Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier: 2bYDGsQE5QBRMbEELlmyEC941UFg0K1L+5cS6FFI2vQ=
Subject key identifier: EF:BA:D2:97:71:5D:CD:3E:DF:05:B5:77:CC:50:85:40:1F:FF:DE:2C
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial: 019E1DFDDE3958A45E6D50CE3D358E195A0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number: 189A
Signing time: Tue 12 May 2026 21:00:37 +0000
Manifest this update: Tue 12 May 2026 21:00:37 +0000
Manifest next update: Wed 13 May 2026 21:00:37 +0000
Files and hashes: 1: NuqvGLGVW54T2_CK4Y8l2k93wFg.roa (hash: DT5naWAM2r0ZiUJDhX9HJ7rLzQINkgWuAJdmInUQ/sA=)
2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: Tj/AViD+32/9neiFGBxb8GVrMptYrDhrTiwhbnZOGVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fd:de:39:58:a4:5e:6d:50:ce:3d:35:8e:19:5a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Validity
Not Before: May 12 21:00:37 2026 GMT
Not After : May 13 21:00:37 2026 GMT
Subject: CN=efbad297715dcd3edf05b577cc5085401fffde2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:93:f0:9b:53:8b:ae:66:23:84:9c:d9:48:1d:
a9:ad:8b:7e:b0:5f:7e:f8:0a:80:ed:cb:e7:92:5d:
8c:e7:00:45:61:d2:1e:47:72:29:dd:4d:f9:60:a1:
8f:02:66:64:09:ad:1f:6a:82:a3:0b:a9:6c:4c:e2:
7b:85:5a:91:e4:c7:e3:eb:54:0d:db:5e:f9:ad:39:
12:01:c2:ed:5c:5c:5b:95:18:81:a6:f6:8e:90:69:
9f:8e:23:fb:f7:54:d5:35:c4:79:27:40:33:4b:f9:
8e:d4:3b:ef:ca:fb:b1:d7:3e:97:bf:2d:fa:d6:ba:
03:3a:7d:f8:e8:8f:a2:f6:57:ff:e9:06:19:30:b2:
16:10:88:71:f4:1a:8b:cd:90:84:c9:2a:5b:47:60:
21:b6:31:9f:88:64:5e:a5:d0:fa:74:50:4d:f8:cd:
63:f5:7e:88:08:70:6d:dd:6b:cc:98:a3:da:41:0f:
22:b1:35:57:a2:86:4e:45:fb:2c:d8:23:2b:30:de:
e6:b6:5b:4a:5b:ae:38:f8:f5:7e:5c:aa:6c:50:43:
ff:38:3f:7b:01:d5:4c:ff:bc:53:f9:3a:19:9e:1b:
72:0f:ef:70:20:63:25:71:9d:2e:e5:e3:e6:57:a6:
f2:29:7d:a7:52:b0:13:20:e1:f9:34:0e:cf:79:26:
7f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:BA:D2:97:71:5D:CD:3E:DF:05:B5:77:CC:50:85:40:1F:FF:DE:2C
X509v3 Authority Key Identifier:
keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:09:8b:fa:3e:17:6f:b8:45:54:f4:5b:27:4c:78:65:fd:1f:
6f:7d:c9:ab:93:2c:48:8f:aa:41:39:7e:56:f7:c0:16:95:5b:
64:39:da:2e:fa:17:fe:0c:35:12:ab:9e:14:bd:06:5e:4c:91:
46:7a:d4:87:26:fd:14:f6:25:43:45:fe:40:1e:92:34:ca:bb:
81:5e:c0:d4:9f:62:96:b5:e9:14:f9:cd:72:8e:71:ba:38:f2:
93:7c:3f:df:57:12:41:58:02:8a:27:4e:9c:31:79:04:e9:12:
9a:67:33:26:e4:aa:06:f1:24:77:cc:30:87:3f:28:eb:89:12:
bd:72:92:18:14:d4:fe:33:e1:51:ce:c2:eb:9b:34:05:31:d0:
71:7a:dc:d8:5d:e3:0d:7b:a4:59:b3:2a:96:c5:56:0d:04:d1:
18:9e:5f:fa:fa:b4:cb:89:bf:dd:8b:d4:8c:74:31:35:99:19:
ec:84:3b:0a:63:fc:ba:8a:12:61:26:67:cd:75:b8:a4:3d:c2:
65:d6:bb:50:81:d4:c9:02:4a:29:39:e5:c9:c0:11:4a:f2:0e:
e6:98:c6:ff:d0:f2:32:90:87:ef:38:1d:c4:b6:19:54:20:42:
d7:8f:8b:22:bf:f6:6c:0b:dd:eb:19:9d:62:e2:ff:c2:5e:0b:
e8:e3:40:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:38:06 2026 by rpki-client