Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json)
Hash identifier: pK7aNUauQagDrLO3jzgO+nIJkVPX0ABsX8qrmkDfEts=
Subject key identifier: DD:43:AB:E3:48:E9:93:BC:22:01:ED:89:DC:2D:59:B2:23:08:63:E0
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 019E216CF00715431EDAC39C7E8FA5463D25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
Manifest number: 190A
Signing time: Wed 13 May 2026 13:00:47 +0000
Manifest this update: Wed 13 May 2026 13:00:47 +0000
Manifest next update: Thu 14 May 2026 13:00:47 +0000
Files and hashes: 1: I14lG_8KuHU0CqYJHc9FqXObhcQ.roa (hash: ZF+DnhO3hjJF0AK61h8lfYEMUXQ/Nib4VTQFMRZ8378=)
2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: HldhD7FJdUnvHcKqgm1pHxtM2Rj4tqXUP7XuYoa3/V0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 13:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6c:f0:07:15:43:1e:da:c3:9c:7e:8f:a5:46:3d:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: May 13 13:00:47 2026 GMT
Not After : May 14 13:00:47 2026 GMT
Subject: CN=dd43abe348e993bc2201ed89dc2d59b2230863e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:89:fd:da:73:98:b2:91:13:3d:91:9c:dc:de:
76:6c:fc:85:f6:17:74:2f:65:3b:dd:09:f7:41:a6:
6d:56:1e:02:04:d1:fd:b2:8f:93:54:20:06:0a:a0:
46:40:84:cd:70:ba:b8:c5:8f:7c:bb:eb:89:f3:03:
19:55:46:71:6f:68:fa:72:8e:e8:a7:1f:8b:8d:da:
fd:40:2f:4d:68:9c:10:15:8e:07:77:ca:ef:bd:f9:
20:35:1a:97:6b:da:d1:f1:3b:02:c4:e2:a3:d8:8d:
4d:99:a1:a4:29:7f:9d:0d:30:83:4c:8d:6f:b1:24:
57:3a:de:b7:9b:49:eb:f1:bb:96:36:c7:14:4c:fa:
48:ca:2c:b7:88:09:af:09:40:ca:8a:06:85:7f:f4:
2c:a7:0a:74:d6:5b:db:e8:09:7e:07:a9:8c:f0:57:
78:49:74:d8:1d:56:22:bd:e4:5d:15:1a:81:05:c1:
ec:d6:c9:be:aa:ca:2f:fa:47:a6:dc:d3:e3:24:52:
34:75:e0:a4:cd:46:64:fa:d2:6c:1c:f2:7a:a5:40:
a9:ab:a7:22:92:f9:6c:cc:09:56:f8:4b:06:df:43:
17:bb:44:93:84:54:7c:d1:ff:ee:ac:1e:92:85:0b:
d5:2d:e7:d1:9c:eb:e3:62:3d:56:f1:89:13:cf:c5:
01:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:43:AB:E3:48:E9:93:BC:22:01:ED:89:DC:2D:59:B2:23:08:63:E0
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:11:15:2a:bc:52:28:80:d3:99:09:2c:b9:8d:91:ef:85:c6:
df:77:6e:3b:00:ee:9c:3c:47:49:23:a3:63:b4:b6:de:7c:52:
65:fd:23:40:9b:a5:1d:2b:42:22:9b:3d:d1:f4:f4:ff:99:7b:
ae:94:15:22:64:27:00:51:37:18:c2:d8:f6:61:84:d8:b3:d3:
55:19:bf:a1:86:1d:ae:73:f1:79:cf:75:8e:d9:dd:ff:5b:dc:
7f:ae:4c:14:ea:e0:9c:c6:0b:cc:5c:8b:24:45:5c:61:d9:a8:
48:14:41:7f:1b:7e:5d:e9:6b:6e:85:a3:30:07:32:50:40:fc:
2d:5a:88:d7:79:e0:2c:05:bd:9c:a1:51:31:af:a5:81:20:d4:
53:0c:cb:63:44:98:64:4c:c7:6a:10:c4:50:f9:d9:77:9b:64:
97:04:de:d7:9b:89:70:70:0a:33:00:31:bf:61:5a:1c:75:6e:
f9:2c:1e:15:99:76:e5:48:90:0b:a1:32:89:18:29:d9:26:af:
ed:46:a0:28:00:06:2f:ce:ec:f0:96:78:9d:61:91:2c:13:1c:
33:e9:ea:f6:fd:90:ac:85:22:0f:20:73:cd:25:2d:5e:bb:76:
6c:2d:cd:4d:50:b0:e3:4b:6d:61:4d:c1:b9:af:ab:a8:17:ca:
12:c8:bf:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:02:30 2026 by rpki-client