Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
File: uxBfoysrF18Y3VkI3ScZFbv0444.mft (raw, json)
Hash identifier: GuOngOmMz/A1RdHOve94og+IT74snkp5tQMUsvXHu20=
Subject key identifier: 33:C5:1D:99:2E:8B:DE:14:E1:E9:50:6C:AA:6E:E9:34:AC:6B:A8:B5
Authority key identifier: BB:10:5F:A3:2B:2B:17:5F:18:DD:59:08:DD:27:19:15:BB:F4:E3:8E
Certificate issuer: /CN=bb105fa32b2b175f18dd5908dd271915bbf4e38e
Certificate serial: 019D2704416FAACBBD127C1454908ED5FC67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
Manifest number: 0292
Signing time: Wed 25 Mar 2026 22:01:23 +0000
Manifest this update: Wed 25 Mar 2026 22:01:23 +0000
Manifest next update: Thu 26 Mar 2026 22:01:23 +0000
Files and hashes: 1: cP1GSkrPpumyz1fbQhtF__y9oKM.roa (hash: MBJZqys4MB938y3xdVGjcJOvSN3lSPQWfJqtj51k6+E=)
2: uxBfoysrF18Y3VkI3ScZFbv0444.crl (hash: P7/5Xgy+soVUsR1Md3YYKYCbdd6cojZAx8LXoZieh3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:41:6f:aa:cb:bd:12:7c:14:54:90:8e:d5:fc:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb105fa32b2b175f18dd5908dd271915bbf4e38e
Validity
Not Before: Mar 25 22:01:23 2026 GMT
Not After : Mar 26 22:01:23 2026 GMT
Subject: CN=33c51d992e8bde14e1e9506caa6ee934ac6ba8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:85:bb:86:f3:9f:98:6b:63:de:6c:03:67:55:
9b:7e:5c:d5:87:81:34:a3:3d:93:c6:73:06:60:f7:
aa:c8:94:91:d1:8f:5a:69:23:04:7d:4b:6b:5f:2f:
5a:09:91:c7:86:75:5f:1d:be:56:97:0c:16:3c:a7:
c2:e8:2f:85:0c:3a:09:85:5b:94:0a:12:e5:a6:ce:
06:0b:b6:be:a9:46:1e:9d:da:58:60:4a:8e:3a:07:
f8:b9:df:bf:20:18:77:c8:89:3a:a6:ef:46:aa:d2:
63:78:b3:fe:e7:d0:49:87:e1:10:d0:b5:88:92:06:
2a:ee:ee:8d:d0:1f:e0:b8:0d:ed:d3:f4:65:fe:6a:
2c:d7:48:da:72:77:09:64:80:4d:66:1c:ec:15:78:
80:85:3e:16:e8:b5:9e:ca:ec:41:a4:5f:39:cc:0d:
07:97:6e:ba:50:3f:f9:f6:9f:c7:a6:24:2b:ad:a9:
cb:e0:da:14:db:0f:fd:3e:f6:01:2b:89:f5:d0:e4:
49:59:e3:7c:44:4e:e1:4d:81:ec:8e:d7:de:4c:4d:
51:21:5b:8e:40:98:09:81:e7:5e:7b:b7:1d:3b:91:
73:27:50:51:bd:75:ac:d2:1f:7f:9a:27:04:66:9f:
d8:47:c4:ea:f2:92:eb:fe:86:5c:39:99:bc:2d:05:
85:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C5:1D:99:2E:8B:DE:14:E1:E9:50:6C:AA:6E:E9:34:AC:6B:A8:B5
X509v3 Authority Key Identifier:
keyid:BB:10:5F:A3:2B:2B:17:5F:18:DD:59:08:DD:27:19:15:BB:F4:E3:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:55:cd:d8:67:de:bc:36:b1:a4:35:fc:23:7b:fb:ad:58:c6:
77:ee:c6:7a:37:77:cb:0c:e6:b0:f5:c9:7d:f7:85:a0:52:0e:
c5:7e:d3:03:7f:bd:dc:ac:d8:87:16:01:95:a1:27:92:39:6b:
33:91:4b:0e:bb:74:7b:87:10:9a:ba:9b:bb:6d:7d:2a:6f:75:
83:9d:3a:21:ee:d0:a3:07:5a:46:26:be:fc:49:1e:6c:07:c1:
a4:35:a3:73:db:bf:f3:00:0f:27:13:68:e1:d8:56:66:e8:80:
39:63:f8:84:ab:a2:be:ce:d1:ae:7f:97:ac:80:00:9a:ed:f1:
5c:76:00:5d:c5:e3:86:52:dc:91:76:f5:ce:b6:bf:30:df:8f:
7b:36:fa:8f:b3:5e:03:90:de:9a:78:b9:0e:b2:40:81:4e:61:
c4:91:a5:27:75:14:7d:fe:b5:aa:21:e8:cc:c3:58:0f:95:d0:
86:ad:10:ae:a0:66:2f:d7:0d:b1:f1:bb:d2:f2:b2:cf:95:84:
db:fc:a4:2e:41:e1:7d:98:d6:3e:64:73:c0:00:d5:7b:59:ae:
0d:1a:4d:9f:d0:6b:a0:44:73:36:b5:5e:c1:de:cd:df:fd:c0:
35:3b:28:c7:88:02:0b:07:d2:ea:44:bb:ba:61:24:13:f3:71:
33:09:d5:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:35 2026 by rpki-client