Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: Z1OFC7Aa6JixSKKkkFI9q76mbx9zLHNwCHEYSWbx9n4=
Subject key identifier: 22:9B:3A:84:1A:FA:32:8F:3C:0D:DF:DC:5F:2E:5D:0C:43:EF:8D:D2
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 019CE63667E9B8CCBAF638F6D3A7A36B696B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 1102
Signing time: Fri 13 Mar 2026 08:00:50 +0000
Manifest this update: Fri 13 Mar 2026 08:00:50 +0000
Manifest next update: Sat 14 Mar 2026 08:00:50 +0000
Files and hashes: 1: 6Lv0ELrWKZzM2WUhjrrfSxrLv5I.roa (hash: b+tPMLvT0wTQ8KNZFO7LFZXenP25HBtSk8cAgN48xuk=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: FzOk2wN5MM+DomNiik6xyzGRuyQ5DM0OCwHO6u4BoDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 08:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:36:67:e9:b8:cc:ba:f6:38:f6:d3:a7:a3:6b:69:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Mar 13 08:00:50 2026 GMT
Not After : Mar 14 08:00:50 2026 GMT
Subject: CN=229b3a841afa328f3c0ddfdc5f2e5d0c43ef8dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7e:ce:85:0c:06:1b:a2:b7:3d:17:87:f2:00:
61:9f:08:bc:24:48:03:ca:fb:85:3b:db:f4:79:3c:
a0:6f:7f:ec:65:15:c5:76:33:b3:fd:5b:ee:9b:fc:
0a:c6:0d:be:5a:cf:0c:b1:05:7f:6d:5a:3f:4d:96:
d8:4c:ba:55:9f:1f:f3:d4:62:58:f6:6f:e4:a2:d9:
1c:ec:bc:15:e2:8f:af:96:ae:96:08:c2:70:02:31:
3e:a7:06:71:e6:4e:e3:1a:93:7d:ee:71:67:8c:ef:
d2:d4:72:9d:62:a8:6c:43:63:cf:8b:aa:e3:46:79:
d8:3e:db:81:f8:5d:5e:c9:12:6c:ad:06:5d:bb:22:
94:e7:ec:d1:b2:83:75:1d:c3:4f:ed:d7:33:f0:cf:
2e:15:30:6a:65:bd:a7:94:46:39:48:a8:7e:3e:06:
91:87:89:95:4c:18:e6:9e:88:9d:a3:c2:c6:a0:4a:
68:5d:9d:6d:ff:61:68:1b:b8:f9:ff:d3:20:5d:d2:
93:b3:d9:fb:29:ac:4a:1e:57:14:2c:fa:fa:dc:39:
16:ac:69:bb:5a:ec:89:9a:6e:65:4b:b0:57:1e:11:
42:78:1b:70:f9:a4:88:71:6e:9d:82:29:16:4a:43:
3b:d0:8a:13:4d:35:d4:13:9d:ce:54:33:07:35:77:
81:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:9B:3A:84:1A:FA:32:8F:3C:0D:DF:DC:5F:2E:5D:0C:43:EF:8D:D2
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:b4:05:6f:5a:8e:35:45:11:72:83:21:08:55:72:7c:b2:58:
c9:f4:6d:47:7b:ea:27:8b:db:b5:0a:aa:da:2a:45:26:04:6e:
e5:52:41:4b:39:0f:96:c3:28:52:c5:f1:cb:f1:40:d2:3a:b5:
0a:50:0d:2d:20:4f:eb:c0:84:c6:2f:a4:07:ad:10:08:43:5b:
d2:6c:d9:bc:b7:ee:be:7a:a8:05:4f:31:af:64:44:9b:88:86:
81:17:98:7d:8a:fc:3b:9a:eb:fd:ce:87:67:e6:fe:f4:ea:99:
b6:5e:80:8b:a6:61:b2:41:8e:78:d5:5e:ca:33:f3:c8:2e:26:
83:ff:39:91:ac:57:ae:96:5c:30:9d:13:ec:5f:79:63:1e:58:
02:8c:5c:8a:16:29:2f:67:e0:e5:ba:b4:f7:63:96:67:f5:28:
db:b6:60:32:9f:5d:19:27:91:82:5b:32:87:1f:a0:71:dd:af:
de:68:c0:01:f0:73:6d:b7:b7:f8:5f:cf:44:bd:76:b3:28:25:
33:2d:b4:ac:21:c0:fe:fc:9a:99:05:d9:70:a5:ca:6a:a1:78:
47:f8:2a:9a:87:60:56:df:1c:3d:6a:5c:75:63:3b:21:77:33:
3f:b9:79:0b:15:76:c4:6d:f2:24:0b:13:92:94:5e:57:12:17:
0b:b3:ee:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 16:26:53 2026 by rpki-client