Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
File: UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft (raw, json)
Hash identifier: rYIrXyq6V1tfVXYWSuQQ1MTMdXpgcZRzVRrnH+ykkhI=
Subject key identifier: 62:D8:42:59:18:37:9A:DF:18:52:86:4D:0D:07:10:5E:06:3E:E6:07
Authority key identifier: 52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
Certificate issuer: /CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Certificate serial: 019D27A866E31EBB48D2DEAC2F105389041B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
Manifest number: 1663
Signing time: Thu 26 Mar 2026 01:00:40 +0000
Manifest this update: Thu 26 Mar 2026 01:00:40 +0000
Manifest next update: Fri 27 Mar 2026 01:00:40 +0000
Files and hashes: 1: UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl (hash: uVmAW/ZOGF+0LQVXxRbqFTDaSBrgIy1cSiZtv2mXPvY=)
2: eFoLkSuYHSfJyZWDzIUZu8IRO1o.roa (hash: dD85celI+xdv/VzLzNSyQVejNzZ7b5z/nWIX6tyr6xc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:66:e3:1e:bb:48:d2:de:ac:2f:10:53:89:04:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Validity
Not Before: Mar 26 01:00:40 2026 GMT
Not After : Mar 27 01:00:40 2026 GMT
Subject: CN=62d8425918379adf1852864d0d07105e063ee607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:21:e9:aa:ac:07:53:06:3b:ce:b5:8e:8e:fe:
b4:1b:72:3f:dd:50:af:0a:34:eb:0c:8a:c8:6b:0d:
86:9a:9c:24:9c:d9:31:cf:9c:1c:ff:d4:2b:b6:23:
78:1e:f2:20:99:2f:01:68:87:a9:c7:eb:c5:8f:df:
34:33:e5:b7:a5:21:c7:d0:01:22:13:99:96:d1:75:
8f:a6:2a:b3:21:05:77:b2:de:0a:61:83:47:d1:b3:
32:98:b1:6e:5e:e2:17:09:f5:e6:ca:47:56:47:37:
f8:fc:a7:f0:f1:8d:66:58:3a:43:f8:a4:e5:49:4d:
24:5e:83:cc:0c:28:16:6b:f4:07:07:5a:98:c8:27:
81:f1:ba:48:69:f3:f9:4f:70:a7:83:73:cb:12:28:
f9:6f:54:52:cb:3b:92:3d:aa:63:7e:48:55:a4:c2:
9b:9b:3d:6d:1f:fe:91:51:8b:05:76:6e:99:9b:6b:
a4:de:f8:46:99:3e:48:86:ce:ea:f3:27:3b:1b:80:
21:24:67:4d:08:8d:02:0e:04:88:a8:e5:38:0a:7b:
e2:46:cd:c3:d6:05:bb:62:a8:49:4d:f2:60:d3:0d:
e9:52:3c:ba:83:e8:a2:02:b6:a8:ac:bc:0d:86:34:
e2:d2:80:7c:90:0e:68:7c:e4:af:f0:0c:c8:fd:dc:
2f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D8:42:59:18:37:9A:DF:18:52:86:4D:0D:07:10:5E:06:3E:E6:07
X509v3 Authority Key Identifier:
keyid:52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:41:a3:c5:93:20:ec:9a:42:24:b9:75:9c:c9:10:7b:bd:64:
8a:a1:03:87:35:67:4d:55:f4:f2:fe:27:09:8a:f3:81:ce:9c:
04:ca:ce:7b:44:fe:ad:d1:c6:a9:dd:39:ee:23:9f:cf:ea:46:
44:18:e6:b2:ef:2c:86:98:e7:87:ce:95:6d:d3:7e:e9:e9:38:
4d:26:38:29:bd:90:7a:5a:38:b4:f9:6c:23:d3:20:cb:8d:4d:
47:1a:bc:58:cf:d4:3d:c8:3d:14:7a:52:28:07:61:9a:40:ae:
f4:01:89:7c:3b:4e:9b:02:dd:f9:0a:7a:bd:ef:1f:7e:c9:1f:
a4:99:88:b3:3a:99:e7:dc:81:5f:b8:ec:30:99:19:b1:5f:26:
6b:27:04:36:2d:11:b9:86:c5:8d:0c:a1:f0:02:a2:b8:e9:3c:
08:61:91:71:17:25:13:79:77:8e:c9:4c:a8:ae:fb:e1:93:12:
9f:ed:f2:90:4a:4d:d8:89:d1:ed:b8:4a:ee:37:ff:b1:1f:1f:
b4:86:42:d0:62:fd:3d:c4:12:4d:63:25:de:3e:07:40:73:63:
9a:4f:2b:84:9f:c4:f5:e5:80:89:d9:93:85:8f:6f:ed:3f:9e:
db:d9:3a:03:e8:15:0f:f1:8c:3b:99:b3:5c:af:97:78:94:32:
c8:06:3f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:56:27 2026 by rpki-client