Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json)
Hash identifier: NrwGHJcsyde+LCRuAm8xnGMhF4rBE00KV+clVTC2Ur4=
Subject key identifier: D9:AA:78:FE:C7:B8:8C:06:52:EA:83:79:5F:FB:32:C2:88:36:BB:0B
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 019E1FEC73C76FC03977A1C78AE33D105DDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
Manifest number: 0F5B
Signing time: Wed 13 May 2026 06:00:50 +0000
Manifest this update: Wed 13 May 2026 06:00:50 +0000
Manifest next update: Thu 14 May 2026 06:00:50 +0000
Files and hashes: 1: KYZm_9MuL_c9ERWs0Td3tSLq0RM.roa (hash: fei8OCGwkyhg3dv3nNRDFJMFMNR03cAB020hgr7s0HQ=)
2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: sHExxGN+NN19mJB075EoPUV9FgAGbo5aMPt4XAoGG4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:73:c7:6f:c0:39:77:a1:c7:8a:e3:3d:10:5d:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: May 13 06:00:50 2026 GMT
Not After : May 14 06:00:50 2026 GMT
Subject: CN=d9aa78fec7b88c0652ea83795ffb32c28836bb0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:37:42:ae:e4:3c:ce:af:c8:14:e6:e2:8d:f4:
f1:f4:9b:2d:ee:5a:a7:18:d1:be:1c:ec:73:5c:f8:
8a:3f:1c:dc:38:bb:9a:aa:f0:df:0b:83:6e:6c:68:
bf:cc:69:40:67:0f:5d:c2:a2:48:8d:ac:fe:00:66:
42:7e:27:45:a5:c0:af:f4:63:db:d3:d4:3f:7d:e6:
42:64:a8:fe:2d:09:f0:3a:b8:8f:65:82:ec:8f:5d:
37:1e:ff:d2:03:77:cf:11:f0:01:c6:ff:28:15:04:
6d:03:e8:42:81:55:23:a7:9f:73:c8:61:74:94:80:
19:aa:c0:21:d5:b3:69:e6:de:0f:1c:d7:7c:27:cb:
b9:1b:6f:1f:14:b3:6b:31:79:ac:b7:8c:f1:68:fe:
bb:98:87:6b:e1:68:d2:a2:ca:f7:d1:17:da:8e:65:
86:9d:5a:77:3c:c6:39:5d:ab:56:2b:8b:5e:9d:d7:
18:2a:e0:a5:22:86:26:aa:5b:07:a0:3a:f0:94:91:
38:e9:00:9f:3f:60:66:66:e0:47:44:ab:82:11:a7:
16:99:10:a2:10:16:59:2f:39:55:79:bb:8e:c1:be:
56:f3:bc:80:73:11:63:30:5f:f6:03:a4:a2:43:9a:
a8:25:35:39:b5:df:a0:52:63:d4:e8:45:02:17:b0:
c6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:AA:78:FE:C7:B8:8C:06:52:EA:83:79:5F:FB:32:C2:88:36:BB:0B
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:78:27:fc:e7:b9:cd:08:63:5e:a7:aa:a4:65:cf:1f:d0:52:
50:d0:2b:54:d3:5f:29:75:c5:55:f9:0f:68:7e:de:c9:cc:0a:
18:92:c0:f8:8d:08:9f:f7:4a:a2:e9:d5:0b:d1:b1:50:9a:ae:
67:f5:44:e2:93:a9:05:5d:c2:e5:a4:c2:79:88:52:cf:82:96:
53:38:c0:e0:a9:aa:69:28:a1:15:53:64:0e:77:5b:7d:cd:05:
1b:86:1a:ac:5b:3d:c9:8b:20:29:0c:83:47:2a:ba:4c:d8:dd:
4f:6b:9e:8f:84:9a:e8:99:fc:6d:0b:1c:3e:2d:a2:58:7c:0f:
b1:09:e5:0b:10:ea:98:f7:41:52:48:f3:43:47:76:bc:d1:49:
87:e5:e6:33:cc:ee:93:af:6f:b3:67:45:76:96:cc:87:51:98:
61:3a:34:38:cb:e1:c1:1b:37:5c:d8:25:b4:43:32:f5:0b:e3:
85:a1:77:65:e0:6f:c9:25:c0:bd:5c:99:e2:0c:a8:02:db:9d:
62:74:68:48:6d:60:db:ee:d6:58:66:ba:25:94:41:77:85:b6:
37:65:c8:27:03:4f:d4:d4:cc:0e:e4:6a:a0:17:a4:ba:e8:d2:
a0:02:c5:65:ce:de:3f:c1:1d:58:d8:87:d4:85:7c:2b:90:66:
a3:ef:28:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:13:43 2026 by rpki-client