Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
File: uPrah6dvKfguJaMXnno4zwxrAwA.mft (raw, json)
Hash identifier: 7TPiiM22rYvUHhhZrjfonD/38QF2cfzQ7s89MxeeGl4=
Subject key identifier: 12:78:F9:AC:B9:F3:8D:25:65:F4:36:BE:2A:7A:61:1C:28:66:C3:43
Authority key identifier: B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
Certificate issuer: /CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Certificate serial: 019F1153262764FA426DB09046D669A2EF59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
Manifest number: 1954
Signing time: Mon 29 Jun 2026 03:01:29 +0000
Manifest this update: Mon 29 Jun 2026 03:01:29 +0000
Manifest next update: Tue 30 Jun 2026 03:01:29 +0000
Files and hashes: 1: DAVFmZnYiqZx6KzJWbCmA5KUHHM.asa (hash: lwO6KNsDsUK02umvIhUrsPYfieazcxy0SsotATnRRFA=)
2: sxw94R-8dpDBFwr_QuU2x8m1Z70.roa (hash: nGqPu9eVja8tiL5hL0aJIPFGTLc3iJ+u/5CYg63lyAY=)
3: uPrah6dvKfguJaMXnno4zwxrAwA.crl (hash: IuovybnUTCkjkwKlWDV+jssneHJakv1Hdk+2nGHCIrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 03:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:53:26:27:64:fa:42:6d:b0:90:46:d6:69:a2:ef:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Validity
Not Before: Jun 29 03:01:29 2026 GMT
Not After : Jun 30 03:01:29 2026 GMT
Subject: CN=1278f9acb9f38d2565f436be2a7a611c2866c343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:be:a2:af:cf:de:5c:69:43:43:ef:9b:c5:de:
0c:69:c6:5e:bb:4c:df:4f:55:3c:b3:3b:12:cb:78:
c0:df:25:b2:95:a0:fb:2c:32:9e:f7:6e:22:b4:86:
ab:72:63:47:82:06:7b:20:7f:f0:1a:78:1f:34:1f:
64:7f:10:51:d7:e0:7d:3c:77:d3:6b:42:68:65:23:
c5:bd:c5:bf:c4:08:53:53:bd:ba:37:e1:50:50:99:
fa:c2:b7:1a:55:70:af:0a:18:b7:70:d6:23:b3:70:
fe:9f:31:06:92:60:3a:96:ba:c2:d1:81:56:1c:d3:
68:3f:75:77:66:91:11:3a:87:06:0d:cd:92:9b:76:
62:4a:ac:5e:db:62:32:dd:7d:8a:8b:8f:d7:e0:ba:
04:54:b5:bf:33:b3:de:3e:92:7b:36:c6:8e:c9:53:
d0:d1:25:72:2f:03:3c:dc:61:30:8d:bb:77:c2:55:
2b:a1:83:87:31:48:93:36:ad:f6:58:6c:34:cf:34:
5f:d9:de:84:b3:b5:f2:05:ca:49:3e:7c:ff:3b:6d:
87:c5:fe:5a:23:67:d2:a7:8d:26:7a:75:7f:7f:b8:
ff:25:26:0e:da:07:08:97:03:c0:da:c1:53:31:3e:
de:e3:52:94:d8:83:66:6a:cd:c1:ac:17:36:9b:e0:
39:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:78:F9:AC:B9:F3:8D:25:65:F4:36:BE:2A:7A:61:1C:28:66:C3:43
X509v3 Authority Key Identifier:
keyid:B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:6c:84:62:ec:f7:47:04:2e:ce:89:78:11:4d:09:fc:00:f2:
3a:07:34:90:0f:e1:8e:27:af:5e:29:92:6f:cb:6e:d7:7f:da:
46:9c:3b:d3:b5:d7:37:02:44:34:47:fc:34:a2:e0:f2:9f:bf:
b8:83:41:65:57:74:ec:48:d9:ea:c0:ba:b8:34:ba:bc:d0:a5:
3c:23:79:2a:e8:ee:e6:45:ed:a4:d2:22:67:9c:c5:c4:ac:69:
65:78:68:3c:47:db:a9:94:d3:57:86:1f:3d:d3:a7:ef:0a:05:
31:13:e7:3d:88:fa:98:a5:a4:75:f8:02:b0:42:ed:ec:8c:d5:
53:59:0a:d8:22:ba:38:a0:38:76:b1:75:52:7a:c1:9d:d1:fc:
f5:bf:8e:72:da:7b:b0:51:41:d6:0c:e0:f1:21:2f:54:59:fe:
7f:8b:de:b1:8b:05:8c:34:91:bf:e0:ad:4c:67:47:b4:a6:b1:
ae:11:35:1f:f9:51:d3:99:5b:be:00:07:8d:b2:91:54:18:df:
7b:87:8f:09:62:39:f8:24:42:a3:18:53:0a:51:ed:85:09:77:
8d:34:01:72:42:5b:92:a0:db:06:1a:ed:ad:00:68:d9:d0:77:
c6:f3:da:38:f0:e8:8e:55:0a:a7:0b:ec:5e:18:82:a1:54:21:
07:99:82:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:35:33 2026 by rpki-client