Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
File: UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft (raw, json)
Hash identifier: O2+zySuJWBsrrDeGi/ZM12kyua7Nbh6RyKCVq6XHGdQ=
Subject key identifier: 2F:2B:AD:18:19:70:EC:7B:B8:87:96:CE:0B:E6:86:79:57:1F:CA:36
Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Certificate serial: 019D37C0D3B5117E10BE3F8444ED274ED4F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
Manifest number: 07DB
Signing time: Sun 29 Mar 2026 04:01:16 +0000
Manifest this update: Sun 29 Mar 2026 04:01:16 +0000
Manifest next update: Mon 30 Mar 2026 04:01:16 +0000
Files and hashes: 1: NRjE2ub-qyO1bTuX03Zvfc6I9B4.roa (hash: T1iZTA7aq3lUr9C6VWAbrTX5NRDe5+H29lpTIjZMGkc=)
2: UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl (hash: 5s+ZWDrMcVKNZHxkFP5RPv8BrtPsywRoZVw7GldbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:d3:b5:11:7e:10:be:3f:84:44:ed:27:4e:d4:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Validity
Not Before: Mar 29 04:01:16 2026 GMT
Not After : Mar 30 04:01:16 2026 GMT
Subject: CN=2f2bad181970ec7bb88796ce0be68679571fca36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:db:a5:5c:b5:78:5f:e1:be:7b:42:97:c3:d9:
2f:33:80:09:49:8c:73:cd:0b:03:54:85:aa:be:ac:
b3:d0:60:3a:3e:33:cb:91:88:8e:af:be:06:67:2a:
0c:ad:d4:a4:68:8e:06:3f:dc:98:52:fa:81:d6:79:
d1:30:80:f5:ff:d3:0d:e8:21:e4:6e:61:26:96:d3:
d7:d1:24:85:52:ae:ed:6d:ff:60:85:88:69:38:76:
48:6d:89:fd:b3:dd:44:cd:42:d1:d6:d9:54:47:ef:
92:44:bd:6b:43:02:b7:b5:d0:53:64:b8:9a:64:a2:
3a:83:f8:70:03:e0:e1:7c:7f:51:b4:fe:66:56:a7:
b8:2f:a6:e8:fb:2f:3e:3c:81:62:d8:dc:b2:e8:f4:
e0:01:3a:61:fb:18:60:fa:6e:1a:39:a2:5f:52:6a:
1f:ba:ce:b4:81:18:d8:a1:fe:66:fa:eb:76:63:19:
3e:38:e7:2d:9d:ac:c2:4f:68:52:30:96:d7:3e:b5:
cc:ea:b9:1e:82:ef:4c:bb:a7:dc:4c:1e:af:00:9a:
af:14:50:7f:c5:9d:4b:fd:62:da:bb:70:2c:bf:12:
66:99:5e:c4:72:d9:4a:5f:02:c7:ce:71:57:77:70:
33:1a:79:44:38:32:c9:26:89:23:e8:f4:41:7f:f2:
0a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:2B:AD:18:19:70:EC:7B:B8:87:96:CE:0B:E6:86:79:57:1F:CA:36
X509v3 Authority Key Identifier:
keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:e2:14:21:c7:a0:86:91:3f:42:a7:f4:6e:06:45:54:8e:1c:
26:39:a6:86:84:1e:65:b6:3c:77:b2:5c:a9:36:82:1f:6c:09:
73:89:4e:35:3e:ad:f6:c5:98:98:87:7d:9e:70:16:ed:70:f6:
ed:6b:f9:5a:9d:01:ee:71:53:98:37:56:ee:0e:20:79:e7:77:
dd:4b:0b:8f:c8:f6:26:57:5d:96:d2:88:44:3f:e6:8a:e4:0a:
bd:b1:be:88:7b:a7:66:11:7d:1c:93:63:56:e6:0f:27:82:2f:
3c:8a:f5:88:c8:fd:c5:15:51:65:73:6a:9d:49:d0:f7:d3:bc:
b6:73:38:ae:25:c9:bb:de:6d:aa:04:41:27:ff:58:9f:42:5f:
45:b9:19:92:6b:85:e0:ed:05:ea:8e:23:94:26:87:37:41:a0:
93:58:ad:db:99:96:d9:dd:24:7e:f5:0b:01:90:25:b3:e7:be:
62:5b:88:b1:3b:b0:5a:f2:e6:27:a4:8f:37:9c:ef:f7:ad:2c:
86:c1:c7:86:02:60:38:3a:14:17:21:2c:38:17:68:30:42:99:
08:08:e8:e9:08:d1:19:c2:2a:e4:e8:f8:c9:70:24:00:5e:aa:
55:8e:07:3c:b0:dd:2f:46:f0:e5:e6:08:35:bb:03:9c:f6:3a:
9c:c8:ed:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:34 2026 by rpki-client