Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
File: UeFdozln1BRwqW1hQcg0DyJAWBw.mft (raw, json)
Hash identifier: 8IGYNFhIBzF7kBtsuGYWK1VgF6MPvOywML8iT95ds9E=
Subject key identifier: 96:D8:32:B8:B9:37:02:DE:A9:C3:30:B2:79:CA:88:09:06:07:3E:A0
Authority key identifier: 51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C
Certificate issuer: /CN=51e15da33967d41470a96d6141c8340f2240581c
Certificate serial: 019D2B857C131AB69A9F9EE1066C64CF3BA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 19:01:01 +0000
Manifest this update: Thu 26 Mar 2026 19:01:01 +0000
Manifest next update: Fri 27 Mar 2026 19:01:01 +0000
Files and hashes: 1: 81cJ_EIt-PStE8ZvP9c7d9zPO5Y.roa (hash: VoEIe6W6A/UJnNjd89XKoAD4I+DEvz9ksYBB+LiWpIU=)
2: UeFdozln1BRwqW1hQcg0DyJAWBw.crl (hash: QjuMCa011LqkMFXgKbObRcYgtLJjDJVlD9QDYYzBrV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:85:7c:13:1a:b6:9a:9f:9e:e1:06:6c:64:cf:3b:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e15da33967d41470a96d6141c8340f2240581c
Validity
Not Before: Mar 26 19:01:01 2026 GMT
Not After : Mar 27 19:01:01 2026 GMT
Subject: CN=96d832b8b93702dea9c330b279ca880906073ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:26:c0:0d:07:31:ea:2d:b5:3a:5e:99:9e:3c:
9e:c7:34:38:46:47:b2:62:87:f6:21:c2:13:e7:c1:
96:75:a7:4b:dd:5e:31:5e:16:5f:b3:2d:b6:b4:f9:
e3:06:b6:f5:ed:02:89:3a:a5:5a:57:31:a1:f4:19:
62:67:3b:96:ce:1b:62:1c:70:5b:52:5b:9c:d5:f9:
6a:a9:4a:9f:ce:45:d7:70:64:23:d8:db:ff:0b:a2:
48:16:91:e9:38:93:56:1e:98:29:ef:1c:47:86:64:
df:d4:03:ee:67:ea:4b:47:24:4b:f3:d4:4b:05:57:
00:b2:b1:7c:e2:98:b8:d0:3a:17:ad:c6:51:99:25:
c8:cb:4d:68:ed:fa:36:e3:c1:e4:20:de:ce:ff:dd:
2f:aa:1f:ba:21:df:d2:ea:be:72:87:10:39:1d:42:
cb:57:ce:b7:fe:35:b1:5c:fe:a9:8a:12:ca:98:1f:
41:dc:8b:27:00:62:1f:34:cb:2c:14:86:fe:77:3c:
f5:8f:50:53:33:b1:ba:ab:13:92:1c:8b:8f:2b:49:
06:5c:56:1b:46:89:7a:f1:22:2f:d0:e8:77:bd:38:
c4:60:dc:87:e9:1c:cb:af:68:ae:27:c3:f6:7d:42:
d6:c9:29:95:1c:d8:77:92:ee:d0:f5:ef:ba:80:0e:
05:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D8:32:B8:B9:37:02:DE:A9:C3:30:B2:79:CA:88:09:06:07:3E:A0
X509v3 Authority Key Identifier:
keyid:51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:35:e8:da:01:ca:38:7c:67:85:8c:40:f7:65:3b:9e:e5:21:
28:95:cc:69:42:96:db:34:a5:d0:4d:c3:ef:7a:15:90:04:dc:
4b:40:60:46:63:7f:a0:a2:18:90:00:8e:df:e6:f3:83:7a:f5:
db:aa:c6:07:8c:5d:2d:a7:30:b8:26:b2:e9:58:0d:8b:d4:de:
ed:ed:98:d2:77:7d:df:86:7b:5a:86:00:5a:2c:ec:e1:63:c7:
4c:c7:c9:70:24:51:bf:aa:1c:f1:e2:df:7d:7f:41:2b:94:39:
aa:35:69:29:66:93:92:db:0a:aa:9c:d6:65:76:84:06:41:c7:
ad:1a:da:f7:ef:5b:77:ab:df:b9:d9:71:ee:73:11:01:66:24:
fc:fd:a8:4f:c1:40:b0:37:d6:ca:d0:53:3c:07:0f:9e:c3:0a:
b7:79:02:d7:15:e3:bb:ee:0f:28:48:e7:d9:96:a2:58:5a:4b:
7f:ff:65:63:5d:5c:b3:8c:9e:45:89:13:01:a7:e5:e6:e5:48:
fa:d9:7a:1a:3a:fe:a0:f4:2c:d4:d0:55:f3:ac:e4:e8:73:bc:
71:e0:02:ef:fa:36:17:c4:16:aa:96:a3:db:63:7a:a9:20:10:
6b:bb:44:39:12:14:1b:7a:1a:9d:24:5a:d0:48:ca:b4:8b:e6:
b8:c0:8f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:12:23 2026 by rpki-client