Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json)
Hash identifier: VaaRvSN214Glrpg1qLuSkRvkvXQiHyX0LPwIJ/A8igk=
Subject key identifier: FC:AF:DF:34:C2:18:E4:45:FB:2C:D6:59:71:29:91:04:CB:16:FB:B1
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 019D26CCC8005BE6D508655512C9FE5286A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
Manifest number: 0EDA
Signing time: Wed 25 Mar 2026 21:00:47 +0000
Manifest this update: Wed 25 Mar 2026 21:00:47 +0000
Manifest next update: Thu 26 Mar 2026 21:00:47 +0000
Files and hashes: 1: KYZm_9MuL_c9ERWs0Td3tSLq0RM.roa (hash: fei8OCGwkyhg3dv3nNRDFJMFMNR03cAB020hgr7s0HQ=)
2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: 1PUT/3RP1Hc47CPZHHQJqXcGR7BZBJdvEt5kd048m38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:c8:00:5b:e6:d5:08:65:55:12:c9:fe:52:86:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: Mar 25 21:00:47 2026 GMT
Not After : Mar 26 21:00:47 2026 GMT
Subject: CN=fcafdf34c218e445fb2cd65971299104cb16fbb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:3e:7f:40:f5:71:5b:4a:ab:46:7e:91:40:16:
ca:52:92:88:b5:5e:0c:5b:8f:9b:b9:09:34:7e:55:
3e:3f:40:8f:b3:cc:7b:e7:2f:99:99:9b:32:e6:9b:
28:24:32:2a:57:6a:4f:f2:27:e7:3c:92:f6:d3:9a:
44:87:59:dd:a7:1c:32:a4:93:23:2a:bb:14:c6:69:
be:0b:1f:aa:7a:64:af:bd:4f:f3:74:46:2b:cf:83:
52:75:dc:29:c1:82:1e:e1:75:1a:c4:17:c7:6d:33:
3a:27:b9:4c:24:bb:09:8f:de:db:6b:18:4a:fb:80:
4f:c0:bb:8d:3e:ff:cd:03:2c:97:a9:72:0e:7c:ba:
07:0b:50:97:e1:31:43:3f:e0:8f:12:24:e6:7d:9a:
82:24:8e:8a:f7:01:8a:64:79:5c:cb:ee:2c:22:0d:
b6:6a:c4:9c:0c:47:35:e1:e0:c1:4e:c5:7c:17:e3:
52:c4:94:c4:e6:b7:ec:af:ea:7b:46:d6:70:5f:9c:
92:d8:a7:00:fb:e2:cd:7e:d3:bd:fe:a8:b2:97:03:
0d:c2:54:0e:77:14:11:cb:65:cf:23:32:06:86:f4:
20:5d:13:cb:ae:90:4a:5c:e0:9b:ff:3a:61:99:fa:
ff:ec:8e:f9:72:d0:83:78:72:90:4f:39:9e:05:a5:
cd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AF:DF:34:C2:18:E4:45:FB:2C:D6:59:71:29:91:04:CB:16:FB:B1
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:9b:96:a3:fb:16:bd:30:bb:fc:09:50:c8:67:bc:58:aa:35:
72:1c:29:de:4d:1e:51:e0:04:72:b6:bd:2a:bb:35:42:18:dc:
5d:72:bd:d9:78:61:08:02:30:34:3d:22:ef:60:95:0a:b3:ad:
63:3c:cd:16:0b:d4:06:6f:64:7a:80:a8:28:b7:46:e8:77:5c:
0d:a9:0a:4b:81:0d:6f:5f:04:24:85:6e:eb:ec:e0:21:57:cf:
e6:1e:e9:6c:63:05:c2:04:16:e4:b3:85:da:f6:dc:ec:34:55:
ea:5d:26:e6:2d:28:be:4c:6b:64:99:c1:da:49:7e:29:57:8a:
95:ab:43:a2:96:f4:99:d8:ae:ad:3f:75:f0:5a:79:b9:f3:ce:
83:3b:e2:a1:fe:ad:5d:e9:6a:53:d1:ac:bc:7f:07:01:9c:09:
aa:be:2c:c1:89:03:9c:8d:8a:2e:51:db:dc:62:4e:4c:06:e7:
63:8a:0d:36:9c:65:79:1e:cb:1d:8e:49:06:ca:9c:b6:e6:61:
7b:4f:d3:32:08:ac:78:09:6d:d4:c3:e3:20:a8:00:c2:fb:11:
53:a5:41:8f:76:9d:da:d6:a4:50:e5:dc:8a:ba:2b:01:cb:28:
09:ad:64:4f:6f:9f:13:d1:c0:8f:fc:0b:8b:06:93:3d:2e:77:
97:67:e9:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:49:11 2026 by rpki-client