Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft
File: UKiPmoNBAa34dwN6UcgdEzqpRuw.mft (raw, json)
Hash identifier: mEvXdVBxLsUkk2HYptycvfSwUuCbcyiH+/QuZzziIXk=
Subject key identifier: 24:C5:5B:DE:86:A6:42:30:61:E8:7D:51:4E:F4:29:DC:A5:7A:31:76
Authority key identifier: 50:A8:8F:9A:83:41:01:AD:F8:77:03:7A:51:C8:1D:13:3A:A9:46:EC
Certificate issuer: /CN=50a88f9a834101adf877037a51c81d133aa946ec
Certificate serial: 019D3909E045EAEAE1F9865FB5BF5DF57889
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UKiPmoNBAa34dwN6UcgdEzqpRuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft
Manifest number: 101B
Signing time: Sun 29 Mar 2026 10:00:41 +0000
Manifest this update: Sun 29 Mar 2026 10:00:41 +0000
Manifest next update: Mon 30 Mar 2026 10:00:41 +0000
Files and hashes: 1: J7XTEsifopXt0LyZERZ4bxD_gsA.roa (hash: Il7+0rYxklAhI9+3062Z4W95Cz4Wv/cW8FrtfG8GyYg=)
2: UKiPmoNBAa34dwN6UcgdEzqpRuw.crl (hash: Tvxrj53gcPUW844Mi0MJrMtb0BFlDLwVM4PsuxUFYtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UKiPmoNBAa34dwN6UcgdEzqpRuw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:e0:45:ea:ea:e1:f9:86:5f:b5:bf:5d:f5:78:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50a88f9a834101adf877037a51c81d133aa946ec
Validity
Not Before: Mar 29 10:00:41 2026 GMT
Not After : Mar 30 10:00:41 2026 GMT
Subject: CN=24c55bde86a6423061e87d514ef429dca57a3176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:af:ff:cb:e4:95:92:2e:27:71:1c:f0:7e:da:
75:c7:bb:03:6d:f0:96:81:2b:d0:98:10:f1:6b:44:
b5:7d:bd:7e:07:74:e6:39:e3:24:52:7b:4a:00:82:
f1:cf:cd:e3:17:d2:3f:b4:73:f8:5e:fa:c7:e2:44:
9e:e7:5b:4a:87:fd:76:cc:e2:0b:d4:87:30:35:e0:
0a:43:e8:b3:7c:4e:67:ff:7d:d5:a7:a7:77:1d:95:
99:d9:2c:4a:be:03:c8:7e:b4:10:cc:5b:b4:14:82:
98:20:c5:2d:c8:3d:89:64:7a:54:38:16:0c:4e:ca:
7f:13:e5:59:f0:0e:69:d8:cc:35:11:b9:8b:6b:b3:
b5:97:c0:38:29:e9:2d:96:e4:01:48:e6:83:20:38:
8a:f8:35:2f:06:6e:24:14:e3:fc:97:1d:c7:40:be:
24:67:2a:5c:b2:40:e8:e6:fb:5b:03:ed:0a:3f:93:
03:46:a5:1a:79:b1:62:5b:3d:89:8f:93:14:22:30:
7c:07:ee:1e:e9:55:02:35:0a:3c:7a:04:97:1e:75:
91:f3:39:bc:56:e6:25:71:11:2f:68:3e:d0:d7:14:
86:a0:0b:d7:30:24:09:25:c8:7e:be:b6:29:fd:b5:
4e:00:99:dc:5a:63:2c:07:34:df:0b:ac:cc:ac:5c:
f0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C5:5B:DE:86:A6:42:30:61:E8:7D:51:4E:F4:29:DC:A5:7A:31:76
X509v3 Authority Key Identifier:
keyid:50:A8:8F:9A:83:41:01:AD:F8:77:03:7A:51:C8:1D:13:3A:A9:46:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UKiPmoNBAa34dwN6UcgdEzqpRuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:4e:09:4d:09:e8:8d:0c:4d:2e:d8:b0:be:1b:d1:36:7f:63:
05:51:b8:59:bf:5d:61:6c:a4:b0:06:13:b3:89:49:fd:60:c9:
16:4d:14:65:de:ab:ff:9e:d9:4c:ed:18:8e:d2:96:09:2d:67:
c7:6e:7e:3e:91:57:5b:f3:c5:7d:2b:9a:f8:1f:54:cc:25:c6:
00:17:58:40:9d:15:9b:8b:17:07:50:72:d6:b2:a7:28:69:76:
d4:55:a1:52:b1:99:f4:a8:d2:f5:92:21:b5:28:e5:c5:3b:99:
e9:91:2c:ed:ff:89:3a:64:6b:3d:d1:dd:b3:7c:60:52:be:77:
97:d8:ec:43:64:fc:cf:1f:51:e2:36:78:62:78:92:93:df:78:
9e:2c:84:10:96:14:ed:89:e9:92:3d:c1:1f:68:c5:01:9c:c3:
41:cd:e6:2f:75:45:20:92:13:48:7a:d9:85:20:74:ea:6e:3e:
9a:56:72:04:2e:dd:c0:02:27:11:b2:f3:d3:bf:9f:90:93:7d:
c9:ce:1f:4c:b6:e9:43:f3:9d:e9:33:64:fa:b5:ed:76:52:66:
8b:1e:a4:93:2f:f8:8e:ee:14:d9:56:b0:4d:54:b1:ab:15:cf:
bd:47:07:28:35:12:32:fd:3b:86:3e:d4:2e:b0:38:34:5c:04:
30:6b:98:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:56:42 2026 by rpki-client