Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json)
Hash identifier: bNvkWJaUCklzj83atNwXwyfXXrW499FN44QxJ1h3dK4=
Subject key identifier: 84:28:AD:62:A5:2E:95:22:1C:18:21:25:C0:B9:C0:52:C7:E0:25:52
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 019D265F56EA19B591CDAB5794195443A975
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
Manifest number: 1888
Signing time: Wed 25 Mar 2026 19:01:15 +0000
Manifest this update: Wed 25 Mar 2026 19:01:15 +0000
Manifest next update: Thu 26 Mar 2026 19:01:15 +0000
Files and hashes: 1: I14lG_8KuHU0CqYJHc9FqXObhcQ.roa (hash: ZF+DnhO3hjJF0AK61h8lfYEMUXQ/Nib4VTQFMRZ8378=)
2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: LPI6f8LnpcjKzWsAvT4L8Yci81qWqJKmnXl89JhWQuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:56:ea:19:b5:91:cd:ab:57:94:19:54:43:a9:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: Mar 25 19:01:15 2026 GMT
Not After : Mar 26 19:01:15 2026 GMT
Subject: CN=8428ad62a52e95221c182125c0b9c052c7e02552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:77:b2:99:d6:71:61:1f:fc:b2:2d:ce:6d:52:
df:91:11:af:d2:15:df:1c:f6:7f:75:79:ff:f6:9f:
97:4f:36:bc:31:98:93:83:74:98:3f:d4:9b:28:2f:
dc:11:c9:72:05:55:32:c0:5a:11:b1:7b:bd:32:d7:
6a:c7:cf:a3:1a:67:66:59:5f:67:8b:58:5a:ae:4b:
5a:46:68:1a:d9:c2:32:a0:53:7f:10:ad:e8:44:1e:
b9:79:9f:84:81:dd:51:72:60:48:bf:f2:86:f1:6a:
c2:ff:77:21:05:9d:75:8d:ea:3f:22:ee:b3:af:44:
f4:8c:23:31:3d:68:c8:9e:14:01:19:5c:c8:27:00:
6d:18:27:24:4c:63:fa:9b:76:87:50:39:7e:da:79:
00:8f:5c:23:3b:e9:01:f2:e9:3f:8f:47:ed:fa:48:
28:00:1f:f7:83:ee:3d:d2:69:94:57:fe:f3:fa:3a:
fa:92:f7:51:56:09:77:f7:87:e2:99:ea:03:20:51:
88:79:3b:1a:8a:44:2c:ea:c4:64:4a:5f:66:a6:8d:
90:89:4d:43:8e:fb:18:7b:b6:32:94:06:59:1c:4c:
7e:9f:0e:a3:14:86:0f:69:95:70:c5:b8:16:6a:59:
2e:cb:e5:59:d2:36:7d:0e:b4:b3:90:75:b1:35:4e:
95:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:28:AD:62:A5:2E:95:22:1C:18:21:25:C0:B9:C0:52:C7:E0:25:52
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:00:b9:44:21:8a:33:ef:f5:bb:38:4d:f3:58:e8:69:70:6a:
83:dd:d6:94:93:4a:d9:7f:35:24:1d:35:13:10:9f:cf:fb:6b:
64:d7:c9:8e:df:62:f8:f8:2d:42:e7:d1:d7:4c:a9:4f:7e:07:
7f:19:dd:51:9d:20:fc:e3:98:15:3d:a2:b1:5c:87:2d:13:1d:
8b:68:d1:32:57:0b:31:dd:a0:69:8c:a8:aa:78:05:28:3c:db:
8f:bb:ab:b9:9e:ef:30:b3:2e:df:c9:85:9e:af:f5:36:33:bd:
83:eb:5e:cc:f7:f1:c0:11:e3:55:87:96:8f:a2:04:4b:ba:ea:
15:05:75:61:0c:32:d3:1c:0b:d5:b7:be:ea:5e:9a:1e:aa:8d:
0c:ad:8c:d0:09:31:a1:db:87:7d:0c:8b:9f:56:d0:9d:04:26:
63:bf:cd:79:96:98:68:65:17:1e:d3:0d:9c:51:10:e1:9a:7c:
3b:17:b1:db:b0:44:92:f0:bc:a5:7b:c4:5b:97:9d:f3:7e:14:
54:e6:eb:77:ae:ee:4e:23:af:2b:7b:a5:65:fb:16:04:ef:dd:
65:73:13:07:05:33:9b:5a:69:08:de:81:73:77:42:8c:7f:59:
89:85:8f:2d:48:52:1f:a4:05:3a:01:10:6e:b5:02:e9:3c:54:
11:34:4e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:21 2026 by rpki-client