Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json)
Hash identifier: 215TVQB5gZA4DtT35okW7JKR3IJSAzZgh0EgEYhrM+0=
Subject key identifier: 62:1F:77:53:C5:A3:D3:BB:08:8A:CE:1C:41:D5:C0:E6:30:E4:98:1B
Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47
Certificate serial: 019D38D2E26BE59969CA49B0A0E6DEE472F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
Manifest number: 1591
Signing time: Sun 29 Mar 2026 09:00:37 +0000
Manifest this update: Sun 29 Mar 2026 09:00:37 +0000
Manifest next update: Mon 30 Mar 2026 09:00:37 +0000
Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: Wh6utAAKxZMV4oTHuEzafXAWYgQw9fWhkl3taZPcwfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:e2:6b:e5:99:69:ca:49:b0:a0:e6:de:e4:72:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47
Validity
Not Before: Mar 29 09:00:37 2026 GMT
Not After : Mar 30 09:00:37 2026 GMT
Subject: CN=621f7753c5a3d3bb088ace1c41d5c0e630e4981b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1e:34:06:b0:f9:75:56:23:4f:e3:ac:ca:4f:
73:79:a6:ba:5b:0d:9b:ee:b0:89:fb:f5:a9:7b:0e:
8a:96:16:4c:af:03:e7:fc:64:fb:31:51:32:10:6e:
f3:83:37:e0:50:ae:29:d0:d2:38:59:c8:2d:a2:a3:
82:3c:1f:c2:f3:43:5c:98:0b:91:02:0c:da:cc:bd:
13:08:e6:40:17:04:0e:53:78:b8:1c:52:0c:e0:2d:
d2:a4:26:89:b8:49:28:36:f1:d6:a0:81:30:3f:25:
36:e9:ea:a2:57:e9:83:0a:9a:09:05:e4:f1:38:74:
da:96:c8:41:52:cb:a7:ea:6f:1f:7b:26:70:4d:3c:
96:b8:70:d7:8e:f7:b4:bd:62:7b:6f:bc:d0:8f:7d:
b3:cb:50:f2:33:fa:f7:23:de:53:7d:09:d6:7f:c9:
c0:9a:07:9d:97:d4:d3:fa:88:fa:2a:a3:b7:62:f4:
b7:9c:70:b1:63:f4:cc:2f:5c:ea:fe:0a:4f:73:29:
0b:59:2f:90:fc:ae:b8:ec:61:c6:06:a4:d9:6d:f2:
f4:8f:42:e6:c9:18:aa:3f:b9:bc:82:2f:a8:e6:f7:
ed:c1:b8:8c:41:1c:25:1d:34:5d:16:27:3f:1c:6f:
ef:94:0a:bd:34:8a:ea:72:7e:77:32:3b:36:06:f0:
bb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1F:77:53:C5:A3:D3:BB:08:8A:CE:1C:41:D5:C0:E6:30:E4:98:1B
X509v3 Authority Key Identifier:
keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:24:08:47:eb:cb:14:b6:93:a4:af:d8:ff:9a:3e:17:65:2f:
29:1c:f4:9e:2a:96:ab:99:91:87:55:e1:e8:cd:7e:b3:c9:36:
9b:35:f9:c6:0b:ac:62:37:3d:ff:5b:c5:4d:7e:8d:2c:6a:24:
9e:f0:2f:21:38:11:9c:27:f4:a2:b9:a8:30:fb:ca:f1:db:09:
82:c5:1e:4f:06:51:62:cc:05:06:e4:76:16:ca:7d:1e:8f:53:
c0:dd:bf:30:fb:f0:a5:7c:1e:57:08:af:e7:87:26:a7:ef:1d:
d7:10:c3:a0:5f:a2:93:f4:c8:7b:f5:26:0c:e0:60:d2:0a:e8:
41:50:44:80:8b:16:27:36:26:cf:f7:49:cf:23:e8:87:c5:da:
e1:f1:1d:17:4c:4c:c9:99:49:0a:41:40:ce:f3:96:f4:d9:1b:
fa:6c:93:0b:65:e9:76:15:37:31:09:a6:5b:3b:29:bb:a1:2f:
65:5e:99:90:27:e0:25:d2:15:e7:c3:e2:df:a6:66:8d:4c:7e:
14:0a:c8:43:42:54:3c:88:84:f2:19:4f:d5:d6:54:45:63:73:
2e:a2:9a:26:a6:12:df:0f:f4:bc:20:54:15:d9:9e:fc:f5:04:
41:f2:fb:1a:30:ef:32:d5:83:a6:a8:de:42:4c:4f:5e:91:99:
64:65:28:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:27 2026 by rpki-client