.mft (raw, json)
Hash identifier: oJYl2zbTaz7L2+mQhZBd2dFP6noo8LBneE7rhF496y0=
Subject key identifier: 44:AF:9A:7D:63:11:40:3E:D5:13:27:C8:E6:34:F7:DB:C5:D6:C0:33
Authority key identifier: 52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6
Certificate issuer: /CN=52e02224ffb971172e4935ed7dd965d1155089b6
Certificate serial: 019D375327E3F4EEBC7D28D0A7478F03DA68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft
Manifest number: 121B
Signing time: Sun 29 Mar 2026 02:01:29 +0000
Manifest this update: Sun 29 Mar 2026 02:01:29 +0000
Manifest next update: Mon 30 Mar 2026 02:01:29 +0000
Files and hashes: 1: Ej04tqIea-55QGqR9P8U_IWSz5E.roa (hash: 56Ay1dz7+2/hrBe1gefM4Z9MpRY5OP2aiLGQZC5nqmk=)
2: UuAiJP-5cRcuSTXtfdll0RVQibY.crl (hash: 79sZwoY73StrJIBPEqT4jmkVR33dwHxzH55CdUsgpWU=)
3: bKZux_GRyhQisliOyg0o3pomUGE.roa (hash: UT5otdZIy6+fjq+k6mHMr69f+BiRVOr2Dbn8liI5eMU=)
4: eed8-v0DQQsIlGh_LdKlEMEvsTw.roa (hash: ryiQISgXOOgfkizItwqCf8st8jseYCZTQbYCWpyKpsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:27:e3:f4:ee:bc:7d:28:d0:a7:47:8f:03:da:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52e02224ffb971172e4935ed7dd965d1155089b6
Validity
Not Before: Mar 29 02:01:29 2026 GMT
Not After : Mar 30 02:01:29 2026 GMT
Subject: CN=44af9a7d6311403ed51327c8e634f7dbc5d6c033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:a0:b4:50:14:42:4c:0d:5b:2d:b6:9f:40:
57:96:20:9f:3b:00:3e:b9:27:d5:09:92:61:a3:06:
35:de:69:45:ba:f5:e7:3e:16:b8:13:d4:de:81:2a:
94:52:ca:e8:f0:ca:15:a9:f3:ad:c8:45:d7:06:69:
c4:71:74:d8:23:03:25:3b:8c:32:5c:b0:f6:23:7c:
f5:ca:15:33:7c:33:73:84:8a:e4:47:48:66:15:9f:
94:e9:4c:cb:75:ee:57:14:45:e2:36:17:d0:9d:fc:
75:9e:ba:f4:de:7b:cc:48:2b:97:77:bb:1d:8d:2f:
12:7e:02:7b:f7:e6:03:67:84:e0:66:2b:b3:49:0c:
21:48:32:f4:c6:de:cc:12:8e:1b:80:cb:ef:f5:f8:
84:65:11:37:c8:fd:dd:1a:af:2d:71:02:a0:ec:78:
a0:51:7e:d2:41:3b:14:4a:0f:fe:62:c0:77:7a:42:
64:50:ae:10:10:fe:7b:48:9a:8e:4b:a9:00:39:6a:
3e:7d:82:7c:80:cf:64:12:ac:98:b5:a2:d0:90:77:
8f:a5:0e:0f:54:6a:c6:0b:31:65:58:ad:44:a1:07:
c8:61:bc:09:ca:df:94:55:8e:2b:d0:6d:1b:b0:27:
38:fd:90:8f:c2:cc:d0:a9:65:ed:8f:91:7a:bd:87:
96:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AF:9A:7D:63:11:40:3E:D5:13:27:C8:E6:34:F7:DB:C5:D6:C0:33
X509v3 Authority Key Identifier:
keyid:52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:0c:d4:d6:77:8a:4e:2d:34:93:a4:a0:70:b1:59:e7:dc:fb:
fe:b7:b2:4b:43:29:c2:15:3b:99:c8:38:b7:e8:ca:7a:fc:4d:
54:32:43:db:45:dc:39:55:41:c4:44:04:85:77:c6:f3:7d:c1:
ef:82:f8:1f:6d:fd:73:a2:a6:3a:fa:96:df:fd:ba:9e:37:c3:
aa:0f:13:a7:5d:91:b4:5c:ae:2c:65:3b:61:6d:65:9c:0e:7c:
e2:07:d9:20:ca:2c:10:23:f0:12:83:ec:a7:7d:43:42:35:69:
f5:3f:52:0a:ae:15:1f:81:8f:54:18:66:ff:6e:59:1d:89:98:
b0:8a:0d:b1:45:29:af:f5:2e:aa:6f:3b:8a:bd:54:98:b5:82:
1f:92:f4:81:db:2a:37:4d:d9:8f:70:8c:a0:4f:46:14:c8:6b:
07:a0:e7:b7:b2:a5:97:09:08:e6:fe:a5:88:bd:b6:69:ce:60:
23:f1:40:6a:6b:a7:86:b5:69:54:83:3b:b4:59:d1:59:f1:fa:
a1:21:af:32:8c:0d:71:b4:05:94:72:01:d3:90:e0:8d:2f:dc:
2f:7d:20:f8:48:67:86:6f:a9:2e:a9:37:c4:67:e1:59:2d:f1:
75:8b:08:29:aa:df:11:32:47:17:28:34:93:81:ab:50:cf:79:
56:7b:5c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:59 2026 by rpki-client