Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json)
Hash identifier: 5EIDwtF7OKqQfAyDCgV9/0pu1yJv39Y2Itr9c2iEWKk=
Subject key identifier: 80:E9:D0:22:9A:B5:DE:1B:BC:41:D5:63:10:CD:B4:CE:26:13:20:7B
Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Certificate serial: 019D3865B4FCA7B071202AC8590776EC073A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
Manifest number: 0ECD
Signing time: Sun 29 Mar 2026 07:01:22 +0000
Manifest this update: Sun 29 Mar 2026 07:01:22 +0000
Manifest next update: Mon 30 Mar 2026 07:01:22 +0000
Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: ybMopYAfi7nVyj5/IfIEEZRTAVkbDuRujwpQe/XwKeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:b4:fc:a7:b0:71:20:2a:c8:59:07:76:ec:07:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Validity
Not Before: Mar 29 07:01:22 2026 GMT
Not After : Mar 30 07:01:22 2026 GMT
Subject: CN=80e9d0229ab5de1bbc41d56310cdb4ce2613207b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9f:f6:5e:a5:58:63:70:0e:b7:7a:1e:e5:28:
af:9e:15:ac:41:76:fd:30:09:64:be:d9:74:08:02:
20:a8:d8:2c:03:d3:2e:c9:af:b7:46:f6:d6:70:a0:
fd:8f:af:3e:85:2a:e2:ca:d2:8f:32:b6:35:bf:f1:
bb:74:d8:4e:d8:7a:a4:46:1c:4b:f9:d1:13:5c:3b:
2e:76:d4:71:9f:a3:62:f3:12:d8:cd:61:75:35:be:
4c:07:75:df:ef:e6:97:14:08:93:5b:d1:21:8e:c6:
b0:e5:2b:c5:f9:22:40:c0:0f:f5:ff:cf:95:23:99:
17:a3:ff:76:ad:92:db:cb:02:82:75:48:54:a5:fb:
c7:42:e6:56:f5:c2:8e:f1:7c:bd:16:64:73:bc:d2:
c0:e4:29:99:99:d1:c1:4c:5b:c6:29:e3:9a:72:07:
d2:0b:f8:c8:6a:77:cd:7e:26:7b:33:a3:53:33:13:
c3:35:90:96:36:78:e0:5f:3f:e2:e8:7e:e6:06:ea:
4b:27:98:03:d8:38:9b:a9:62:4f:2c:22:fb:9f:c2:
f8:65:ff:47:56:c0:f9:3a:69:22:a3:d1:c8:bb:51:
e1:5c:84:a9:78:0f:2a:c1:6b:11:2a:35:73:e8:fd:
97:a1:ae:e2:86:a6:f3:30:48:cc:1b:77:4f:82:8e:
e0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E9:D0:22:9A:B5:DE:1B:BC:41:D5:63:10:CD:B4:CE:26:13:20:7B
X509v3 Authority Key Identifier:
keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:12:5b:4f:8a:f3:48:e9:52:3a:ab:ac:8e:75:77:d6:91:2a:
38:0f:16:0d:72:f0:30:7b:e7:ed:63:f2:9d:63:39:a8:b3:46:
37:34:13:8a:ab:34:00:7d:d8:26:99:db:76:78:92:30:21:99:
79:1c:c0:14:f8:19:91:29:d7:d7:21:b6:4f:df:a4:26:b8:11:
8e:93:ca:48:87:ec:11:0b:bc:6b:a5:8a:ec:97:ca:36:7e:87:
32:f8:2d:ba:89:b8:a9:89:3c:04:8b:6f:03:ac:bd:10:5e:f9:
58:34:7d:4d:6c:c8:e7:24:a8:8b:e9:f1:bf:5c:57:8a:0f:c8:
f7:2b:4a:9c:af:f6:89:92:19:a3:35:63:08:07:5b:3f:4d:70:
88:49:a3:c7:31:c9:27:ed:0c:0f:ff:3b:93:39:e1:04:0e:d0:
2c:c4:1b:4b:b7:55:ee:0c:e9:84:50:7f:d4:7f:5f:b5:6c:22:
3e:9e:2c:26:af:22:92:76:98:6b:29:3e:5c:a2:de:bd:41:26:
be:63:5e:47:2b:01:ff:19:88:19:4c:dc:d5:b4:67:e0:a0:a5:
68:08:bb:a5:03:b1:b7:63:3e:5f:99:6c:47:58:11:a0:05:27:
9d:04:00:21:db:87:f5:0a:a5:ba:73:2d:b6:8e:47:d3:15:3d:
a8:48:d9:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:55 2026 by rpki-client