Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
File: ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft (raw, json)
Hash identifier: C10tLF0yJ+mP/i4hPfX7d4HUVIhOnifr1EjJOgVYFUo=
Subject key identifier: 70:AD:64:DD:37:8B:6A:D3:EE:EE:62:69:09:D2:08:F7:9F:84:A1:61
Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Certificate serial: 019DD1639AD9C61E8F0345CA9287E53EC86B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
Manifest number: 0AAE
Signing time: Tue 28 Apr 2026 00:00:58 +0000
Manifest this update: Tue 28 Apr 2026 00:00:58 +0000
Manifest next update: Wed 29 Apr 2026 00:00:58 +0000
Files and hashes: 1: 0UnyCR-s9iVj-44nCnj3n-e4xtA.roa (hash: qIADwbji8igygxrgQjLDhHXbAfWGtCs+G3X3x04AbP0=)
2: MY0oyyxJxhBaxV6e35Jj6RwVRN4.roa (hash: b5AkjRiP8AjbeAnZmdI+p2iRLfqlwKytew/Xvvx0yg0=)
3: UIXymbU01AcELRK4XQgaDZSENDk.roa (hash: XHkCVd4jVL4ur9JpM+WZI6Fqyp3dAyt/v/b4jYj6KaE=)
4: eG6Nd0AEheFJzh2ZzgIc-HGYq9Y.roa (hash: tN9thuUXDSgdN1PacHIHF6V4krE+2Pkx1P2dF2wQPtI=)
5: lhhkdnjbTFcMf_WSQ6Vdc7cUgLg.roa (hash: vPcYoUUrECmWg0bzxsg1BXvUiLIZvalyKunX15L0XGc=)
6: q_YJm9uusZ1gdH6rfgf8d1zvcNE.roa (hash: 7dAiJ/6GQJnXgS5Q7uLwSzG/j868J9jWgDmOCQtKyWM=)
7: ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl (hash: fYweR+oy8LFUoNdVY9iyaPSXFL9q9XU38RAUyLJK1jQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d1:63:9a:d9:c6:1e:8f:03:45:ca:92:87:e5:3e:c8:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Validity
Not Before: Apr 28 00:00:58 2026 GMT
Not After : Apr 29 00:00:58 2026 GMT
Subject: CN=70ad64dd378b6ad3eeee626909d208f79f84a161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8b:bf:fe:fd:a2:2d:b1:83:a1:8f:78:af:72:
dc:a4:32:ac:42:91:a8:11:5f:03:22:7c:5b:99:84:
93:50:7d:49:ab:f6:c2:39:b5:c2:d4:f9:5b:ac:d2:
d0:fd:77:55:7c:5e:f3:1c:a7:82:1e:58:1d:bc:0c:
41:6e:7d:7e:ea:c2:8b:64:71:a6:ec:9c:fb:c3:6b:
c1:7a:5b:04:d8:f1:68:0e:08:01:a7:dc:1e:c5:b2:
be:d3:4f:fd:0d:5b:29:88:de:42:0b:8a:77:c8:31:
8b:69:0e:63:53:63:6d:15:89:8e:90:81:21:e5:89:
c2:5f:fe:33:32:39:52:3e:ff:6f:7a:0e:40:9f:53:
a9:8e:db:37:2e:de:99:c1:14:29:8f:29:58:b7:cb:
1a:b9:9d:0b:fa:8a:de:52:be:91:9c:45:b0:09:c3:
d4:a9:70:3d:bc:bf:2e:f6:94:e6:49:ff:72:02:37:
fe:8d:84:b0:8e:03:cf:50:df:6b:76:5a:67:5e:71:
72:12:08:c6:4f:c3:38:d3:f9:9d:c8:cd:3c:ef:e2:
e3:7d:61:5e:63:b5:8f:08:19:d5:ba:77:75:d7:4e:
53:af:55:29:06:13:3c:99:b6:a5:04:dc:e9:61:db:
d7:8b:8b:07:71:51:02:b7:ec:e1:fe:e1:a9:05:fc:
0c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:AD:64:DD:37:8B:6A:D3:EE:EE:62:69:09:D2:08:F7:9F:84:A1:61
X509v3 Authority Key Identifier:
keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:09:22:ec:3b:9f:3a:7f:5d:02:4c:c9:f3:fc:ec:87:4b:f3:
f2:30:67:e3:9e:32:dc:9d:2b:68:41:72:77:25:88:a5:02:63:
b5:bc:e1:b2:01:37:b4:77:a0:f0:4e:8c:5c:3a:0d:07:d2:0a:
83:27:45:05:a5:88:a6:c7:87:b2:4d:cc:15:4f:8b:50:6b:ff:
7c:78:8a:0d:67:9b:d0:5d:ac:e2:a5:17:01:48:54:d7:81:be:
18:26:1d:fd:39:26:ea:1d:2a:77:b3:e0:d8:e2:25:b0:56:5c:
b6:ed:e3:f2:dd:2f:da:28:81:cd:03:08:b2:a1:e7:d8:95:2c:
93:d7:95:ba:d0:03:09:74:ef:d2:37:9f:99:3e:80:6e:90:64:
f3:3a:77:9e:f9:e8:4c:ef:53:db:e1:12:6e:b2:63:74:c6:0f:
3e:15:f0:da:58:4a:29:a9:1d:b2:35:b0:2f:36:0a:f9:75:ea:
25:39:cc:e0:ca:9b:6b:05:d4:4f:e5:5d:f0:04:f2:df:da:fa:
c6:ec:8c:95:5a:1b:3b:06:34:30:87:aa:28:38:89:09:62:8a:
84:7d:39:83:1b:fd:50:43:ab:fe:81:96:b4:75:69:31:8c:11:
fb:2d:13:93:20:c5:a0:34:a2:dc:22:2a:93:95:bf:53:5c:61:
16:86:ce:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 02:18:21 2026 by rpki-client