Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json)
Hash identifier: TQEF+EajMPCzarhrGXO5iSsYJiGSdpBbGG1v4UEEyuY=
Subject key identifier: 51:DA:5D:1F:92:19:8C:51:49:08:1B:C8:03:DB:80:A2:17:29:66:2C
Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Certificate serial: 019D2704022C728C49A5A41249533BAD6C6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
Manifest number: 0C29
Signing time: Wed 25 Mar 2026 22:01:07 +0000
Manifest this update: Wed 25 Mar 2026 22:01:07 +0000
Manifest next update: Thu 26 Mar 2026 22:01:07 +0000
Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: 9Pz3tdRAjO4jGjdTCN4u+fHoPILAGl9sDOM0R9L8isc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:02:2c:72:8c:49:a5:a4:12:49:53:3b:ad:6c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Validity
Not Before: Mar 25 22:01:07 2026 GMT
Not After : Mar 26 22:01:07 2026 GMT
Subject: CN=51da5d1f92198c5149081bc803db80a21729662c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fd:75:8e:7f:03:70:c9:5d:db:32:8a:1d:f8:
23:36:fb:11:6c:ac:82:7d:19:31:a8:6f:53:61:99:
25:fb:99:d3:e5:46:d3:44:38:16:fa:88:28:3d:7f:
d4:37:e2:b6:67:87:d1:17:1e:b4:64:18:2e:bd:5c:
a4:21:51:e6:b3:09:a5:e8:60:0d:33:2f:90:c2:9c:
8f:ff:5f:d1:1b:6c:94:9f:06:fa:47:83:f9:39:94:
b0:5f:a3:ce:9e:25:da:17:6a:e7:aa:ad:e4:08:57:
34:23:c4:0e:aa:95:73:bc:70:86:7e:71:6e:24:38:
64:08:4e:4a:f5:45:5b:8d:0c:27:f3:97:d7:3e:b5:
3b:b0:14:35:67:cf:54:db:96:40:6e:1a:88:1e:92:
41:95:46:03:ce:89:2d:0d:9c:ef:de:f6:d3:19:06:
44:bd:6f:03:ca:da:c0:d1:7d:0b:73:60:a4:17:75:
1d:fe:01:49:d4:4f:b3:3d:0a:eb:f9:d9:c1:8d:eb:
1b:47:9e:16:bd:bd:71:63:d1:16:c0:44:11:f3:6c:
4d:16:fc:b3:71:7e:61:81:67:69:41:df:99:5f:13:
df:67:f9:34:6b:62:6b:d8:3f:57:00:37:00:6b:1c:
b7:d5:39:16:83:a5:4e:1e:81:ac:a9:29:c0:a8:53:
e4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DA:5D:1F:92:19:8C:51:49:08:1B:C8:03:DB:80:A2:17:29:66:2C
X509v3 Authority Key Identifier:
keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:f2:eb:2e:53:bc:9e:9f:02:20:2c:54:5e:00:aa:40:c9:80:
4e:49:8c:c3:67:ed:02:0a:7e:a2:6e:5f:c4:be:a6:9b:8a:54:
71:84:10:d9:16:6e:5d:4c:2f:11:e2:a3:4b:be:d9:e1:6f:0a:
e4:ca:fb:02:3e:a7:b1:fd:5e:58:30:85:39:07:bf:d6:87:1b:
7b:88:92:ea:6e:af:fb:ea:1a:9f:aa:8e:45:d5:81:e3:71:85:
56:18:84:b5:36:55:0d:2a:9a:5d:4e:de:6d:80:45:00:74:6c:
e3:a5:52:2f:7b:65:88:f8:a7:6a:1a:0d:b5:3a:13:2c:4f:39:
a4:75:e4:a2:80:5b:68:f3:f9:f3:1d:c2:8e:26:88:ed:33:36:
fe:2a:9d:ac:0a:69:dd:93:86:8a:23:c2:51:7d:38:41:0a:a7:
ce:95:de:53:29:53:6f:29:36:d8:17:48:d0:15:71:79:d5:77:
cf:95:57:12:6f:99:d3:1f:49:f5:05:bf:f7:b4:07:16:d8:51:
7e:ab:d4:86:65:ec:0a:e7:a9:e3:88:a3:a1:45:c8:01:5b:65:
ef:bb:42:21:f1:0c:10:ce:9d:6d:9d:39:8c:fa:e8:8a:e7:bc:
2f:5e:0e:d8:27:a8:b8:e7:de:b1:c1:02:ab:58:8d:66:ca:8b:
b8:d5:35:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:19:50 2026 by rpki-client