Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json)
Hash identifier: fXRiLc5vMbvUTqyqYaQG/aMDI1KeELguRSUtOwT/DYk=
Subject key identifier: 4B:08:B1:DC:C2:FA:BC:74:FB:B7:DA:F7:2D:DE:DA:AA:CA:96:9B:08
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 019D3A1C85AED9785FDCFDD13DE300081902
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
Manifest number: 0EC1
Signing time: Sun 29 Mar 2026 15:00:40 +0000
Manifest this update: Sun 29 Mar 2026 15:00:40 +0000
Manifest next update: Mon 30 Mar 2026 15:00:40 +0000
Files and hashes: 1: sQXNrRfabqEAqxGuf8P5f2NecXw.roa (hash: 2PpXo8MephsPJxKEGzhYMR57A346BOGMuHA13iu9pZo=)
2: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: vnZWPzCWvTe4Iy7PZLPk53AcA+AjCazt511aBhfPmZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:85:ae:d9:78:5f:dc:fd:d1:3d:e3:00:08:19:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Mar 29 15:00:40 2026 GMT
Not After : Mar 30 15:00:40 2026 GMT
Subject: CN=4b08b1dcc2fabc74fbb7daf72ddedaaaca969b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f3:90:59:37:ea:76:97:65:16:c2:5f:23:c1:
4b:3f:b1:a1:21:9c:80:57:22:39:b6:e9:3c:21:ad:
34:26:a0:0c:f9:10:ca:40:ab:96:3a:6d:b1:fd:92:
55:da:95:c7:91:5b:f9:4a:7b:2e:3f:fb:48:25:52:
30:ba:93:e7:0a:b7:ad:20:02:29:82:26:52:03:39:
fa:98:86:15:6c:da:e7:23:cc:dc:98:ac:70:2c:f6:
c7:cc:b0:22:1a:c1:ca:7b:63:93:90:3b:e7:88:a0:
73:d7:c7:76:b1:00:8a:e6:66:0a:28:86:0c:a1:21:
53:0f:0a:e0:99:2b:b0:58:fd:a6:7f:6f:62:49:7f:
55:0d:9f:e2:c8:20:66:07:85:a6:d1:81:04:d0:8e:
7e:7f:46:46:d0:2d:9f:79:6a:13:4b:3f:c5:83:eb:
82:12:39:fc:ba:f1:c6:f9:10:8e:b2:05:12:54:a1:
83:89:87:cd:94:25:b9:ab:01:e7:36:ab:65:65:27:
dd:23:f0:8f:ec:d8:b6:9e:d4:c9:75:52:76:91:06:
c1:44:9b:97:c2:cb:ea:b1:96:3f:58:09:04:73:cb:
92:18:5d:66:db:67:87:3c:8a:ec:52:bb:3c:b3:cc:
b4:c8:f6:61:66:4f:31:7c:4b:cc:c3:b2:c8:9b:91:
69:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:08:B1:DC:C2:FA:BC:74:FB:B7:DA:F7:2D:DE:DA:AA:CA:96:9B:08
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:82:67:92:58:f1:c2:6e:f9:04:5f:d8:a5:a7:e5:22:3b:93:
8c:6e:2d:d5:f8:f2:90:33:39:b4:34:69:fc:ab:9e:20:30:ca:
dc:cf:2d:95:25:3b:51:a0:9f:69:7e:e3:9c:d1:be:6a:18:f1:
53:0c:b4:af:89:fa:35:bc:8e:bf:97:d2:a5:f8:4a:5a:1e:03:
b0:f4:24:b7:86:89:a5:68:94:1f:61:79:00:14:b9:c6:6c:5f:
ab:88:f2:ba:82:bb:6c:85:48:81:19:c0:9e:d1:9e:e0:93:5f:
20:51:67:d5:c2:17:6b:51:9f:8a:1d:14:b6:6e:87:98:43:73:
cb:6e:1c:e4:aa:6c:d2:8b:95:47:3e:39:ad:71:ed:81:d7:ea:
d6:66:0b:12:74:36:e7:f0:18:55:a2:b4:33:c1:c4:8c:22:cb:
8b:fa:cd:23:f5:aa:5a:06:71:ad:81:83:cb:50:c7:dc:ca:3b:
30:67:53:0e:d8:f6:73:4b:5e:24:c2:7f:51:6a:c8:89:c0:c6:
95:38:4d:b3:71:49:4b:55:8a:9b:8e:9e:52:9c:e4:69:24:d6:
12:c7:f8:35:0c:f5:67:fc:a4:4d:01:97:09:7e:17:fc:12:b5:
b6:e2:da:97:fb:ac:22:b7:a0:28:08:2d:85:78:2f:d3:ad:2e:
7c:32:ef:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:48:38 2026 by rpki-client