Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
File: UiezboKeTYVl7WV0jhsck8zQDO4.mft (raw, json)
Hash identifier: iaLSmKo0lIQNZ79wUYUVYCmbMIiB80OjlVPX9DV7dhg=
Subject key identifier: B0:48:B4:87:2D:E2:B7:D4:E2:2E:47:EA:CA:A9:4C:DC:15:99:59:F6
Authority key identifier: 52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
Certificate issuer: /CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Certificate serial: 019D3977C76AD6A1B056924E6FCECF18AC48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
Manifest number: 12A3
Signing time: Sun 29 Mar 2026 12:00:44 +0000
Manifest this update: Sun 29 Mar 2026 12:00:44 +0000
Manifest next update: Mon 30 Mar 2026 12:00:44 +0000
Files and hashes: 1: P5QGU51MBWbq811ui2M903jDzeM.roa (hash: cl6QRl57KjA79TtkotpuwrlWUT5toZEw0rnOBUVQkL8=)
2: UiezboKeTYVl7WV0jhsck8zQDO4.crl (hash: lwPca5N8vOWw5rQHvjOhYVK6vH6zj8xw0Ko0zrb1C7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:c7:6a:d6:a1:b0:56:92:4e:6f:ce:cf:18:ac:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Validity
Not Before: Mar 29 12:00:44 2026 GMT
Not After : Mar 30 12:00:44 2026 GMT
Subject: CN=b048b4872de2b7d4e22e47eacaa94cdc159959f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0d:07:f5:32:79:30:b1:4c:fa:e6:ed:f6:dd:
af:4d:42:e6:e9:f5:29:cc:8e:95:c5:47:fa:1b:13:
ba:7d:bb:b1:f4:9a:04:d0:c4:41:43:4b:3d:23:47:
2b:5a:e3:74:04:7f:1e:54:3c:af:03:24:a9:09:4f:
73:f2:be:a0:63:6d:22:18:91:90:4d:22:b3:7b:f5:
08:3e:9f:c9:0e:48:96:f5:bb:97:dc:22:01:5c:df:
0e:8c:e4:75:99:15:3e:9e:ac:72:3e:57:81:2a:2e:
e2:fb:d1:71:01:30:38:3c:4f:51:91:d7:f6:dc:ff:
bd:05:80:a4:c2:ad:9b:d0:34:96:ca:d1:84:c4:b5:
6f:45:c9:32:a0:9a:49:c0:d9:e0:b7:ca:09:92:2b:
60:8c:c6:e3:8e:f5:99:3f:da:4c:25:c4:5d:12:2c:
fb:d2:85:6f:25:02:43:b5:a0:48:59:4a:d6:07:1c:
1b:b7:10:91:0f:66:62:e4:b2:19:19:22:40:eb:be:
10:66:68:b2:72:35:73:f8:ba:89:b4:4a:29:2a:8a:
cc:59:54:2b:19:c2:d3:ac:6b:d6:76:1c:7d:7c:c0:
8d:03:44:9f:4d:a1:b7:84:23:00:5a:47:10:dc:52:
d2:51:62:54:f3:3c:a9:4b:60:8e:23:b7:cb:2b:3c:
32:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:48:B4:87:2D:E2:B7:D4:E2:2E:47:EA:CA:A9:4C:DC:15:99:59:F6
X509v3 Authority Key Identifier:
keyid:52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:f0:1e:a0:8f:58:ca:ad:a2:be:72:fe:98:c5:c8:40:02:6f:
b3:32:2e:bd:9d:a0:5c:4d:ef:4e:7e:0f:a4:83:38:09:d8:26:
