Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
File: uvzQImt58j3kemr95RRLGynii1w.mft (raw, json)
Hash identifier: ktWSnatpSrbrFwpdP/eGryUW6MoExgJ3O/mv3qqVIps=
Subject key identifier: F7:CC:83:50:19:D7:F1:EF:76:F8:4C:A7:A3:09:53:2E:DC:1E:B6:45
Authority key identifier: BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C
Certificate issuer: /CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
Certificate serial: 019D3909EB2013C168E318971AE5CA934BB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
Manifest number: 0A66
Signing time: Sun 29 Mar 2026 10:00:44 +0000
Manifest this update: Sun 29 Mar 2026 10:00:44 +0000
Manifest next update: Mon 30 Mar 2026 10:00:44 +0000
Files and hashes: 1: uvzQImt58j3kemr95RRLGynii1w.crl (hash: 6oPHbiqDc1ugrtL0jeNfw+29JxdJ7L+a5zrnuUP5Bok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:eb:20:13:c1:68:e3:18:97:1a:e5:ca:93:4b:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
Validity
Not Before: Mar 29 10:00:44 2026 GMT
Not After : Mar 30 10:00:44 2026 GMT
Subject: CN=f7cc835019d7f1ef76f84ca7a309532edc1eb645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c7:2b:fc:da:1a:dc:45:d8:15:90:87:60:3f:
82:87:5e:2f:55:24:47:b2:2b:f4:b8:4e:8a:91:ee:
4d:4a:9a:43:f7:05:6f:1e:92:db:a6:a7:1d:7c:c5:
27:56:70:b3:18:1c:f3:12:19:c1:4a:71:88:5f:87:
cd:e3:d7:b7:25:df:68:f9:1d:b9:fb:f0:0b:b5:f8:
e1:32:55:87:0d:31:f9:b7:4f:db:88:99:8d:a3:ac:
91:ca:79:93:c2:7f:5a:4f:80:04:95:19:20:c7:87:
9e:58:8d:57:1a:8c:04:d5:23:f0:4e:37:d0:cc:9a:
73:0f:9d:dd:75:fa:09:71:eb:75:3d:25:ef:8a:3f:
de:71:34:63:7d:49:4f:68:b4:86:d5:fa:17:b9:3c:
61:5a:f3:a6:50:f9:aa:b3:3b:7e:da:7a:40:1b:04:
04:e4:c5:d8:bb:04:63:d2:30:25:6c:c8:8f:68:cb:
41:54:de:8e:c0:bd:79:f9:d2:45:e2:77:a1:19:d9:
01:83:74:c4:30:fe:13:f0:8c:9b:e9:66:9a:97:00:
88:66:8c:f5:02:1a:cb:b8:d4:a8:49:45:a0:17:fd:
9a:28:1d:ab:1a:ca:fc:2c:1c:1e:9e:bd:ec:a4:ab:
cd:26:17:ea:c6:95:60:bc:bf:23:4b:9e:14:f3:c9:
01:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:CC:83:50:19:D7:F1:EF:76:F8:4C:A7:A3:09:53:2E:DC:1E:B6:45
X509v3 Authority Key Identifier:
keyid:BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:56:f0:91:62:ee:22:37:97:65:d9:87:14:f9:03:06:2e:91:
36:1e:5c:52:fe:d8:9d:21:f7:0f:73:0d:68:74:a7:ee:63:f0:
d3:f7:63:19:1f:46:ba:f0:94:e1:cc:a6:b2:e6:a8:4f:e3:db:
f9:40:a2:f7:3d:dc:59:03:c1:af:5e:3b:6b:93:48:bc:3d:45:
a0:84:4d:ed:40:64:3d:4e:f3:80:a7:dd:89:7f:9a:ba:46:0c:
c3:79:52:17:17:2b:f0:31:5a:ed:44:d3:48:05:d1:9b:dc:31:
5c:86:e0:2c:ca:43:9c:62:f8:34:d8:52:12:bb:11:43:76:28:
96:c2:6d:dc:01:52:64:98:c2:24:a2:04:c0:09:f2:dd:05:6c:
a5:dd:0b:1d:1d:41:c5:05:5f:7c:35:e8:e7:66:41:cc:4d:0e:
bc:bc:72:e7:9f:4f:81:1f:5e:c5:93:26:41:be:79:80:41:45:
63:60:80:b9:da:2a:a9:31:f8:fc:a1:49:b4:bc:a1:70:ca:81:
df:3c:05:2c:c9:6a:06:7f:3b:e9:13:91:c6:88:97:8e:fa:c8:
8c:d3:ef:a9:e3:c0:fe:d1:9e:37:8c:b5:c0:ea:82:1c:4c:e5:
b1:ff:16:f5:f0:ce:d4:6e:35:e1:46:9e:8a:ef:5a:15:a4:75:
33:76:8d:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:15:23 2026 by rpki-client