Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
File: UxUwA3N9ePci25oo4iBD412Nhx4.mft (raw, json)
Hash identifier: RgXxYBCusjRtXUroXNozkzj8ws5B3TsZuFpNt1O9CZo=
Subject key identifier: 65:D2:A2:88:12:AA:A3:4C:78:74:72:F7:B3:64:63:32:79:4D:DE:E7
Authority key identifier: 53:15:30:03:73:7D:78:F7:22:DB:9A:28:E2:20:43:E3:5D:8D:87:1E
Certificate issuer: /CN=53153003737d78f722db9a28e22043e35d8d871e
Certificate serial: 019DCDF56ABF8958049D1D9F496DC82028EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
Manifest number: 18DE
Signing time: Mon 27 Apr 2026 08:01:46 +0000
Manifest this update: Mon 27 Apr 2026 08:01:46 +0000
Manifest next update: Tue 28 Apr 2026 08:01:46 +0000
Files and hashes: 1: 5I0HBHU6DFGjisjl0_HXu6MzkBc.roa (hash: J1zWeGNMh7+0ujc6n39n2VNnjxJR10bleZ2BiJvLPD8=)
2: UxUwA3N9ePci25oo4iBD412Nhx4.crl (hash: S9SM4//44Mgh3GbMlfeyjt8CPidYnKDwwDEI2caD2Oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f5:6a:bf:89:58:04:9d:1d:9f:49:6d:c8:20:28:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53153003737d78f722db9a28e22043e35d8d871e
Validity
Not Before: Apr 27 08:01:46 2026 GMT
Not After : Apr 28 08:01:46 2026 GMT
Subject: CN=65d2a28812aaa34c787472f7b3646332794ddee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9e:12:f1:3e:4a:06:62:af:23:cf:a4:2b:f3:
a6:78:d2:fc:de:54:b0:66:9e:87:8e:a7:3c:6f:39:
b6:88:91:2f:8d:87:a8:ae:03:05:3c:b6:ad:2a:6f:
c9:b0:b2:93:7d:6d:9f:5b:95:70:0d:28:63:3a:eb:
b0:ad:bd:c8:ed:d6:9c:29:a3:f7:bb:20:fa:9f:7c:
99:6e:0f:e6:93:28:b3:86:6a:88:76:d8:d4:b6:8a:
06:a1:cb:a9:13:84:2d:33:16:83:ee:47:00:66:48:
ef:03:37:b9:9d:c5:e7:80:f7:14:75:65:5e:52:cf:
d4:fc:bc:30:d5:32:24:42:fc:cf:d4:36:9c:db:23:
f8:6e:bb:35:e0:df:2d:17:3a:b9:7c:17:44:79:3f:
3a:c0:72:16:4b:3d:e3:ee:a5:9c:2c:0c:37:01:5a:
a7:5b:10:75:78:19:81:cf:5a:92:0a:60:7e:6a:5b:
5f:aa:74:54:05:88:f0:91:73:fa:41:23:8a:1a:d8:
a5:05:b0:c4:5e:1f:1f:d2:e5:96:f9:65:67:14:ac:
64:77:fa:7d:11:69:52:13:b8:07:3f:a2:4f:19:98:
cf:d4:f8:ca:5c:67:67:69:18:35:47:04:11:88:38:
02:e0:1c:b2:20:0e:44:d9:de:d6:9d:f8:19:18:29:
80:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D2:A2:88:12:AA:A3:4C:78:74:72:F7:B3:64:63:32:79:4D:DE:E7
X509v3 Authority Key Identifier:
keyid:53:15:30:03:73:7D:78:F7:22:DB:9A:28:E2:20:43:E3:5D:8D:87:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:5c:20:58:ae:4f:f5:2b:8d:48:84:cb:61:ae:32:3c:54:cf:
0e:3b:c7:5e:15:ca:f3:2f:0e:3b:ce:43:57:00:48:9a:89:3c:
ab:f0:e7:3c:b3:a1:11:77:fc:1a:3e:42:83:ec:78:c7:de:5f:
2e:2e:27:2f:9f:29:a0:e5:32:77:f1:14:dc:36:ef:d5:c3:02:
07:36:96:ea:ca:f9:65:c8:1c:e3:1c:d3:a9:ea:bb:ce:c0:01:
86:ca:cf:62:c4:bf:bf:4b:d3:03:1c:e5:ff:3b:5d:5d:fe:fb:
ab:1a:1c:b5:7b:82:c0:c1:5a:36:95:fe:10:a1:cb:2f:26:57:
8f:84:91:fa:d5:1e:57:23:75:d8:d9:c7:a6:64:79:cf:cd:c7:
bc:96:91:19:5c:01:58:2d:d0:95:ae:11:14:43:df:c7:87:4e:
6c:a5:52:c4:ac:75:1d:23:f2:8e:a1:39:58:a0:d9:5c:df:b2:
bf:81:a7:7d:8e:2d:72:f7:5f:3e:cc:ed:8f:2d:a9:a3:ca:f8:
4d:65:bc:ff:77:2b:e6:53:1a:ba:48:6b:63:1b:ba:b2:81:ab:
b4:ad:76:d2:49:01:31:26:55:cf:fc:90:10:98:2f:6a:fe:e7:
5f:45:1a:3e:96:e2:b1:5b:f1:e1:64:3e:fe:d0:5f:f4:14:0b:
59:2a:d6:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 16:05:52 2026 by rpki-client