Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier: 4MrO7ruClMwdCl7bfIzfnQy1NrFIc2hmZmGvwhEu81I=
Subject key identifier: 87:1A:98:36:B0:AD:5C:71:BA:4C:90:D3:A0:75:4D:B9:A4:A4:85:53
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial: 019D26CCFAD8E1FDF2A6CD59803A2CB90BEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number: 181A
Signing time: Wed 25 Mar 2026 21:01:00 +0000
Manifest this update: Wed 25 Mar 2026 21:01:00 +0000
Manifest next update: Thu 26 Mar 2026 21:01:00 +0000
Files and hashes: 1: NuqvGLGVW54T2_CK4Y8l2k93wFg.roa (hash: DT5naWAM2r0ZiUJDhX9HJ7rLzQINkgWuAJdmInUQ/sA=)
2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: WYNgvVwzed56PFp9KsJFydxzkcFiJ2xmxqfcGwQrBaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:fa:d8:e1:fd:f2:a6:cd:59:80:3a:2c:b9:0b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Validity
Not Before: Mar 25 21:01:00 2026 GMT
Not After : Mar 26 21:01:00 2026 GMT
Subject: CN=871a9836b0ad5c71ba4c90d3a0754db9a4a48553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a6:44:c2:e2:32:82:51:af:f6:31:2e:e7:9d:
6f:da:ca:70:35:66:f4:9c:9d:1c:4d:0e:62:8a:d7:
55:e9:35:91:31:db:74:3d:af:56:78:98:64:56:b7:
07:25:ab:89:56:79:e6:ad:8e:8c:8c:63:58:ed:10:
bb:14:88:9a:62:7a:46:b9:ee:48:3e:dd:bc:be:12:
66:18:f2:2d:ce:92:2d:97:5d:0d:bc:86:33:37:3c:
8b:80:59:54:ba:dc:3b:de:70:41:bf:4a:66:92:e8:
41:1b:68:e7:b7:dc:69:b7:6a:94:fd:61:e0:17:e8:
03:d7:da:7e:3f:f1:4f:51:d5:33:53:aa:85:13:c9:
92:86:f8:19:46:26:60:3a:af:70:ed:55:6b:95:5c:
2b:14:8e:0c:f2:6c:03:53:92:be:7c:fd:54:64:00:
6d:bd:e8:0d:93:5d:3e:70:17:8f:c7:78:c3:28:d1:
b9:80:60:e6:67:46:6f:c5:48:21:7f:97:f9:b0:21:
0b:ab:a6:6a:98:49:14:b6:83:c8:70:b7:3a:85:bb:
cf:57:3d:37:a5:81:64:78:4d:da:d5:c0:79:fe:ad:
c0:9a:c2:5d:c8:0f:de:94:6d:5c:6c:7f:f6:e0:e4:
59:3e:36:9e:5e:56:65:69:2a:72:b7:13:a0:8d:4d:
f0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1A:98:36:B0:AD:5C:71:BA:4C:90:D3:A0:75:4D:B9:A4:A4:85:53
X509v3 Authority Key Identifier:
keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:8f:52:75:6c:d3:92:30:a8:e0:00:bd:46:a7:f8:1c:6e:d9:
4a:39:fe:85:35:8e:49:2a:2d:20:f0:08:d5:7d:ef:b9:d4:3b:
1b:28:dc:ee:84:cf:e2:8a:c1:4d:b4:e7:49:e7:36:1c:ab:67:
e6:1b:8f:6d:1b:53:70:be:f5:e2:bf:a3:4d:28:36:4d:61:a6:
a8:3b:13:1a:d0:4a:33:9d:35:1a:bf:55:7e:b4:45:60:7f:8b:
13:dc:cc:a4:ae:4e:81:41:ea:70:d5:f4:c2:6b:e8:e4:8f:11:
d8:43:ee:70:78:6a:78:3c:87:49:5c:b1:d3:8b:f0:be:e5:a6:
8d:7f:6c:7d:a0:7e:43:fe:e2:38:0c:0b:bd:23:01:9c:40:07:
36:d2:3c:a7:07:a1:7c:17:5f:a8:a6:e0:8a:6a:4c:a8:0c:d5:
d1:3c:9c:4e:cf:fa:67:66:11:4a:a5:d9:3b:c7:b6:7c:ee:ca:
f5:f6:0f:a4:5a:ad:9e:2f:75:cd:72:24:96:2b:aa:06:18:6a:
c6:ad:d0:fb:8a:41:34:36:31:b7:85:c1:56:3a:8a:88:d4:31:
eb:d8:3d:e0:b6:e4:6b:a9:70:1e:f9:e9:ba:a0:06:b0:7f:8c:
31:85:8b:6d:07:76:e9:92:52:05:3f:36:e1:14:17:8e:93:34:
5f:31:be:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:55:04 2026 by rpki-client