2b:dd:8d:44:31:a4:69:f6:d3:cc:b5:21:a7:5d:8b:38:e7:af:
35:e2:f5:e0:93:0b:7e:66:56:a1:c3:0c:a1:0c:e5:f8:2f:37:
ca:01:db:c3:ff:46:7c:b0:e4:82:aa:ff:af:48:95:43:4e:24:
2e:ed:d0:f8:50:8c:10:3e:4a:66:9e:ba:29:20:c1:b4:8d:63:
dc:f4:c7:91:07:c6:02:63:c0:03:17:13:b2:86:1c:77:f0:e2:
9c:6e:f5:d0:03:b5:70:ec:ac:6a:d6:60:fd:11:b7:37:9a:12:
5c:09:6d:39:2f:58:20:aa:b2:01:d0:30:3f:2b:a2:86:14:4b:
0b:78:7d:88:16:a6:b1:8e:f3:de:05:17:67:a7:5e:e0:19:13:
92:5c:d7:21:59:5a:4e:4d:da:97:fe:51:a2:b0:ce:2e:4e:a6:
54:84:bc:3d:55:1d:b3:b2:9d:4f:d2:53:b2:65:16:af:c8:33:
c2:2f:76:03:2a:50:20:61:d8:12:a1:73:d1:5b:a0:de:72:de:
39:08:d5:c8:9a:cc:4b:bd:79:31:2e:27:b7:d3:1e:44:d2:80:
5a:da:76:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05d8dq1qGwVpJOb87PGKxIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyMjdiMzZlODI5ZTRkODU2NWVkNjU3NDhlMWIxYzkzY2Nk
MDBjZWUwHhcNMjYwMzI5MTIwMDQ0WhcNMjYwMzMwMTIwMDQ0WjAzMTEwLwYDVQQD
EyhiMDQ4YjQ4NzJkZTJiN2Q0ZTIyZTQ3ZWFjYWE5NGNkYzE1OTk1OWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxA0H9TJ5MLFM+ubt9t2vTULm6fUp
zI6VxUf6GxO6fbux9JoE0MRBQ0s9I0crWuN0BH8eVDyvAySpCU9z8r6gY20iGJGQ
TSKze/UIPp/JDkiW9buX3CIBXN8OjOR1mRU+nqxyPleBKi7i+9FxATA4PE9Rkdf2
3P+9BYCkwq2b0DSWytGExLVvRckyoJpJwNngt8oJkitgjMbjjvWZP9pMJcRdEiz7
0oVvJQJDtaBIWUrWBxwbtxCRD2Zi5LIZGSJA674QZmiycjVz+LqJtEopKorMWVQr
GcLTrGvWdhx9fMCNA0SfTaG3hCMAWkcQ3FLSUWJU8zypS2COI7fLKzwyjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLBItIct4rfU4i5H6sqpTNwVmVn2MB8GA1UdIwQY
MBaAFFIns26Cnk2FZe1ldI4bHJPM0AzuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWllemJvS2VUWVZsN1dWMGpoc2NrOHpRRE80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9hN2FlMTEtMTIxYS00ZjIyLWJlM2Yt
ZTkwN2FmMDdmZjExLzEvVWllemJvS2VUWVZsN1dWMGpoc2NrOHpRRE80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9hN2FlMTEtMTIxYS00ZjIyLWJlM2YtZTkwN2FmMDdmZjEx
LzEvVWllemJvS2VUWVZsN1dWMGpoc2NrOHpRRE80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc/AeoI9Y
yq2ivnL+mMXIQAJvszIuvZ2gXE3vTn4PpIM4CdgmK92NRDGkafbTzLUhp12LOOev
NeL14JMLfmZWocMMoQzl+C83ygHbw/9GfLDkgqr/r0iVQ04kLu3Q+FCMED5KZp66
KSDBtI1j3PTHkQfGAmPAAxcTsoYcd/DinG710AO1cOysatZg/RG3N5oSXAltOS9Y
IKqyAdAwPyuihhRLC3h9iBamsY7z3gUXZ6de4BkTklzXIVlaTk3al/5RorDOLk6m
VIS8PVUds7KdT9JTsmUWr8gzwi92AypQIGHYEqFz0Vug3nLeOQjVyJrMS715MS4n
t9MeRNKAWtp2MA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:09 2026 by rpki-client