Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
File: UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft (raw, json)
Hash identifier: Q3Or3LUt6OS5D79cc/nR75ILuPtRn7wuToMUsn330Xg=
Subject key identifier: 0A:35:68:50:D2:3F:88:62:8E:B5:08:06:59:59:72:0C:F9:BE:59:0C
Authority key identifier: 52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
Certificate issuer: /CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Certificate serial: 019E216DDB7EAC44C3EB782D3EBEE6ABFF95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
Manifest number: 1168
Signing time: Wed 13 May 2026 13:01:48 +0000
Manifest this update: Wed 13 May 2026 13:01:48 +0000
Manifest next update: Thu 14 May 2026 13:01:48 +0000
Files and hashes: 1: GTNj1uopxhcFHlYEIMNdLURp3bo.roa (hash: sNXrtC73S3XHslCegvtHnqUIQVTOhSUYsSYlbuOfH4o=)
2: UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl (hash: KhO9aRkz9cXngrNfs7Z/KJxs5URY469MEAb5lH98rg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:db:7e:ac:44:c3:eb:78:2d:3e:be:e6:ab:ff:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Validity
Not Before: May 13 13:01:48 2026 GMT
Not After : May 14 13:01:48 2026 GMT
Subject: CN=0a356850d23f88628eb508065959720cf9be590c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d3:8e:0c:2d:d5:86:c1:9c:7c:e7:a1:c0:f4:
b1:b2:f7:42:85:4f:cc:97:95:96:b5:98:69:2e:77:
a0:22:32:24:57:28:81:71:c9:65:b3:7e:95:e0:78:
8d:cb:e6:d5:b0:7f:96:31:f1:00:e6:95:1f:7c:7f:
00:69:15:fc:3c:93:59:03:89:28:78:c4:38:5b:59:
9c:66:c5:11:87:f6:01:f9:3d:6a:e0:06:82:9b:f7:
6a:ab:33:67:62:31:d8:40:ae:3b:de:b5:50:17:9e:
1d:b1:ef:8b:ca:04:c4:8b:26:05:97:e0:f6:61:95:
fa:25:b5:87:0f:0d:b6:0e:1d:5d:9f:47:eb:00:fe:
3d:df:a3:58:0e:db:f4:2e:a4:d1:30:7f:88:7e:d2:
0c:37:1e:d4:85:b7:a9:46:53:6d:3a:71:37:86:b4:
6e:14:93:9a:1f:2c:52:02:52:e7:ab:19:0d:fb:58:
cb:44:20:c7:0e:34:07:e4:78:3c:cc:9b:87:02:97:
6b:a1:c7:ee:61:d7:0a:2b:b4:04:5a:84:97:91:aa:
23:86:b9:02:f9:b3:21:38:25:59:81:c0:da:a0:4f:
d2:d6:98:db:18:0f:e3:ad:4f:ca:1d:45:b7:c4:52:
4c:a1:2d:10:00:9a:24:dd:0e:43:ca:69:99:ab:c8:
32:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:35:68:50:D2:3F:88:62:8E:B5:08:06:59:59:72:0C:F9:BE:59:0C
X509v3 Authority Key Identifier:
keyid:52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:48:96:98:7f:70:6e:68:bb:0d:8a:8f:64:eb:e9:a4:d7:82:
7a:84:00:d3:4b:88:56:d6:19:98:97:6b:96:8a:62:1f:54:ee:
1f:da:f7:f7:de:f0:96:bc:3c:62:69:bd:07:57:1d:cb:aa:2c:
3c:5d:24:04:f4:f7:9c:d6:38:db:ff:2a:a3:1e:1d:a7:1b:4c:
44:e7:ab:df:ab:9f:15:ad:5b:f2:67:1f:8f:02:f2:a8:8f:c1:
86:bc:be:a4:8e:f6:76:91:20:df:00:6e:32:78:48:e8:e6:3e:
96:df:41:e5:32:39:f6:44:01:9d:50:2b:5e:31:17:bd:5a:52:
fe:41:19:3e:ce:72:15:5c:24:a0:de:4e:0c:ea:f5:38:24:d6:
03:fc:7c:80:2b:54:09:53:8b:5d:2e:3c:2c:bc:ed:7c:6e:eb:
84:77:b3:a8:d5:66:e1:a8:bc:59:7c:35:0c:32:07:91:cd:27:
4d:3d:d7:6c:da:08:64:c8:16:2d:2e:4d:53:56:10:50:1c:60:
e8:d0:5e:51:c4:18:8b:e0:2f:43:51:67:b9:be:81:f1:d4:2b:
e2:54:ca:25:7c:f7:60:79:f1:02:8d:b8:c0:7e:19:87:ff:78:
d3:ae:17:e9:d1:a9:bd:8a:6c:b7:4f:eb:69:b0:83:b8:8a:c8:
9c:4f:c5:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:01:06 2026 by rpki-client