Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: vW4X0F/LCh+y+dRKkeZAtyXS3dw8gpZA9qrduqfHnUo=
Subject key identifier: F9:3D:D2:7D:EA:B0:C6:9A:3B:C4:80:DD:4F:D4:4A:96:67:EA:23:E2
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 019D2A3BEF9D384FFA7925D75BE2E2177276
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 065A
Signing time: Thu 26 Mar 2026 13:01:04 +0000
Manifest this update: Thu 26 Mar 2026 13:01:04 +0000
Manifest next update: Fri 27 Mar 2026 13:01:04 +0000
Files and hashes: 1: La2aKUWeZDjg9QmjOG5Ypn3DLPs.roa (hash: 0EBH5b7C6wuxTeA4u0lRX6AP5UIiFNUIOVkyZ9JGpK4=)
2: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: gp4+/oyWr+eLp4sUCHl8dQgDIZJvjOk/BfaYCrOsRXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:ef:9d:38:4f:fa:79:25:d7:5b:e2:e2:17:72:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Mar 26 13:01:04 2026 GMT
Not After : Mar 27 13:01:04 2026 GMT
Subject: CN=f93dd27deab0c69a3bc480dd4fd44a9667ea23e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ff:26:36:9d:c6:76:60:fe:d4:16:5c:33:77:
fa:32:1b:9d:5b:e1:7e:c0:fc:87:de:01:2c:fd:4c:
21:d3:8d:2b:03:f6:c6:e3:81:59:c2:60:d4:3d:5b:
61:8e:ac:c0:b9:4f:18:67:33:a2:ba:cc:50:7d:65:
31:a1:d1:ae:e6:b5:7b:3d:b0:29:b5:3b:32:ec:fe:
d7:6e:91:b9:1d:e1:70:14:ae:ea:ab:80:d6:d0:87:
4a:06:16:6d:0f:62:06:6e:d1:39:09:fb:df:a2:06:
c6:e3:b1:2a:27:9c:30:3c:32:27:c0:84:61:18:80:
1d:5a:35:d7:5f:b9:32:06:8b:0f:29:19:0e:bc:65:
1c:3c:99:e8:d3:89:dd:7d:eb:85:33:6b:d1:4d:96:
1c:ca:d2:4d:61:2d:45:45:d1:9c:1b:dc:93:e3:cf:
37:e4:25:81:34:0c:98:63:8d:b6:34:09:b9:15:33:
85:a0:dc:99:8b:17:70:32:66:58:cc:2b:af:49:a7:
e1:ca:33:4e:66:c2:ba:7b:d5:cd:88:fe:a2:a3:1b:
31:12:df:9f:46:20:f7:65:ef:12:1d:a9:86:cd:fe:
95:c4:f3:8e:94:7b:12:51:54:8c:92:3d:95:0f:f4:
6f:4d:c6:17:24:60:ed:77:73:50:a0:41:60:79:de:
5b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:3D:D2:7D:EA:B0:C6:9A:3B:C4:80:DD:4F:D4:4A:96:67:EA:23:E2
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:9e:ac:3d:45:22:ea:13:e0:f3:af:4d:cc:83:67:40:fe:72:
2a:77:2b:78:9f:bb:af:8f:8c:cd:51:9e:8f:18:12:68:e3:f1:
80:cd:9f:ee:d5:b0:f7:40:8c:91:ff:90:d0:12:2e:d8:92:f4:
ec:8c:c8:2c:c7:47:b6:59:43:f0:b1:ed:35:c6:54:3c:48:dc:
1a:1e:ac:28:a1:a9:6b:9d:42:29:b0:38:6e:61:dd:4f:0f:e2:
ed:bf:bf:a4:c7:fa:63:f7:7c:3e:ea:8b:3a:b4:18:cb:8b:08:
41:14:a3:d7:e4:fd:62:ed:c2:a3:fd:60:8c:81:45:e0:46:92:
d6:63:7f:0f:b9:2e:6b:04:c7:67:0d:a7:9f:08:2c:a3:de:dd:
e9:c9:55:f7:74:57:c7:a5:8e:10:bd:30:67:0a:f7:bf:af:6f:
f0:56:f3:ad:02:0d:32:bf:cc:59:29:81:c8:fb:17:61:d3:a6:
2b:a2:be:17:45:8b:e4:0b:26:d2:f7:25:be:b0:67:e9:ae:6c:
b1:3f:5b:b2:39:fc:c8:46:c2:42:41:9c:93:e8:87:2e:89:08:
76:37:1b:de:77:47:13:df:21:3d:5d:26:99:c2:9f:aa:e3:f7:
ba:05:48:03:19:94:b7:0d:54:e9:1c:54:e9:dc:0f:cf:53:6b:
ae:cf:fc:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qO++dOE/6eSXXW+LiF3J2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYTY1YzYyODQ4M2E3NTY2ODhiYjE1OGMyOGFiN2MwZDQ3
ZGUyN2MwHhcNMjYwMzI2MTMwMTA0WhcNMjYwMzI3MTMwMTA0WjAzMTEwLwYDVQQD
EyhmOTNkZDI3ZGVhYjBjNjlhM2JjNDgwZGQ0ZmQ0NGE5NjY3ZWEyM2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/8mNp3GdmD+1BZcM3f6MhudW+F+
wPyH3gEs/Uwh040rA/bG44FZwmDUPVthjqzAuU8YZzOiusxQfWUxodGu5rV7PbAp
tTsy7P7XbpG5HeFwFK7qq4DW0IdKBhZtD2IGbtE5CfvfogbG47EqJ5wwPDInwIRh
GIAdWjXXX7kyBosPKRkOvGUcPJno04ndfeuFM2vRTZYcytJNYS1FRdGcG9yT4883
5CWBNAyYY422NAm5FTOFoNyZixdwMmZYzCuvSafhyjNOZsK6e9XNiP6ioxsxEt+f
RiD3Ze8SHamGzf6VxPOOlHsSUVSMkj2VD/RvTcYXJGDtd3NQoEFged5bewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPk90n3qsMaaO8SA3U/USpZn6iPiMB8GA1UdIwQY
MBaAFFKmXGKEg6dWaIuxWMKKt8DUfeJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMt
NTAxNWUxMjA4MTE5LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMtNTAxNWUxMjA4MTE5
LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsJ6sPUUi
6hPg869NzINnQP5yKncreJ+7r4+MzVGejxgSaOPxgM2f7tWw90CMkf+Q0BIu2JL0
7IzILMdHtllD8LHtNcZUPEjcGh6sKKGpa51CKbA4bmHdTw/i7b+/pMf6Y/d8PuqL
OrQYy4sIQRSj1+T9Yu3Co/1gjIFF4EaS1mN/D7kuawTHZw2nnwgso97d6clV93RX
x6WOEL0wZwr3v69v8FbzrQINMr/MWSmByPsXYdOmK6K+F0WL5Asm0vclvrBn6a5s
sT9bsjn8yEbCQkGck+iHLokIdjcb3ndHE98hPV0mmcKfquP3ugVIAxmUtw1U6RxU
6dwPz1Nrrs/8hg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 16:32:03 2026 by rpki-client