Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
File: UIJpb7xB2QYWimDOCUlJAiz2Keg.mft (raw, json)
Hash identifier: 7tFYyi/jw8Y//IWblkMOFDlYM542Rdd//liQIBxLmUc=
Subject key identifier: B7:29:42:0D:F3:1E:4F:E7:4B:C2:87:AE:20:D0:C6:F2:F5:DC:61:DB
Authority key identifier: 50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
Certificate issuer: /CN=5082696fbc41d906168a60ce094949022cf629e8
Certificate serial: 019D39E5CB6A380CA26B55F789CA8D489FC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
Manifest number: 0617
Signing time: Sun 29 Mar 2026 14:00:54 +0000
Manifest this update: Sun 29 Mar 2026 14:00:54 +0000
Manifest next update: Mon 30 Mar 2026 14:00:54 +0000
Files and hashes: 1: UIJpb7xB2QYWimDOCUlJAiz2Keg.crl (hash: BDHH/12F5AK61TpcCl0yCH9WrS/PvZOp5aSy2w1zpDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:cb:6a:38:0c:a2:6b:55:f7:89:ca:8d:48:9f:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5082696fbc41d906168a60ce094949022cf629e8
Validity
Not Before: Mar 29 14:00:54 2026 GMT
Not After : Mar 30 14:00:54 2026 GMT
Subject: CN=b729420df31e4fe74bc287ae20d0c6f2f5dc61db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:49:9f:b1:68:2a:fc:60:63:42:1c:cd:2d:ba:
7c:36:d5:96:86:b9:fc:1d:e2:27:fd:3b:19:83:8f:
a7:ef:ad:63:52:da:19:d7:73:95:df:02:d7:49:78:
b9:f9:23:31:0e:b3:83:e8:bf:cf:da:42:1c:78:6c:
20:65:19:a1:0d:b9:9b:ad:e1:2b:f8:4a:98:2e:1e:
5d:29:20:55:5a:38:0c:0b:8d:14:ca:07:28:d2:ae:
f0:97:0e:a2:43:28:6f:1f:84:04:6f:d9:38:3a:8a:
ff:fe:49:a3:fd:c0:b5:49:01:90:d6:0b:f4:72:d8:
75:45:6e:4e:89:51:ef:6f:c7:ba:fa:12:de:38:fb:
eb:58:04:f1:3a:43:9b:b5:b7:c3:3d:82:c1:50:7e:
c6:bb:c8:0d:19:55:ca:07:25:9d:70:49:f2:71:dd:
fc:fa:0d:29:2c:62:10:f9:13:79:9c:18:99:ca:81:
ad:90:11:27:b5:01:24:38:a5:8d:88:91:a7:76:20:
82:9a:24:2d:d7:db:1a:32:35:53:a9:2a:3a:b8:39:
e6:d2:84:1b:22:95:03:6e:6c:01:fe:71:9d:33:c8:
c9:ed:ec:5b:90:d9:75:a9:bd:db:f1:ca:5c:20:01:
3a:73:5a:5f:ca:a6:1e:d7:40:85:cb:87:98:6d:89:
2f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:29:42:0D:F3:1E:4F:E7:4B:C2:87:AE:20:D0:C6:F2:F5:DC:61:DB
X509v3 Authority Key Identifier:
keyid:50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:f6:0f:08:cf:b1:04:6f:b4:a5:b7:59:b0:13:22:49:81:c2:
5c:cc:97:4c:8f:9c:74:25:0e:4b:db:10:91:2c:b8:a9:85:f6:
30:e2:73:b8:90:23:c2:9b:06:c3:ca:26:ed:b7:a6:37:f2:0c:
c4:be:74:9e:c5:45:7b:b9:f6:44:1f:dc:e4:c2:bf:70:ff:82:
24:ca:28:a4:ff:d1:76:f4:0b:9b:3c:09:7c:cf:e7:8f:84:f3:
65:62:3a:da:52:8c:74:50:6c:ab:74:e2:7a:b1:d8:c9:7a:f9:
73:16:e0:92:aa:c3:6f:8f:f2:d3:d5:5a:e2:3c:a1:11:ab:d0:
4c:ae:1e:71:b5:f0:fe:98:0d:d0:18:91:f9:af:bd:17:0a:15:
16:f1:32:cf:ff:c4:b1:51:50:df:ea:bb:04:61:cb:5e:57:89:
cf:f3:51:2d:e5:89:84:d2:33:36:af:29:0e:df:ca:c2:58:67:
53:19:24:50:1f:60:7c:58:f2:47:30:43:b7:31:82:f4:8f:d3:
bf:b3:cd:95:0c:94:60:10:10:72:87:8c:42:f6:8a:ce:a9:00:
3d:8c:d9:a8:49:48:cc:a0:59:35:07:48:e1:d4:37:b1:ea:1b:
7d:25:1e:ca:21:19:c5:8e:41:f5:db:c7:49:1a:cb:66:cb:d4:
51:c1:4e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:24:57 2026 by rpki-client