Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
File: ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft (raw, json)
Hash identifier: g2kSpV0Rccy6hRANuYAOcO5EKOuw2RtKTYjWPctYnrA=
Subject key identifier: 9C:18:9C:EC:A0:48:93:4E:55:50:9C:5C:71:5B:D7:18:9B:3F:43:CC
Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Certificate serial: 019CE7B796D7D4734F2BE6BEBA0B7A7CA97F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
Manifest number: 0A35
Signing time: Fri 13 Mar 2026 15:01:34 +0000
Manifest this update: Fri 13 Mar 2026 15:01:34 +0000
Manifest next update: Sat 14 Mar 2026 15:01:34 +0000
Files and hashes: 1: 0UnyCR-s9iVj-44nCnj3n-e4xtA.roa (hash: qIADwbji8igygxrgQjLDhHXbAfWGtCs+G3X3x04AbP0=)
2: MY0oyyxJxhBaxV6e35Jj6RwVRN4.roa (hash: b5AkjRiP8AjbeAnZmdI+p2iRLfqlwKytew/Xvvx0yg0=)
3: UIXymbU01AcELRK4XQgaDZSENDk.roa (hash: XHkCVd4jVL4ur9JpM+WZI6Fqyp3dAyt/v/b4jYj6KaE=)
4: eG6Nd0AEheFJzh2ZzgIc-HGYq9Y.roa (hash: tN9thuUXDSgdN1PacHIHF6V4krE+2Pkx1P2dF2wQPtI=)
5: lhhkdnjbTFcMf_WSQ6Vdc7cUgLg.roa (hash: vPcYoUUrECmWg0bzxsg1BXvUiLIZvalyKunX15L0XGc=)
6: q_YJm9uusZ1gdH6rfgf8d1zvcNE.roa (hash: 7dAiJ/6GQJnXgS5Q7uLwSzG/j868J9jWgDmOCQtKyWM=)
7: ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl (hash: GmN3f3xUf6BCswXqxAOLufD4YXSUFy9QhcWMq9nZpYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 15:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:b7:96:d7:d4:73:4f:2b:e6:be:ba:0b:7a:7c:a9:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Validity
Not Before: Mar 13 15:01:34 2026 GMT
Not After : Mar 14 15:01:34 2026 GMT
Subject: CN=9c189ceca048934e55509c5c715bd7189b3f43cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5d:00:8f:db:6a:90:ff:65:4a:12:5f:cd:1c:
a0:df:cc:f0:c0:da:72:4e:3b:1c:88:3a:7c:26:01:
b8:53:c9:d3:de:7d:6f:89:d6:b0:24:11:57:b8:1d:
6a:f2:e9:1d:e7:f2:8f:74:50:39:51:84:75:18:a9:
51:cf:88:14:f3:6f:f0:0d:33:be:88:d4:90:f3:92:
a1:0d:07:89:27:08:84:d6:dc:0d:f6:6c:cc:35:4a:
ac:06:fd:0d:68:b8:dd:11:96:6d:53:50:49:95:91:
f8:75:5e:71:65:0e:bc:c0:f6:94:e0:87:e2:c7:3e:
1c:3e:05:54:2e:e3:da:74:7a:33:7a:6d:7c:6b:de:
98:5a:01:f3:4e:78:9f:c7:26:f0:00:b0:d5:3d:44:
d0:fb:9d:31:f8:2f:0d:9e:f0:9e:0d:17:17:d8:4a:
a8:63:82:53:a9:86:60:6d:ef:b3:e0:a4:38:e9:dc:
e2:ac:0e:38:c8:f9:9c:4e:74:06:e6:ea:9d:cd:c7:
25:ad:5e:81:64:b5:60:97:31:ae:2a:20:9a:69:b0:
0d:33:96:bd:37:04:ba:b7:26:a1:56:b3:6e:5b:58:
03:ea:38:30:8e:ac:f0:3c:20:a4:e4:2a:db:15:29:
f1:8e:ae:88:7c:eb:fa:03:be:16:cb:59:d8:76:50:
7b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:18:9C:EC:A0:48:93:4E:55:50:9C:5C:71:5B:D7:18:9B:3F:43:CC
X509v3 Authority Key Identifier:
keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:34:59:c4:42:6c:a4:f3:63:f2:dd:e8:0a:35:3b:0f:2d:a6:
35:ca:ed:7b:0b:11:03:e7:e6:1d:8d:4c:d5:26:15:df:c5:d0:
1a:a9:2c:3b:ff:99:a2:74:92:cc:dc:70:e3:fb:d8:22:f9:d4:
41:83:27:34:77:3e:6a:15:c2:da:ac:fb:b5:74:3a:9c:10:6e:
1b:25:1a:69:41:7e:84:84:2d:78:82:82:0b:b7:07:fd:ff:e1:
d4:a3:97:c1:72:69:6f:3c:87:28:76:2b:96:bf:06:87:87:3e:
31:92:d8:ac:4d:4f:d8:36:c2:0d:ce:bf:b7:ed:ba:48:75:30:
77:9f:d4:63:ba:73:b2:74:bb:b4:c6:74:0a:53:c7:3a:b5:c1:
0a:eb:9f:7b:3c:ef:c8:0c:29:d0:64:d6:ec:c8:b0:b5:76:d6:
d8:f8:bb:32:9b:18:71:40:f1:ca:81:5c:6d:52:2e:81:1d:2a:
db:7b:0b:b2:aa:41:e3:7b:de:bb:4e:dd:f4:7d:bb:fe:a0:07:
67:ca:91:7d:f5:ef:50:2b:3f:b9:00:79:24:39:17:a2:32:c2:
38:66:30:e1:01:c7:9f:6c:75:fc:78:08:d6:ee:26:2e:d3:25:
00:0c:ea:f5:ce:a8:8b:e0:8f:0d:fe:bf:a9:5a:12:0c:af:55:
5f:55:82:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 20:54:15 2026 by rpki-client