Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: 3U1ePTXh+ZzjAoRjDuZizOzIXE6+FtHMg/fpw6IST0M=
Subject key identifier: 40:24:19:6A:30:07:CD:F9:2C:BF:08:0A:48:68:43:71:CB:5E:AE:66
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 019DCFE3113656E111E30F4B00E6E20F408B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 117B
Signing time: Mon 27 Apr 2026 17:00:57 +0000
Manifest this update: Mon 27 Apr 2026 17:00:57 +0000
Manifest next update: Tue 28 Apr 2026 17:00:57 +0000
Files and hashes: 1: 6Lv0ELrWKZzM2WUhjrrfSxrLv5I.roa (hash: b+tPMLvT0wTQ8KNZFO7LFZXenP25HBtSk8cAgN48xuk=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: swLU34gFINytNUJqPlPBZD7mN/WfLqU/WCjVHBtF2Oo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:e3:11:36:56:e1:11:e3:0f:4b:00:e6:e2:0f:40:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Apr 27 17:00:57 2026 GMT
Not After : Apr 28 17:00:57 2026 GMT
Subject: CN=4024196a3007cdf92cbf080a48684371cb5eae66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:88:a7:a9:1b:c5:66:ac:09:46:5a:d1:15:5c:
93:bc:5f:38:f8:c6:cd:08:af:f3:1c:94:71:f2:4e:
e6:10:9b:6e:cb:4c:19:47:9e:54:f3:ea:f4:17:5b:
ea:f2:c0:a2:9a:28:a3:c6:b7:09:0b:33:b0:9c:54:
51:6b:af:f1:97:50:79:74:94:a9:64:c0:04:57:3d:
da:1c:b6:47:b8:98:dd:78:43:d5:63:01:7b:57:fa:
22:f7:81:a4:28:01:3d:f3:1d:f8:07:5d:ea:98:e8:
b9:63:c4:1a:05:9c:99:ce:71:9a:d9:f4:19:bf:25:
75:29:dd:16:f4:ad:5d:bb:c5:87:d7:03:56:47:60:
17:bd:d8:52:28:c0:99:33:51:4b:a1:ca:49:9f:fc:
37:38:26:c6:df:60:59:03:3f:7b:b3:a5:b7:64:2c:
11:98:38:b2:bb:84:bc:8d:96:a2:8c:84:8f:97:ed:
7a:55:69:7e:04:fc:5c:1b:ec:c0:8c:38:e4:af:7c:
ba:6a:6f:9c:e7:89:a3:27:37:4e:9a:58:ab:ea:1e:
f7:12:de:59:e1:30:e9:5c:4e:3d:44:c0:d0:0e:9b:
a4:4b:28:0c:af:aa:57:b7:67:e0:7c:e0:6d:7c:d6:
72:16:ec:35:b7:c0:17:55:90:ef:91:d6:03:5c:3e:
13:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:24:19:6A:30:07:CD:F9:2C:BF:08:0A:48:68:43:71:CB:5E:AE:66
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:49:30:ed:0d:ad:a9:40:d5:41:55:8f:4f:05:8c:99:2b:75:
3f:5b:cd:e3:ee:fc:43:01:b4:e9:30:c5:17:1b:70:ec:ae:6f:
a7:b0:38:12:aa:ca:3a:54:fe:be:7c:46:2d:68:eb:7c:7c:78:
40:24:07:85:4b:bd:a7:6f:5d:99:c9:30:ec:fc:7a:38:cf:07:
6e:23:27:4d:a6:f6:a4:e0:9a:76:b0:dd:00:c2:3f:61:1b:ae:
97:86:8e:ee:37:47:9f:3b:aa:1b:7b:ea:bc:55:54:f9:72:51:
a4:b5:1f:e2:c0:cf:52:a6:43:2d:8b:11:28:6c:0f:7b:c8:b0:
47:eb:d7:b4:3f:87:ea:ad:21:d4:2a:b7:8b:a9:16:c7:b7:f6:
ff:65:78:b7:fc:71:73:ee:be:09:a5:d0:ba:07:b2:91:2d:82:
b5:9f:a2:b3:77:a1:27:cd:e2:f9:88:a7:6c:07:90:8f:cf:55:
c0:c7:b3:04:08:87:ef:10:38:5b:c6:b8:82:f2:2e:65:3b:fc:
dd:f2:32:9b:0e:3d:f9:69:c7:54:bb:48:be:be:4a:30:bb:45:
34:bb:b1:31:4e:b8:d6:76:4a:e5:9c:b3:84:ce:0f:da:55:4f:
0c:f9:60:ae:c6:92:39:23:6e:73:d6:d3:df:af:7c:9f:92:e5:
0a:7f:58:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 03:24:46 2026 by rpki-client