Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
File: UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft (raw, json)
Hash identifier: BgPJLR0tnHo5gNcnHeOIDJt/5lGZ+b2DQR71wT10v3U=
Subject key identifier: 98:59:3F:4B:78:BC:14:BA:A6:E2:BD:A3:AC:F0:ED:46:DF:26:12:2C
Authority key identifier: 52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
Certificate issuer: /CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Certificate serial: 019D284E442C53C572A147DBDB2DD56B6E9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
Manifest number: 10E7
Signing time: Thu 26 Mar 2026 04:01:51 +0000
Manifest this update: Thu 26 Mar 2026 04:01:51 +0000
Manifest next update: Fri 27 Mar 2026 04:01:51 +0000
Files and hashes: 1: GTNj1uopxhcFHlYEIMNdLURp3bo.roa (hash: sNXrtC73S3XHslCegvtHnqUIQVTOhSUYsSYlbuOfH4o=)
2: UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl (hash: mc2uZLAQSCrvPaCr+yPb5PlxZRk6mRfquHvd6pXMejc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:44:2c:53:c5:72:a1:47:db:db:2d:d5:6b:6e:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Validity
Not Before: Mar 26 04:01:51 2026 GMT
Not After : Mar 27 04:01:51 2026 GMT
Subject: CN=98593f4b78bc14baa6e2bda3acf0ed46df26122c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8d:a9:68:56:78:8e:e2:14:02:7b:8d:6c:ee:
49:8d:19:6c:44:21:ea:6c:52:83:c7:88:0b:6a:b0:
74:61:f2:d1:c5:50:13:c7:45:a5:98:d6:c0:9f:b9:
94:14:3a:e4:bb:21:f5:30:3c:06:4c:d2:6a:24:31:
b8:c2:de:e6:aa:3d:02:80:66:fa:62:4b:25:1b:d6:
a6:0c:6e:35:f6:3c:26:b5:ab:75:9b:75:00:cc:3a:
5d:64:18:7e:f4:3e:cc:ee:41:ad:aa:b9:a9:a2:9f:
cb:00:7a:5a:f7:73:b6:8f:ae:8e:4a:1b:f1:7d:81:
7b:b2:5d:1e:ef:bd:84:d1:3f:a2:9b:13:d6:40:49:
f1:50:0d:0b:fe:81:a1:4a:9f:68:66:7a:1d:db:82:
25:38:40:a1:c3:06:a2:1a:0b:29:2c:1d:64:2c:88:
0c:32:4a:a5:9e:b7:e3:91:5b:65:0d:97:f9:75:d4:
37:f6:44:9e:f0:8a:fe:23:e1:aa:24:03:93:e6:6c:
26:ef:d3:97:24:d1:13:d0:68:5e:55:de:a8:13:c3:
6e:ae:16:dd:98:20:a9:56:e1:8d:8f:6b:ff:64:10:
de:ff:29:9c:ce:ba:41:3a:61:05:68:8d:cc:dc:c8:
58:c6:b4:be:9c:8d:1b:17:b0:db:e1:b7:ca:23:49:
92:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:59:3F:4B:78:BC:14:BA:A6:E2:BD:A3:AC:F0:ED:46:DF:26:12:2C
X509v3 Authority Key Identifier:
keyid:52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:b5:ea:b3:4c:94:b8:fe:cf:ed:01:3d:01:95:d8:47:f7:90:
18:73:93:89:c2:61:08:9c:3c:cd:2d:04:be:1a:12:78:a0:bc:
44:0d:7c:ab:4a:e4:2f:27:14:2b:11:20:64:62:f3:11:40:50:
9b:a5:cf:95:c8:4d:ee:58:43:df:ba:07:ee:41:d1:44:b9:d8:
b1:19:3e:fa:45:ea:22:61:11:a2:67:43:1a:2e:ce:22:e2:6c:
9a:bf:79:09:ae:29:a3:f0:6d:ca:3b:56:3f:6c:61:00:36:12:
98:ce:af:25:e4:91:3e:78:83:d3:19:3d:ba:17:d5:69:d2:07:
b0:e2:c3:af:e4:5c:67:b2:55:a1:c0:21:11:5b:f1:93:23:89:
a5:d2:8f:cc:c2:fa:1e:8f:c1:00:37:1a:b1:3b:a2:b2:06:27:
01:dc:11:d8:44:d4:b2:b1:75:03:72:ef:06:86:ff:58:25:9f:
4f:73:0a:b8:a6:fd:d7:65:a4:6b:d9:b9:f1:72:89:65:e3:b1:
d4:62:b6:21:19:c0:1f:6b:b9:60:bb:70:7d:33:a0:09:a3:ea:
69:10:cc:61:25:ef:0f:b9:0f:ee:73:14:cd:4d:fc:b1:78:69:
d1:66:e5:96:a7:52:d6:17:6d:79:37:4d:e2:c5:f6:7b:86:02:
34:ad:cf:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:28:16 2026 by rpki-client