Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
File: uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft (raw, json)
Hash identifier: AfCw0M4vYoyJfHv/1MBeRVARJhEOsqJiEk5Sjo+ccZs=
Subject key identifier: 6F:05:57:BA:5B:8A:A7:70:EE:E4:C7:5E:4F:AC:80:4E:89:28:4D:3E
Authority key identifier: B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
Certificate issuer: /CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Certificate serial: 019D2772B4904741F5D411B49E77A34EFA73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
Manifest number: 081F
Signing time: Thu 26 Mar 2026 00:02:01 +0000
Manifest this update: Thu 26 Mar 2026 00:02:01 +0000
Manifest next update: Fri 27 Mar 2026 00:02:01 +0000
Files and hashes: 1: uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl (hash: gFHAgHsm+vXdGMoHvCg0j+2oftsH+SFc7AG2lNAtp5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:b4:90:47:41:f5:d4:11:b4:9e:77:a3:4e:fa:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Validity
Not Before: Mar 26 00:02:01 2026 GMT
Not After : Mar 27 00:02:01 2026 GMT
Subject: CN=6f0557ba5b8aa770eee4c75e4fac804e89284d3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1b:95:38:c2:22:99:7c:3f:05:28:8e:36:00:
05:30:c7:39:13:d7:95:24:5d:69:e8:03:67:08:3e:
25:3c:de:72:fe:9e:0d:a9:27:77:3d:c3:7b:8d:14:
d5:43:1c:83:fd:eb:10:1f:35:f0:da:5d:ff:b5:bb:
06:fc:79:30:55:0f:b6:6f:a2:57:62:73:82:32:8d:
e8:90:08:b4:4f:5e:4b:6a:64:7b:63:3d:8f:11:55:
b8:c4:fb:14:5c:a9:dd:cb:3d:c8:70:e9:90:62:2c:
50:ba:95:9a:7c:7a:f2:78:d2:bb:7e:b3:c6:6b:a1:
23:9f:46:1b:60:c1:2c:1a:c0:e5:50:1b:7b:8b:0a:
c3:0c:26:95:27:2e:41:43:2c:a7:15:2d:4e:4b:4c:
f6:7d:95:9c:9d:04:ff:9c:95:71:c5:f4:d0:32:fb:
cf:9a:a1:a7:bd:a2:d3:c0:38:c9:1f:b4:b1:42:07:
bd:ec:fb:14:9d:ec:68:7f:83:e5:47:13:c0:a3:02:
ab:36:83:12:c0:42:0d:c1:cf:30:db:75:df:7d:bb:
7d:8d:19:0f:43:25:5e:a3:44:28:52:03:13:4b:01:
4c:69:79:db:a4:ec:69:a0:08:35:14:76:a6:7d:30:
85:01:8c:e3:26:05:84:57:db:1b:21:f6:b1:2a:e8:
ea:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:05:57:BA:5B:8A:A7:70:EE:E4:C7:5E:4F:AC:80:4E:89:28:4D:3E
X509v3 Authority Key Identifier:
keyid:B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:c4:8f:0b:b1:8d:96:91:bd:f6:6f:58:36:d1:b4:52:35:d7:
bd:7c:a9:a2:14:1b:ca:44:27:d1:23:6b:3c:61:09:19:ef:d8:
0a:1f:55:99:79:6e:52:6f:00:2c:ad:56:a5:20:c8:24:1c:64:
b2:6a:5c:65:11:ab:cc:e6:46:c5:20:cf:46:02:a7:ba:6b:4b:
f3:2c:1d:50:3a:b6:7b:98:a9:49:09:dd:c2:36:4a:51:8a:43:
22:a5:fa:75:c9:85:8c:71:61:fa:47:21:3f:69:72:7a:e5:e4:
67:10:7f:9f:7c:b9:81:a1:5f:60:8d:31:a3:d1:46:bb:09:35:
48:ca:c0:4d:91:87:6e:a3:60:bd:88:d4:6f:75:3e:32:67:fe:
07:09:19:91:91:90:4d:f5:51:32:37:64:24:4b:98:a7:48:35:
7f:16:b4:bb:8a:34:ad:34:59:78:75:4c:b9:92:47:0a:06:b0:
17:9c:0e:fa:96:fc:a6:73:0b:cb:23:27:b9:43:bf:c3:ea:43:
29:be:73:d4:81:d9:1b:cf:1c:9d:76:3f:81:fe:99:ce:64:fe:
70:0d:75:ed:48:86:2a:1d:69:c2:f2:2a:aa:10:10:6b:10:5e:
58:e5:ab:8a:4c:4c:1c:c8:42:d3:e7:c2:28:c0:72:f7:48:60:
e1:fd:d8:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:43 2026 by rpki-client