Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
File: uPrah6dvKfguJaMXnno4zwxrAwA.mft (raw, json)
Hash identifier: Tyz1+B4Uvn7sfr7+qbuh7Q+hyy3pozYF81XsCOEjvPc=
Subject key identifier: BD:0E:4C:44:A9:27:EB:49:5B:15:A5:DE:18:81:DE:F0:B7:4F:97:68
Authority key identifier: B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
Certificate issuer: /CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Certificate serial: 019D3977630108124BD60A65AE854E7BABF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
Manifest number: 185F
Signing time: Sun 29 Mar 2026 12:00:18 +0000
Manifest this update: Sun 29 Mar 2026 12:00:18 +0000
Manifest next update: Mon 30 Mar 2026 12:00:18 +0000
Files and hashes: 1: sxw94R-8dpDBFwr_QuU2x8m1Z70.roa (hash: nGqPu9eVja8tiL5hL0aJIPFGTLc3iJ+u/5CYg63lyAY=)
2: uPrah6dvKfguJaMXnno4zwxrAwA.crl (hash: rvHhrIFruONl25IfMEoT/4qrKUsHYdc80sSRNpF4Rp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:63:01:08:12:4b:d6:0a:65:ae:85:4e:7b:ab:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Validity
Not Before: Mar 29 12:00:18 2026 GMT
Not After : Mar 30 12:00:18 2026 GMT
Subject: CN=bd0e4c44a927eb495b15a5de1881def0b74f9768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ec:13:6f:18:a4:f8:8d:05:37:d7:00:8e:cb:
d8:61:3c:45:e5:f0:71:ce:ab:6a:e2:b2:9d:bb:8d:
5e:6d:a8:b4:25:06:8b:42:52:bd:7a:67:4d:63:db:
e9:5e:38:58:52:7b:4c:c2:96:f8:c0:ea:72:9b:17:
1d:0f:63:67:b3:76:b2:b6:71:ba:3e:4a:b3:5e:35:
a0:76:87:35:f5:a3:88:fe:e3:27:1c:c2:24:18:7b:
6f:3b:1c:4b:6a:0f:41:24:1d:1f:99:0b:68:de:f9:
31:a3:83:05:0e:a5:b3:69:7f:aa:27:09:63:99:e5:
fa:53:18:d3:28:5f:4c:28:0e:50:5b:e4:c3:d6:fc:
56:1e:24:f3:c1:77:fd:5f:dd:e7:07:9c:02:62:93:
c0:79:25:38:cc:b1:0a:d9:00:13:7c:92:a2:46:8b:
4d:7c:83:f2:a4:46:45:c0:d2:2f:6e:5a:0b:74:11:
62:6b:b8:50:a9:42:db:9d:92:c9:4d:91:05:cb:68:
64:a6:20:36:39:4b:6a:57:e6:b0:6a:e0:c8:71:0a:
86:ab:8e:3d:52:7d:b6:e2:93:e7:09:1d:ed:4b:f2:
bf:47:1d:8b:72:73:f4:9f:04:6d:b7:6b:0c:53:8b:
b0:6c:c4:9a:b6:1d:b7:96:f6:f4:a0:25:cf:a1:f0:
bb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0E:4C:44:A9:27:EB:49:5B:15:A5:DE:18:81:DE:F0:B7:4F:97:68
X509v3 Authority Key Identifier:
keyid:B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:6f:58:66:0c:2d:db:db:60:30:e7:5d:b5:b8:52:84:2c:24:
31:0b:ef:ad:24:a2:72:6c:2e:05:ea:81:4b:75:f1:19:fe:87:
da:31:67:48:c5:96:43:d6:3d:33:35:b3:29:58:c2:b7:cb:7d:
08:28:55:43:c1:6c:b5:95:fd:17:c4:30:7f:eb:df:16:ac:6a:
11:f6:a0:3a:79:95:3e:b4:4e:53:8d:44:83:b2:43:98:7f:ef:
e3:09:1e:3c:14:15:80:86:74:68:b2:a3:6c:b0:e0:55:c5:d2:
3f:41:8a:b4:b2:da:2c:bf:5e:d9:ad:61:9b:3f:69:6b:2a:db:
f3:7e:64:38:de:d7:c3:37:7d:eb:ed:b0:07:cb:d7:db:59:a6:
ce:4a:8c:2e:e4:6a:1b:42:7d:2f:5a:0d:36:97:f2:40:e0:cf:
22:93:d9:fb:e2:3d:4b:78:f1:1d:0d:e7:2c:f2:77:6c:bb:d7:
1e:a7:c7:13:84:83:8a:bc:bb:03:5c:09:85:28:47:29:a0:99:
bf:05:d4:33:21:18:20:cb:b5:01:a5:80:49:03:0e:fc:22:0f:
83:06:a9:18:7a:7f:09:b0:1c:b5:05:50:0d:32:99:76:bb:eb:
95:34:52:1e:e2:cd:b8:a3:ac:83:ff:15:8d:b6:6c:6b:28:e8:
9c:e3:c1:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:48:13 2026 by rpki-client