Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
File: unnFAIApfLnMDMk07jifUMPnPUo.mft (raw, json)
Hash identifier: yLr2eqvOZit/LmZon9U7Co6W+ObuQnxdpt7fl0Oo1XQ=
Subject key identifier: B7:8B:47:63:E0:26:A7:CD:EB:94:C2:4A:D1:BC:EE:07:16:46:3B:CE
Authority key identifier: BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
Certificate issuer: /CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Certificate serial: 019D28BB632679B8C5E8A0E0FE894F696586
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
Manifest number: 0755
Signing time: Thu 26 Mar 2026 06:01:02 +0000
Manifest this update: Thu 26 Mar 2026 06:01:02 +0000
Manifest next update: Fri 27 Mar 2026 06:01:02 +0000
Files and hashes: 1: XKauEkhgdHlzhfA3t4VdHxgbGbE.roa (hash: sIffgoQ23PXM37zJ/C0HFWWKObJRqfapVrUOvAIf2kY=)
2: unnFAIApfLnMDMk07jifUMPnPUo.crl (hash: 7rfLif0gKTWWbHw8OTWLQqAD1OjXxkiPJv324NCswvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:63:26:79:b8:c5:e8:a0:e0:fe:89:4f:69:65:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Validity
Not Before: Mar 26 06:01:02 2026 GMT
Not After : Mar 27 06:01:02 2026 GMT
Subject: CN=b78b4763e026a7cdeb94c24ad1bcee0716463bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:18:1d:cb:ed:7f:e6:ee:e9:b5:30:d4:0a:59:
cf:99:34:14:28:19:5b:56:73:7c:02:6e:3d:6a:07:
48:e8:12:ee:59:34:0d:17:c7:8b:ac:82:1e:5b:89:
62:9f:ab:2b:ad:0c:58:9e:57:d6:b4:d5:fe:eb:04:
b4:f9:ce:97:e9:81:ff:5a:35:52:24:57:c0:22:6d:
d9:b8:4e:dd:65:39:5c:5e:d3:f1:2f:83:1d:5d:76:
32:d1:65:4c:21:51:2a:68:e0:42:e4:61:95:d8:46:
b4:17:f2:cf:82:74:55:29:96:97:5e:df:23:22:b7:
6b:db:b3:b1:0a:9f:f0:1e:2e:61:20:d3:61:f9:f4:
83:42:40:20:e3:3e:b7:24:53:c9:d3:d9:82:44:c3:
82:58:d8:3a:e8:f2:28:ad:db:4b:d8:d2:1e:88:a2:
24:6a:65:cc:16:ff:4b:bd:42:ec:de:f7:10:bd:09:
14:e9:4c:78:79:b9:3d:20:fa:6e:54:02:70:d0:70:
b1:4f:88:03:d5:f6:20:7f:47:39:ee:8c:c0:f8:c6:
ce:96:d9:b4:54:0f:4b:7c:1c:d8:79:ee:2f:dd:38:
7e:8a:aa:30:32:71:a6:df:26:7a:24:e3:09:18:63:
26:f0:f8:e8:be:a4:3c:a1:ed:7d:83:a7:b4:b6:0c:
08:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:8B:47:63:E0:26:A7:CD:EB:94:C2:4A:D1:BC:EE:07:16:46:3B:CE
X509v3 Authority Key Identifier:
keyid:BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:c7:b7:71:6e:b6:99:4b:ac:8e:a7:ec:40:c6:cd:e9:7c:bc:
30:39:15:d8:fc:5f:8d:30:3b:b1:3d:e4:35:56:8b:86:3d:90:
45:5e:f1:49:b1:94:4c:94:75:43:87:fc:38:0c:5b:6e:39:83:
4b:54:3a:32:7d:70:0a:8e:43:60:0f:58:64:63:26:13:ca:79:
d0:54:bc:89:c7:cf:70:1f:0a:02:d1:9b:87:8d:61:c8:78:ce:
94:83:59:8b:9b:70:96:65:e3:d2:eb:75:41:b3:28:e1:e7:99:
97:2b:bf:63:1f:3b:7e:46:c0:07:ff:cc:4e:0f:c3:74:d4:13:
29:7d:65:ca:ee:87:8d:53:95:22:be:80:6c:a5:5d:2d:0d:89:
e5:b9:fa:54:71:0c:8b:40:9f:70:b1:e5:01:3d:31:08:50:69:
36:64:ef:90:22:a4:77:7b:c1:e7:af:a2:76:15:d7:5f:ae:b1:
99:df:29:8e:00:e5:3f:12:c5:d4:c0:a2:20:fc:74:d5:bf:38:
6f:ee:1e:8a:41:2b:1a:28:54:3a:47:4c:52:8c:ac:dc:1d:d4:
4c:13:81:d7:f4:30:a8:f2:3a:6c:a2:82:b6:e8:b7:d7:56:45:
9f:df:9f:61:84:fd:d8:6a:d0:dd:e3:04:2f:9f:cb:3d:c8:6d:
f0:e2:6c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:50:44 2026 by rpki-client